Forum Discussion
Restrict access to
What is best way to easily restrict OneDrive access?
I do not see 'One Drive' listed as a Target resource in a conditional access policy.
So basically, looking for ways to easily setup restrictions do Microsoft entra hybrid joined, Microsoft entra registered, Microsoft Entra joined. Just not seeing a clear-cut way to restrict.
Restrict it how? If you want to target it via Conditional Access, use the SharePoint Online resource. You can also use the built-in access controls in the SPO admin center, such as Restrict OneDrive access by security group - SharePoint in Microsoft 365 | Microsoft Learn
Restrict it from a 'Data Protection' standpoint as well as compliance, prevention of Data Leakage, and managing access to only business owned devices rather than logging in all over the place and accessing One drive from everywhere essentially.
I'll give your link a look, but again looking to restrict based on where an individual with OneDrive access can access there and others files from.
OneDrive for Business supports the full range of M365 compliance controls, including DLP and IRM, as well as security controls as part of Entra ID/Intune. You can control which files can be shared externally, even force encryption if needed.
The issue with the security controls such as CA is that you cannot target ODFB specifically, but together with SPO only. Though Microsoft actually recommends targeting the "bundle" Office 365 resource instead, which includes some other services as well, so not as granular.
