How-To block custom cloud storage services in Teams
Updated: Jul 26, 2018
Microsoft Teams is a centralized collaboration platform for your different project and team. It's a powerful and complete solution where you can connect almost all the Office365 services (Planner, SharePoint, OneNote ...).
Moreover, users can connect OneDrive and third-party cloud storage services to Teams.
As a security perspective, it can be a breach and let's corporate data going outside your business perimeter.
In order to have a complete Data Loss Protection (DLP) solution, the best use cases are:
Block user to use third-party cloud storage services within Teams.
OneDrive/SharePoint are the only cloud storage services available.
These use cases and solution associated are part of the followings:
In order to manage Microsoft Teams, Office 365 admin portal lets you access a Teams management center.
To access it, navigate to https://portal.office.com/adminportal/home#/Settings/ServicesAndAddIns and click on Microsoft Teams management center.
1. In the Teams Management center, turn off all the custom cloud storage services.
2. Save the configuration.
After a while, the third-party cloud storage services won't be available for your users.
When the custom cloud storage are deactivated, as a user experience perspective, only SharePoint is available when your users try to add a cloud storage.
Note: OneDrive is embedded within SharePoint Online - in fact OneDrive storage is a SharePoint site.
Custom Cloud Storage Activated
When the different customs cloud storage are activated, users can add them manually as it's appearing below.
Custom Cloud Storage Deactivated
After customs cloud storage deactivation, only SharePoint is available when users try to add a cloud storage (see the screenshot below).
In the case where users added a custom cloud storage before you deactivate the options; the cloud storage folder(s) won't be accessible and the only available option is to delete folder(s).
Teams management center is really useful to fine tune different security settings and feature and to answer your business needs and secure your business perimeter.
In addition to Intune, App Protection Policies and Conditional Access you can have a holistic approach to secure access, data in application and data flow between various device (computer, laptop, smartphones ...)