Local Drive Redirection with Intune is a feature that allows users to connect their local drives to their remote devices, such as Windows 365 Cloud PCs. This feature enhances flexibility and productivity by enabling seamless data sharing between the user’s Cloud PC and local machine. In the context of Remote Desktop Protocol (RDP), Local Drive Redirection can be used to create redirections that let users connect to peripherals (like cameras, USB drives, and printers) from remote devices like Cloud PCs. By default, these redirections are enabled for Cloud PCs.

  1. Sign in to the Intune admin center:
    • Go to Devices > Configuration > Create > New Policy.
  2. Create a Device Configuration Profile:
    • Select the platform as Windows 10 and later.
    • Choose the profile type as Settings Catalog.
    • Click on the Create button.
  3. Configure the Basics Tab:
    • Enter the name and description for the profile.
    • Click Next to proceed.
  4. Add the Drive Redirection Setting:
    • Click on + Add settings.
    • In the Settings picker, search for “drive redirection.”
    • Navigate to Administrative Templates > Windows Components > Remote Desktop Services > Remote Desktop Session Host > Device and Resource Redirection.
    • Check the box for Do not allow drive redirection.
      • This policy prevents the mapping of client drives in a Remote Desktop Services session.
      • By default, an RD Session Host server maps client drives automatically upon connection.
      • Enabling this policy ensures that client drive redirection is not allowed in Remote Desktop Services sessions.
  5. Scope Tags and Assignments:
    • Click Next.
    • Select the appropriate security group containing Windows 10/11 devices or users.

And that’s it! You’ve successfully disabled local drive redirection for Windows 365 Cloud PCs using Intune. This helps enhance data protection while maintaining productivity.

Paul Cobben