The code below will disable Graph for each individual user by clearing flags in the User Profile Application (UPA). This allows organization to enable the Graph feature overall and Delve App, while avoiding document discovery. Mitigates concern of accidental over sharing (i.e. confidential data with wide open permissions). Cheers!
User Profile Service Application (UPA) shows two properties which manage the delve features:
- OfficeGraphEnabled (ex = True/False)
- DelveFlags (ex = 2048/Null)
Code
Connect-MsolService
$users = Get-MsolUser
$total = $user.Count
foreach ($u in $users) {
$upn = $u.UserPrincipalName
$i++
Write-Progress –Activity "Update User" –Status $upn –PercentComplete ($i/$total)
Set-PnPUserProfileProperty -Account $upn -PropertyName "DelveFlags" -Value $null
Set-PnPUserProfileProperty -Account $upn -PropertyName "OfficeGraphEnabled" -Value $null
}
Write-Host "DONE" –Fore GreenScreenshots
Reference
- https://sharepoint.stackexchange.com/questions/234741/can-you-disable-delve-for-a-particular-site
- https://www.bettercloud.com/monitor/the-academy/disable-delve-and-remove-from-the-office-365-app-launcher/
- http://drewmadelung.com/steps-to-hide-content-from-delve-in-office-365/
- https://docs.microsoft.com/en-us/powershell/module/sharepoint-pnp/set-pnpuserprofileproperty?view=sharepoint-ps
- https://docs.microsoft.com/en-us/powershell/module/sharepoint-pnp/get-pnpuserprofileproperty?view=sharepoint-ps
