Amazon AppStream 2.0 Adds Support for OneDrive for Business

Amazon AppStream 2.0 now adds support for Microsoft OneDrive for Business as a new storage option for your users. AppStream 2.0 already has two storage options: built-in home folders, which syncs to Amazon S3, and Google Drive for G Suite. This post describes each storage option, and provides a tutorial for setting up OneDrive for Business with AppStream 2.0.

Home Folders
Home folders is a built-in persistent storage option that works with Amazon S3. Users can access a home folder on their streaming instance, and save content in this folder for use between streaming sessions. And when connected to a streaming session, users can download and upload files in the home folder directly from a web browser. All files are stored in an S3 bucket, which is automatically created in your AWS account. Files are downloaded to your streaming instance only when opened, and saved to Amazon S3 only when changed. You can even configure an Amazon S3 endpoint to allow files to be saved or retrieved through your VPC, and avoid going over the internet. For more information about home folders, see Enable and Administer Home Folders for Your AppStream 2.0 Users.

Google Drive for G Suite
You can enable Google Drive for G Suite with AppStream 2.0 if you have an existing G Suite domain with Google Drive turned on. When you integrate your G Suite account with AppStream 2.0, your users can link their G Suite accounts to access their files on Google Drive inside their applications, as they would on a Mac, PC, or Chromebook. After an account is linked, a user can access both personal and team folders from within AppStream 2.0. For more information about using G Suite with AppStream 2.0, see Enable and Administer Home Folders for Your AppStream 2.0 Users.

Microsoft OneDrive for Business
OneDrive for Business, the latest storage option available with AppStream 2.0, lets users link their OneDrive for Business accounts to AppStream 2.0 to access their files stored in OneDrive.

The following sections show you how to:

Enable OneDrive for an existing AppStream 2.0 stack.
Provide permissions to your users to link OneDrive with AppStream 2.0.
Connect to OneDrive and test your connection.
There are also steps at the end of this post to help:

Users remove OneDrive permissions from AppStream 2.0.
Administrators disable OneDrive permissions for an AppStream 2.0 stack.
Prerequisites
To complete the procedures in this post, you need:

An AppStream 2.0 image that uses an AppStream 2.0 agent published on or after July 26, 2018.
An AppStream 2.0 stack with an associated fleet.
An active Microsoft Office 365 or OneDrive for Business account with a valid organizational domain.
User accounts within the domain to use with AppStream 2.0.
Step 1: Enable OneDrive for an existing AppStream 2.0 stack
You can enable OneDrive for Business for a new or existing stack using the AppStream 2.0 console, AWS SDK, or AWS CLI for AppStream 2.0.

Log in to the AppStream 2.0 console, choose Stacks, and select the stack for which to enable OneDrive.
In the stack details, choose the Storage tab, then choose Enable OneDrive for Business.
Type the organizational domain to connect with AppStream 2.0, then choose Enable You can connect up to 10 domains.
Step 2: Provide users permissions to link OneDrive to AppStream 2.0
Before you let users use OneDrive with AppStream 2.0, you must provide them permissions to link their OneDrive account with third party web apps. You can do that by following the steps below.

Log in your Office 365 or OneDrive for Business admin console.
Choose Settings, Services & add-ins.
From the list of apps, choose Integrated Apps.
Allow users in your organization to allow third party web apps to have access to their Office 365 information, then choose Save.
Step 3: Connect to OneDrive as a user and test the connection
The next step is to launch a streaming session and test the user experience.

Launch a streaming session for the stack that is enabled to use OneDrive for Business.
On the session toolbar, choose the My Files option, which is represented by a folder icon.
When prompted, choose Add Storage, One Drive.
The list of organizational domains that you added in the console displays here. Choose the email domain that you use for signing into your Office 365 or OneDrive for Business account.
When prompted, sign in with your OneDrive for Business credentials, and allow AppStream 2.0 to access your OneDrive.
After successful authentication, OneDrive is listed as one of the folders in My Files and as a folder in Windows File Explorer.
You can now access and use your personal and shared files stored in your OneDrive with your applications from within the streaming session. File changes that you make regularly sync to the OneDrive cloud during the streaming session.
Note: Users link their OneDrive account only once. OneDrive is automatically mounted to the new streaming sessions launched by the user, until the user revokes the access permissions from AppStream 2.0.

Removing OneDrive permissions from AppStream 2.0
At any time, users can remove the OneDrive permissions they provided to AppStream 2.0. Provide them the following steps:

Log in your Office 365 or OneDrive for Business online account.
On the account menu in the top right corner, choose My account.
On the account dashboard page, under the App permissions section, choose Change app permissions.
Under the Amazon AppStream 2.0 application, choose Revoke.
Note: You can restore permissions at any time from within your streaming session.

Disable OneDrive permissions to all users of a stack
Administrators can disable OneDrive permissions for a stack at any time using the AWS Management Console, AWS SDK, or AWS CLI. Use the following steps:

Log in to the AppStream 2.0 console.
Choose the AppStream 2.0 stack.
From the stack details, choose the Storagetab, then clear the Enable OneDrive for Business
When prompted, type CONFIRM, then choose Disable.
The next time users of the stack launch a new streaming session, OneDrive is not mounted.

Conclusion
This post demonstrated how you can enable OneDrive for Business as a user storage option with AppStream 2.0. You can use this with other storage options, and even use multiple storage options at the same time. For example, you can enable Home Folders and OneDrive simultaneously. For more information about the user storage options provided by AppStream 2.0, see Enable Persistent Storage for your AppStream 2.0 users.

Resources
Desktop and Application Streaming