This is going to be very bad for anyone with multiple Microsoft accounts on one computer. I don't see how Microsoft keeps OneDrive data separate.
Microsoft has not done a good job at keeping stuff separate. If you login to Outlook, Teams or any Office application with more than one account it becomes a giant mess. All of a sudden other programs like Edge will have one of your company policies like default home page applied.
Also authenticating with Microsoft accounts using Azure AD anywhere is a giant headache as Azure AD may have one login with multiple directories. So you're constantly having to re-authenticate & login with the proper AD account & proper "Directory selected".
I'm sure some older gray beards will respond with "Never login to your personal devices with a work login". That's great advice for plenty of situations but there are plenty where it doesn't work. Have a personal account & want to help your local church & non-profits out? Offer consulting services to multiple small businesses? While the Matrix setup looks awesome, it's not fun to login to 10 different devices or 10 different VMs.
I don't see how Microsoft is going to properly do security to protect your data from going elsewhere even if you only have one account, let alone multiple.
I like CoPilot, I love ChatGPT & overall I like most of Microsoft's products. But they're going faster then they can handle & they're very well known for not having great communication & cooperation between their large divisions.
> I'm sure some older gray beards will respond with "Never login to your personal devices with a work login". That's great advice for plenty of situations but there are plenty where it doesn't work.
I use several profiles on Windows with a mix between Microsoft logins and local accounts. It's a pain because Microsoft seems to design everything with the idea that every PC is a personal device for a single person with a single account.
IIRC Office has switched from machine based activation to user based activation. Microsoft thinks I should buy 4 MS365 subscriptions because I like to silo things with a few different profiles (ex: entertainment vs development). That's not going to happen. Instead of buying 1, I buy 0 and use alternatives even if they're not quite as good because I can't pay 4x to maintain compatibility between my own damn profiles.
Outlook, Teams and Edge were logged into Azure A.D. OneDrive for Business as well.
OneDrive personal, Windows 10, Firefox were logged into my personal Microsoft account.
Office was logged into both, but it was pretty easy for me to see which one, and to switch if I needed to. Recent document lists displayed the relevant documents for the account I was logged into.
For me, it was a non-issue having both accounts on the same machine. But I bet depending on your corporate policy, it could be an issue. In my case, as a consultant, the client did not have permission to "take over" my machine and implement policy on it. If it was their machine, I would not have logged into my personal Microsoft account on it.
Edge supports multiple accounts and surprisingly if you have sessions with both accounts open it recognises if a link you clicked was meant to be opened in the work account or personal and sends it to the correct browser window.
Yes, I really appreciate this, and its configurability, a lot. I have a work profile, a home profile, and a “demo account” profile (for a certain work resource that I have a dummy account in addition to my real account). Each has a distinctive theme for easy identification, and my computer always opens links into the right one!
> I don't see how Microsoft keeps OneDrive data separate.
The short answer is that cross-tenant access should only be available where it is explicitly granted through policy or request.
The long answer is that this is hard to balance and manage over time, and users should really be provided with their own device or remote workspace (which could includes SharePoint and Office for Web, not necessarily a remote desktop), rather than being asked to apply what amounts to an MAM policy to their BYOD device.
I never mix work stuff with personal stuff. Every job I've had has given me some brand new workstation or laptop to work from. There's no reason to pull in all of that into your personal device.
As the parent helpfully detailed, you may work for a charity or occasionally help out at a school where they have AD/central management but not have a dedicated device. In addition, it is easy to be working with 2 or 3 non-profits at the same time and nobody wants 4 machines to juggle.
If work wants me to install applications on a device then they can provide me with that device.
At my work it is an option to add messaging applications and such to our phones. I just don’t. If there is an emergency they know my phone number and can call me. No need for me to be instantly available. Life is better this way
Microsoft has not done a good job at keeping stuff separate. If you login to Outlook, Teams or any Office application with more than one account it becomes a giant mess. All of a sudden other programs like Edge will have one of your company policies like default home page applied.
Also authenticating with Microsoft accounts using Azure AD anywhere is a giant headache as Azure AD may have one login with multiple directories. So you're constantly having to re-authenticate & login with the proper AD account & proper "Directory selected".
I'm sure some older gray beards will respond with "Never login to your personal devices with a work login". That's great advice for plenty of situations but there are plenty where it doesn't work. Have a personal account & want to help your local church & non-profits out? Offer consulting services to multiple small businesses? While the Matrix setup looks awesome, it's not fun to login to 10 different devices or 10 different VMs.
I don't see how Microsoft is going to properly do security to protect your data from going elsewhere even if you only have one account, let alone multiple.
I like CoPilot, I love ChatGPT & overall I like most of Microsoft's products. But they're going faster then they can handle & they're very well known for not having great communication & cooperation between their large divisions.