The OneDrive for Business team has been working to deliver the most commonly requested controls by IT admins. Today, we’ll highlight new management options you have to protect and control the flow of your information using OneDrive for Business.
1- Limiting file sync to domain joined PCs
One of the most common requests from IT admins is to have the ability to block sync on un-managed PCs
Now you can enable file sync to work only on domain-joined PCs (and you can even specify which of your domains you want to allow to sync)
Note that using this setting means that you will disable file sync on all Macs as they cannot be domain-joined and managed like PCs.
The PowerShell cmdlet and syntax you use is: Set-SPOTenantSyncClientRestriction -Enable -DomainGuids “786548DD-877B-4760-A749-6B1EFBC1190A; 877564FF-877B-4760-A749-6B1EFBC1190A”
The “DomainGuids” value represents the domain you are allowing
2- Auditing all actions taken against OneDrive for Business files
New auditing controls rolling into the Office 365 compliance center allow you to audit all actions taken against files stored in OneDrive for Business. If you want to monitor activities like which PCs or Macs attempted to sync with OneDrive or who viewed and shared files, the auditing controls provide that visibility
3- Managing mobile devices connecting to OneDrive for Business data
As more people move to OneDrive for Business to store and access their files, email-based mobile device management (MDM) policies may not suffice to protect data. Now using MDM in Office 365, you can ensure that devices connecting to your OneDrive for Business data are managed
4- Setting storage quotas in OneDrive for Business
Several organizations have requested the ability to set smaller quota limits. It could be to limit the amount of data stored, for information protection reasons, or simply to ensure that what people store in OneDrive for Business can sync (and fit) on their PC’s hard drive.
In this case, PowerShell is again used to determine the storage quota.