MicrosoftOneDriveAccountRestrictions

This policy allows admins to restrict which accounts are allowed to sign-in for Microsoft OneDrive when the MicrosoftOneDriveMount policy is enabled. If this policy contains a value of 'common', any account can be used to sign-in. If this policy contains a value of 'organizations', work or school accounts can be used to sign-in. If this policy contains a value of 'consumers', personal Microsoft accounts can be used to sign-in. If this policy contains domain names or tenant IDs, accounts from these domain names or tenant IDs (see https://learn.microsoft.com/en-us/azure/active-directory/develop/v2-protocols#endpoints) can be used to sign-in. If this policy is unset or only contains an empty value, it behaves as if 'common' was specified for regular users; for enterprise users it behaves as if 'organizations' was specified. Changing restrictions might lead to users being signed out of their Microsoft OneDrive account if it does not adhere to the new restrictions. Note: At this time only the first entry will be taken into account. Later extensions will support multiple entries.