Announcement: New OneDrive Admin Center Preview

Hi Neil McCafferty,

Sorry for the delay in response! The report you're looking at (OneDrive activity) only shows results for the last "X" days (where X should be configured somewhere in the UX above the report). Some of the shares you are seeing probably occurred outside that timeframe which is why they aren't showing up. Hope that helps!

Stephen Rice

OneDrive Program Manager II

Neil McCafferty, I'll have to follow up with the owner of that report and see what is going on. 

As for the second per-group control, rolling from first release to the rest of Production normally takes a few weeks. So not too much longer! Thanks!

Stephen Rice

OneDrive Program Manager II

Neil McCafferty, you can generate a report of externally shared content via the SCC as detailed here: https://support.office.com/en-us/article/Keyword-queries-and-search-conditions-for-Content-Search-c4639c2e-7223-4302-8e0d-b6e10f1c3be3#external

This type of report will not be time-based however, so not sure if appropriate for your scenario.

Stephen,

The report is in the O365 Admin Centre > Reports > Usage > OneDrive activity. You can kind of make this out from the screen grab. We hope to have a report that can identify external sharing exposure by department and job title (in real terms for us, this means by school and teacher/pupil) so that areas of risk can be highlighted.

In other news, I notice that the second sharing control by security group (authenticated users only + authenticated users AND anonymous) has hit first release. Do you know when this is likely to show up in production?

Hi Neil,

Sorry for the long delay here! Where are you grabbing that OneDrive sharing report? Is that in OneDrive admin or somewhere in the compliance center? Thanks!

Stephen Rice

OneDrive Program Manager II

As a quick chaser to my last post, the results from the Admin centre OneDrive use report aren't quite what I'd expect either. Two accounts where I know there are externally shared files don't reflect the true position. One, I think, is as a result of having shared the folder with the external user meaning that all subsequent files are 'externally shared'. 

I was looking to potentially use this report as part of risk mitigation processes so that we could identify users with new/high amounts of external sharing. However, it looks like this might not be reliable or might need quite a bit of framing to say, 'It only picks up x, y & z but not....'.

StephenRice - thanks again for the reply. OK, so I was looking in the OneDrive admin centre for the OneDrive sharing controls. ;-)

In testing it out, I notice the following:

If I'm not in the allowed group(s) I can't create an anonymous link or use an external email address to share (as expected)

But, any existing file/folder that has already been shared with an external user continues to be accessible to that external user. So, in our case where we might choose to withdraw sharing privileges if there is inappropriate use, the feature doesn't act as a revocation of external sharing by these users, but rather the withdrawal of the rights to create new external shares. Is this correct and is there any plan for the feature (or any other admin capability) to revoke external sharing in bulk/by group?

Hi Neil McCafferty,

That's not good at all! The first phase of the feature should absolutely be rolled out to your tenant! Are you looking in OneDrive admin or SharePoint admin? I believe the feature is only available in the latter currently. It should show up under the advanced sharing settings section on the page. If it's still not there, please let me know. Thanks!

Stephen Rice

OneDrive Program Manager II