Forum Discussion

Kerim M.'s avatar
Kerim M.
Copper Contributor
Apr 22, 2018
Solved

Question about settings for Sync button and modern app authentication

Hi guys I have two questions about the settings which is possible to configure over ODFB admin portal: Setting: Sync > Checkbox "Show the Sync button on the OneDrive website" Question: Wha...
Admin Portal
OneDrive for Business
Settings
  • VasilMichev's avatar
    VasilMichev
    Apr 22, 2018

    The answer to the first question is here: https://support.office.com/en-us/article/prevent-users-from-installing-the-onedrive-sync-client-b59cf952-f5a3-40ae-9159-36d5f869422c

     

    But as you said, it's not a real restriction as they can just download the client elsewhere (not to mention it comes preinstalled with Win10). If you want to restrict the sync, you can use the second option in the portal or the set-spotenantsyncclientrestriction cmdlet.

     

    For the second question, all Microsoft apps should indeed support MA nowadays, but some time ago this was not true. And having support for MA is important for features such as Conditional access, which you can bypass if using legacy auth. Thus many organizations are interested in being able to block such apps. It's the analog of the -LegacyAuthProtocolsEnabled setting for Set-SPOTenant.

VasilMichev's avatar
VasilMichev
MVP
Apr 22, 2018

I don't have an exhaustive list, and not sure if one is readily available, but basically any app that uses the OneDrive APIs to offer "storage" or "open/save file from OneDrive". Slack for example has something like this, Adobe/Foxit, heck even Autodesk products have it.

Kerim M.'s avatar
Kerim M.
Copper Contributor
Apr 22, 2018
Ok, now it's more clear what kind of apps they are. Thanks a lot for your response.