Forum Discussion
Question about Employee Terminations and shared documents in OD4B
Hi,
Thanks for this info.
So if -OrphanedPersonalSitesRetentionPeriod is set for 90 days, the users A will be able to access those doucments shared by another user B with user A for a period of 90 days even if the Azure AD account of User B is deleted from Azure AD(soft delete). Is my understanding correct?
Or what is the reason User A is able to see and access the documents of User B shared with User A ( under "Shared with me" Section) even after the User B account is deleted from Azure AD.
Another requirement i have is , if I as admin want to preserve the ODB documents of user ( including deleted and all versions) and also the ODB site for say a period of 10 years or indefinitely since their last modfied date even after user's Azure AD account is deleted, which option should I use , the ediscovery ( in Place hold), Preservation Policy , -OrphanedPersonalSitesRetentionPeriod. I am totally confused .
The requirements are as follows:
1. Admin should be able to restore any ODB document(s) of user which is deleted including any/all versions when the user is still active or inactive ( Azure AD account is deleted, user left the company). The documents to be restored are less than 10 years old, meaning we ant to reatin all documents and their version for 10 years since last modified date
2. Admin shoud be able to restore and transfer the ODB site of a user , who has left the company and his/her Azure AD account is deleted to another new user so that new user uses this site as his/her ODB site.
Would appreciate any help on these.
Thanks
The preservation hold over-rides the ODFB settings for orphaned site retention so if you set up a preservation hold policy that is forever then the ODFB will never be deleted. The preservation hold retains the deleted and changed items(if versioning is enabled) in the preservation hold library seperate and apart from the Document library that is ODFB.
That being said, the way that ODFB works unless you name the new user the same as the deleted user then the ODFB will never be able to be assigned to a new user as their own ODFB. This is the same issue that occurs when you change the UPN of the user, ODFB then sees that the name has changed and does not exist
example: jdoe@contoso.onmicrosoft.com (ODFB site is jdoe_contoso_onmicrosoft_com)
becomes
jdoe@contoso.com (ODFB site is jdoe_contoso_com)
So ODFB recreates the site and there is no data in the new site.
You can however, assign the user as a site collection admin on the ODFB site which will give them access to the data which can then be moved from the deleted users ODFB to the new users ODFB site.