So, in my network I implement SRP whitelisting. This prevents executables from trying to run from various places, most notably the AppData folder. This is something that is becoming more common due to ransomware and other malicious software. A user needs something installed, no circumventing the policies put in place, you have to get an admin or have the right to elevate.
Then along comes Windows 10. With it's "built in" OneDrive functionality it would attempt to run a startup process that would kick off OneDrive setup in AppData. Couldn't believe they would do this, but figure "ok, it's the personal OneDrive app so whatever".So with a GPO I disable OneDrive and kill the regedit responsible for triggering the setup. During this time OneDrive for Business is a separate application deployed with the Office Suite. It installs to Program...