May 10 2021 01:03 AM - last edited on Nov 09 2023 11:09 AM by
We have started to roll out and migrate our users content to SharePoint and OneDrive and starting to notice more and more users getting the following:
"Your organization doesn't allow you to download, print or sync using this device. To use other actions, use a device that's joined to a domain or marked compliant by Intune. For help, contact your IT department."
This seems to be happening on a mix of desktop and laptops.
We have a Hybrid environment at the moment with everything being done in AD and being synced back to AAD.
So far we have tried re-joining the device to the domain, the Windows 10 Accounts Edge plug TNA.
dsrecmd is not the same for all devices with this issue also!
Can anyone offer any advice or suggestion?
May 10 2021 01:32 AM
May 10 2021 03:01 AM
May 10 2021 03:03 AM - edited May 10 2021 03:04 AM
@Maff_ If you limit access on unmanaged devices, users on managed devices must use one of the supported OS and browser combinations Conditions in Conditional Access policy - Azure Active Directory | Microsoft Docs or they will also have limited access.
May 10 2021 07:19 AM
May 10 2021 08:24 AM
Jun 30 2022 07:55 AM
@Maff_ Did you get to the bottom of this? We are experiencing the same issue on some managed devices. For example I have 2 work accounts on my machine, one shows the "Your organisation doesn't allow..." message and the other doesn't.
Jun 30 2022 07:58 AM
@David_Gumbleton There was a change made to our conditional access policies - Sorry I cant be more specific as I wasn't part of the change after!
Oct 23 2022 07:21 PM
@David_Gumbleton We've also just run into this on managed machines.
I'm sure it is the baseline microsoft security, but in turning it off mean being unprotected. I'll be testing it later today hopefully and can report back.
I've also tried to leave it on and make an exception using Conditional Access.... **Crossing fingers**
Jan 18 2024 02:15 PM