OneDrive for Business offers a robust solution for managing and synchronizing files across multiple devices seamlessly. By configuring OneDrive to automatically redirect folders and synchronize files without user intervention, organizations can enhance productivity and ensure data is always backed up. Here’s a detailed step-by-step guide on how to achieve this using Group Policy. The same can be achieved with Intune policy but that’s for another day.
Prerequisites
Office 365 Subscription: Active subscription to Office 365 which includes OneDrive for Business.
Windows 10 or Later: Ensure client machines are running Windows 10 or a later version.
OneDrive for Business Client: Install/Update the OneDrive for Business client on all target devices. The client should be version 18.151.0729.0012 or later.
Administrative Access: Admin rights to configure Group Policies.
Latest OneDrive Policy Template:
- Download OneDrive Group Policy Templates:
- Download the latest OneDrive Group Policy administrative templates from the OneDrive official documentation.
- Copy ADMX/ADML files:
- Copy the
OneDrive.admxfile to theC:\Windows\PolicyDefinitionsfolder. - Copy the
OneDrive.admlfile to the corresponding language folder withinC:\Windows\PolicyDefinitions(e.g.,en-USfor English).
- Copy the
Step 1: Create and Link a Group Policy Object (GPO)
Open Group Policy Management:
- On a domain controller or a machine with Group Policy Management tools installed, open Group Policy Management.
Create a New GPO:
- Right-click on the domain or an appropriate organizational unit (OU) where you want to apply the policy. As with anything you should test in a non-production environment/OU before moving to production.
- Select “Create a GPO in this domain and Link it here…” and name it something descriptive, such as “OneDrive Folder Redirection”.
Edit the GPO:
- Right-click the newly created GPO and select “Edit”.
Step 2: Configure Folder Redirection
Navigate to OneDrive Policies:
- In the Group Policy Management Editor, go to
User Configuration > Administrative Templates > OneDrive.
Enable Known Folder Move:
- Locate the policy
Configure team site libraries to sync automaticallyand enable it. - Enter the appropriate URL for your OneDrive for Business library.
Enable Silent Move for Known Folders:
- Locate and enable
Silently move Windows known folders to OneDrive. - This policy automatically moves users’ Desktop, Documents, and Pictures folders to OneDrive without user intervention.
Prevent Users from Redirecting Known Folders Back to Their PC:
- Enable the policy
Prevent users from redirecting their Windows known folders back to their PC. - This ensures that users cannot opt out of the folder redirection.
Step 3: Configure Silent Account Configuration
- Enable Silent Account Configuration:
- In the same
OneDrivepolicy section, enableSilently configure OneDrive using the primary Windows account.
- In the same
This policy allows OneDrive to set up automatically using the user’s Windows credentials, reducing the need for manual sign-in.
Step 4: Deploy the GPO
Force Group Policy Update:
- On user machines, you can manually update the Group Policy by running
gpupdate /forcein Command Prompt. - Alternatively, the policy will apply automatically during the next Group Policy refresh cycle.
Step 5: Verify Configuration
Check OneDrive Status:
- Ensure that OneDrive is running and that the folders are syncing correctly.
- Users should see their Desktop, Documents, and Pictures folders under OneDrive in File Explorer.
Test with a New User:
- Create a test user and log in on a new machine to verify that the policies apply as expected and that OneDrive redirects and syncs folders automatically.
MS Endpoint Security 
Leave a comment