Office 365 - OneDrive for Business - Conditional Access

To enable Azure Active Directory conditional access with the OneDrive sync client on Windows, you need to add registry keys into the end client user profile as detailed at - https://support.office.com/en-gb/article/Azure-Active-Directory-conditional-access-with-the-OneDrive-sync-client-on-Windows-028d73d7-4b86-4ee0-8fb7-9a209434b04e. Basically this is enabling Modern Authentication (ADAL) for the OneDrive client.


Getting started

Use the following steps on each computer.

To enable conditional access support on the OneDrive sync client

Download and install the OneDrive sync client.

Download and open EnableCAPreview.reg to enable the conditional access feature.

Restart the sync client.

If you want to disable this feature, you can delete the registry key by running DisableCAPreview.reg. You need to restart the sync client for the change to take effect.


EnableCAPreview.reg
Windows Registry Editor Version 5.00

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\OneDrive] 
"EnableADAL"=dword:1

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\OneDrive] 
"EnableTeamTier_Internal"=dword:1



DisableCAPreview.reg
Windows Registry Editor Version 5.00

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\OneDrive] 
"EnableADAL"=dword:0

[HKEY_CURRENT_USER\SOFTWARE\Microsoft\OneDrive] 
"EnableTeamTier_Internal"=dword:0

Comments