Microsoft is removing the “Everyone except external users” (EEEU) permission group in OneDrive (for Business). This change aims to enhance data security by preventing inadvertent oversharing of user data.
Timeline
The “Everyone except external users” permission group will be removed between 10 April and 30 September 2025 from the root site of each user’s OneDrive and the default document library in OneDrive.
Impact on your organization
With removing the EEEU permission, apps, processes, or users that previously accessed content in OneDrive due to this group will lose access.
However, users, processes, and apps that have been granted direct permissions to specific files and folders will not be affected and will retain their access.
Starting April 10, 2025 and ending by September 30, 2025, we will run logic to detect and remove the EEEU permission from the root site of each user’s OneDrive and the default document library in OneDrive.
Users, processes, and apps that were granted direct permissions to specific files and folders of a OneDrive account will not be impacted and will continue to retain their access.
We recommend OneDrive owners and OneDrive admins give explicit permission to individual files and folders in OneDrive to be accessed by one or more users or apps.
I added the EEEU permission group to the OneDrive root site in my example. This configuration and permissions on the default document library will be removed.
This change will not affect SharePoint site collections, at least not yet.
Recommended actions
- Inform your users about the upcoming change and that permissions to individual files and folders in OneDrive for specific users still work.
- Microsoft recommends creating a dynamic Entra ID group if you still need such a permission group for OneDrive.
