Forum Discussion
My favorite Conditional Access policies to implement (part one) - Blog Post
A bit of light reading today, but still an important topic worth discussing: Conditional Access! If you’re not very experienced with implementing these policies, this post might help set you up in th...
No problem Olf, always happy to share!
One question. Interestingly, you cannot control a user's ability to edit a document on Sharepoint with that it seems. I know I could try to do that with Sharepoint permissions but I was wondering. Did I miss something?
- No that is right! Session policies can do a lot in Microsoft 365 and other Cloud Apps, for example: Block downloads, block print, block cut or copy, block paste, put sensitivity labels on uploads etc.
But it cannot limit the permission to edit a document on SharePoint during a session from a unmanaged or non-compliant device. Maybe in the future! 😉- Is there any other way to achieve the following:
MS Teams connected Sharepoint site: Give guests view and members edit permissions for files in a library. Problem is: Guests and internal members are part of the same M365 group that is set as Site collection members, effectively granting guests edit permissions. Never liked that logic.- Yeah I understand what you mean. That is unfortunately the disadvantage working with the Microsoft Teams default permission groups while adding guests to a Team.
You will have to work with the SharePoint advanced permissions and add the guests that way, but then the guests won't have access to the Teams anymore, or you could create a specific library or private channel within a team where the files will reside where guests will have view permissions (set from the SharePoint permissions).
