Forum Discussion
How to stop users creating new Office 365 Groups using an AAD policy
Great blog, it was very helpful to configure this new feature.
I was able ton create a group and update the settings Template
Now the dedicated group members can create a "Planner" which created an unified Group ...
But, group members are unable to create a Groups from OWA or Outlook even if I set the OwaMailboxPolicy GroupCreationEnabled to True.
Strange, i've opened a Suport Request from MS Premier., will let you know why :)
/Christophe
You need to keep the OWA mailbox policy in place until Microsoft has fully deployed the feature to all parts of Office 365. There are many ways to create a group:
1. Office 365 Admin Center
2. Exchange Admin Center
3. PowerShell
4. Outlook 2016
5. OWA
6. Outlook Groups app
7. Power BI
8. Dynamics CRM Online
9. Microsoft Planner
All of these have to be updated to understand and obey the new policy...
Hello,
From Microsoft Support Premier, there is no roadmap for AAD Policy to manage every way to create a group.
OWA Policy remain the answer for o365 groups creation privilege in Exchange Online.
AAD Policy handles the O365 group creation privilege from Planner.
It's easier to manage a group membership than a dedicated OwaMailboxPolicy :-/
/Christophe
My understanding was that a single policy was being introduced that would control creation across all workloads. It obviously doesn't make much sense to keep two policies in place, unless it's just for a short period to allow Outlook and OWA to adjust their permission checks. Outlook is particularly slow in this kind of thing. The C2R version can be changed quickly but the MSI version cannot. In any case, I have reached out to the engineering group to determine what the situation really is.
Thank you for your quick answer.
Yes, this feature is in "Rolling out" as reading the Fastrack portal , I tought it was already available for my Tenant and from OWA/Outlook Rich Client.
Let's wait for the launch phase then ...