Forum Discussion
MicrosoftOneDrive for Business | Known folder silently redirection not work
In many cases, there are no users already logged in.
Think of a brand new employee sitting down, starting their first day. They don't know what to do!
IF you are telling me that OneDrive requires a user to log in, that would be one thing, but the documentation implies that auto login will work via SSO. So, even though we have Active Directory, we also need Azure Active Directory joining? The documentation implies that you don't need AAD if you have AD.
>>it needs PC Azure joined<<
Ok. I can move on from there. But WHICH Azure AD do we have to purchase? Or will the free one work?
This has been asked about 3,4 times, and still no answer. I was told to post a note here or in MSDN about which Azure AD we need.
Sorry for switching accounts earlier, that was my client Azure Admin account.
== John ==
Microsoft
Ohh, it is a billing question. I am not sure about that, but I know F1/E3/E5, when you grant these three licenses to an account in your O365 AAD user, the account will auto-generate an OneDrive for business on this account. <Please mention it is never pointing to personal OneDrive.>
Then, let me give you the exact scenario on silent sign-on GPO without PC Azure joined. The devices do not Azure AD joined, but AD joined. When a new user just on board, you could ask them to login <School and Work Account> in the system with their O365 (Azure AD) account. After restart, the auto-sign in GPO could work. (However, this step is not easier than login OneDrive directly) Otherwise, you could also make GPO which lets OneDrive become auto start application when to start PC. Then it will pop up login interface which ask user login when they first use PCs.
Thank you for sticking with it!
WilsonSu wrote:Then, let me give you the exact scenario on silent sign-on GPO without PC Azure joined. The devices do not Azure AD joined, but AD joined. When a new user just on board, you could ask them to login <School and Work Account> in the system with their O365 (Azure AD) account. After restart, the auto-sign in GPO could work. (However, this step is not easier than login OneDrive directly)
Understood, both of those scenarios do work, but again, the user might not do it, then we have a security risk (as there's no telling where their documents are going).
This is an ISO company, so we're sensitive to procedure that can be subverted.
WilsonSu wrote:Otherwise, you could also make GPO which lets OneDrive become auto start application when to start PC. Then it will pop up login interface which ask user login when they first use PCs.
Actually, it doesn't, or at least on none of our machines. OneDrive does autostart, but it shows "not logged in". If someone logs in at least once, it will auto-logon and do the redirection, but if no one logs in, it just sits there.
Unless there's a GPO that wasn't documented, but I went through all of them.
Thanks for trying to help. We'll just have to do sneakernet.
== John ==