cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

Session control not blocking multiple file downloads

markwarnes
Brass Contributor

‎Dec 02 2020 05:42 AM - edited ‎Dec 02 2020 05:43 AM

‎Dec 02 2020 05:42 AM - edited ‎Dec 02 2020 05:43 AM

Session control not blocking multiple file downloads

I am testing out MCAS session control to stop file downloads and am unable to block downloads when more than one file is selected.

 

Here's what I have tested:

 

MCAS Session control is triggered happily by conditional access, and configured to stop downloads from OneDrive to unmanaged devices. In the OneDrive folder, if I select and try to download a single file, it gets blocked as expected:

 

Single file block working.png

 

But if I select more than one file and pick the Download option at the top of the page, a ZIP file with all selected documents gets downloaded without issue and does not get blocked:

 

Multi-file block not working.png

 

Has anyone seen this as well and got a solution, or is this an issue for Microsoft to resolve? It seems like a glaring hole in the controls if it isn't stopped.

 

A colleague has also tested using the preset "Block downloads" option available in Conditional Access and that suffers the same issue (single file download blocked, multi-file download allowed).

 

I tried adding a second session policy to block download of files with ZIP file extension, but that did not work. (Presumably, the original files are not seen to have a ZIP extension so MCAS let's those pass.)

Labels:
1,708 Views
1 Like
3 Replies
Reply
3 Replies
Pranesh1060

‎Dec 03 2020 04:09 AM

‎Dec 03 2020 04:09 AM

Re: Session control not blocking multiple file downloads

@markwarnes We have the same problem in our tenant as well. Raised this concern with MS and got an expected answer that this is known to them and they are planning to get this resolved. However they did not commit on an ETA yet.

1 Like
Reply
pachob

‎Sep 29 2021 03:40 AM

‎Sep 29 2021 03:40 AM

Re: Session control not blocking multiple file downloads

any update here?

 

0 Likes
Reply
Joe_Hoffman

‎Feb 07 2024 03:24 PM

‎Feb 07 2024 03:24 PM

Re: Session control not blocking multiple file downloads

@markwarnes This is now working if you block zip and ZIP. As file extensions. Don't know why, just wanted to update this thread as every search kept leading back to this unanswered question. 

0 Likes
Reply