Jun 17 2021
09:22 AM
- last edited on
Feb 01 2023
01:50 PM
by
TechCommunityAP
Jun 17 2021
09:22 AM
- last edited on
Feb 01 2023
01:50 PM
by
TechCommunityAP
Is there any way to block or disable the button to Add a service or Add a place in Word, PowerPoint or Excel?
We would like to keep the ability to have our organization's OneDrive and SharePoint listed, but not add any other organization or personal OneDrives and SharePoint. The article above either allows or blocks completely.
We looked at How to block OneDrive use from within Microsoft 365 Apps for enterprise and Office 2016 applications..., but this seems to either block one thing, but not the other and does not have any way of restricting just to our organization.
Jun 17 2021 09:42 AM
Jun 17 2021 11:01 AM
@blockwood-cncy Hello, the page you're linking to is about two different GPOs. So you should have a look at the 1 and 2 policy settings I've attached. Vasil is referring to the "connected experiences" Use policy settings to manage privacy controls for Microsoft 365 Apps for enterprise - Deploy Office...
1. Block signing into Office (admx.help)
2. Hide file locations when opening or saving files (admx.help)
That should do the trick.
Jun 17 2021 12:56 PM
@ChristianJBergstrom thanks for that, but that doesn't solve the whole problem. It still allows me to add another organizations SharePoint and OneDrive. It only blocks personal.
I want to allow my organization's resources while blocking the ability to add another tenant.
Jun 17 2021 01:02 PM
Jun 17 2021 01:08 PM
@ChristianJBergstrom These are the ones that I set and I was still able to add another tenant. In the last ones you can see I still was able to add another org. I just cannot add any personal sites.
Jun 17 2021 01:32 PM
Jun 18 2021 01:05 AM
Ping @NunoAriasSilva Would you mind taking a look at this?
I know you can disable most things as there are even more reg. keys to use when it comes to this topic, but what's the best way (is there a way) to achieve the requested behavior still not disabling any services? Meaning making OneDrive/SharePoint available from "Add a service" in Office but for own org. only not using any allow/deny list or shutting down services/sharing.
@blockwood-cncy perhaps you should look at it from another perspective. I understand you trying to prevent "third-party storage" in general, but end-users will always find a way. And there should be policies for that in your org. too. Have you considered using DLP/Sensitivity labels? In these scenarios you don't even have to bother about possible loopholes as the documents are being classified and protected.