Tag: enterprise app

Allowing Users to Add Enterprise Apps to Entra ID is a Bad Idea

Posted on by Tony Redmond
Allowing users to add enterprise apps is a bad idea.

Enterprise apps can come from a variety of sources. Most are Microsoft 1st party apps, and the rest are ISV apps. It’s easy to add an app without really intending to, which is a good reason to force users through the Entra ID app consent workflow when they want to add an app. Unhappily, I failed the test and added an app in a moment of weakness. Here’s what happened.

How to Stop Microsoft 365 Users Uploading SharePoint Online and OneDrive for Business Files to ChatGPT

Posted on by Tony Redmond
Block ChatGPT access to OneDrive for Business files

Microsoft 365 users can connect their OneDrive for Business account to ChatGPT. This is not a great thing because it exposes the potential for sensitive corporate information to be exposed outside the organization. How can you block ChatGPT Access to OneDrive? The best way is to stop people from using the ChatGPT app. If that’s not possible, make sure to encrypt confidential files with sensitivity labels.