LogoLogo
LogoLogo
  • Welcome
  • User manual
    • Windows File Explorer
    • Tray Menu
    • Preferences Menu
  • Deployment
    • System requirements
    • Security
      • Grant tenant-wide admin consent
      • Conditional Access
    • Setup
    • Configure Office 365 account
    • Software updates
  • Advanced Configuration
    • Management options
      • Settings for Intune-managed devices (Import custom ADMX- Public preview)
        • GUI settings
        • Mappings
        • System settings
      • Settings for Intune-managed devices (Legacy)
        • Intune GUI settings
        • Intune mappings
        • Intune system settings
        • Intune other settings
      • Settings via GPO
    • GUI Settings
      • Account re-authentication
      • Change KONNEKT name in explorer
      • Explorer UI
      • Hide tray icon
    • Mappings
      • Additional document libraries
      • Assign drive letters
      • Auto mapping
      • Managed mappings
      • Multi-Geo
    • System settings
      • Authentication browser engine
      • Cache settings
      • Download Directory
      • Enhanced Authentication
      • Link scope
      • Logging
      • Office365 Co-Authoring
      • Offline attribute
      • Open file size limitations
      • SharePoint throttling prevention
      • Skip Account Wizard
      • Update checker
    • Other
      • Proxy settings
      • Set license key
  • Troubleshooting
    • Access token issues
      • Error message about missing token
      • Failed to obtain access token to your OneDrive account
      • Failed to obtain access token
    • Add Share: "Key not found"
    • Clicking a share does nothing
    • Debug log preparation
    • Subscribe a subset of users
    • How to deal with error(s)
    • Empty libraries
      • All libraries are empty
      • Empty default libraries - error 404
    • Manual uninstallation
    • Opening MS Office documents display a warning message
    • Site Collections are not displayed for some users
    • Sites missing or folders empty
    • Some sites or libraries do not appear in KONNEKT
    • Slow Folder Browsing
    • Why is there a grey "X" or "brown suitcase" on my files and folders?
    • What is the maximum path and file name length?
    • How to change the tenant name
    • Failed to open Device
  • Changelog
  • Licensing
    • Azure Marketplace
  • Support
  • KONNEKT Website
Powered by GitBook
On this page
  • Policy
  • Registry

Was this helpful?

  1. Advanced Configuration
  2. System settings

Enhanced Authentication

Last updated 8 months ago

Was this helpful?

Enhanced Authentication enables KONNEKT to use improved .

By enabling this setting:

  • A new is required

  • Users need to reauthenticate!

  • Namespaces are built from (\\onedrive-<DefaultDomainName>\...), no longer from (\\onedrive-<InitialDomainName>\...).

    • Possible side effects include:

      • Pinned KONNEKT folders in Quick Access won't work

      • KONNEKT UNC paths in Office apps might still refer to previous names

This policy is applicable to KONNEKT version 2.10 and above.

To enable this setting, configure it tenant-wide. Enabling this will prompt Azure to register a new app with fewer permissions.

With more detailed permissions, users have to reauthenticate. Additionally, the UNC path and displayed tenant name will switch to the default tenant name rather than the initial tenant name.

This feature enables the use of conditional access policies with excluded apps in Azure/EntraID.

Policy

Policy Name: Enhanced OAuth

Possible values: Can be enabled or disabled.

The default value is disabled.

After the new Azure app registration is set up, the old one should be deleted.

Registry

Key name: EnhancedOAuth

Type: REG_DWORD 32 bit

Function

Value

Behavior

Disable

0

(default)

KONNEKT will use the traditional OAuth 2.0 procedures.

Enable

1

KONNEKT will use an improved OAuth 2.0 code with.

The default value is 0 (disable).

We recommend to use our latest to configure this setting. You will find the policy in "System settings" in GPO editor.

OAuth 2.0 authorization
Azure app registration
default domain
initial domain
ADMX template