check before: 2025-10-31
Product:
Entra, Microsoft 365 Apps, Microsoft Edge, Microsoft Lists, OneDrive, SharePoint, Windows, Windows Virtual Desktop
Platform:
Online, Web, World tenant
Status:
Change type:
Admin impact, Updated message, User impact
Links:
Details:
Summary:
Chromium browsers will restrict local network access, causing OneDrive and SharePoint web apps to prompt users for permission, impacting performance and offline use. Admins must configure the LocalNetworkAccessAllowedForUrls policy to pre-authorize trusted domains, preventing prompts and preserving functionality before Chromium 142 rollout in October 2025.
Details:
Updated October 20, 2025: We have updated the content to correctly reference Chromium 142. Thank you for your patience.
[Introduction]
Upcoming privacy-related changes in Chromium-based browsers (Google Chrome and Microsoft Edge) will increase restrictions on local network access. When enforcement begins, users accessing OneDrive for Web (and some integrated Microsoft 365 experiences such as Microsoft Lists and SharePoint Document Libraries) will encounter a browser permission prompt for local network access unless the required policy is in place. If the permission is not allowed, performance optimizations and offline capabilities powered by OneDrive and Share Point will not be available. This communication provides required administrator actions to prevent loss of functionality.
[When this will happen:]
Chrome and Edge will roll out this privacy related change as part of Chromium 142 at the end of October 2025 (previously end of September).
Change Category:
XXXXXXX ... free basic plan only
Scope:
XXXXXXX ... free basic plan only
Release Phase:
Created:
2025-09-10
updated:
2025-10-21
Task Type
XXXXXXX ... free basic plan only
Docu to Check
XXXXXXX ... free basic plan only
MS How does it affect me
XXXXXXX ... free basic plan only
MS Preperations
XXXXXXX ... free basic plan only
MS Urgency
XXXXXXX ... free basic plan only
MS workload name
XXXXXXX ... free basic plan only
Pictures
XXXXXXX ... free basic plan only
summary for non-techies**
XXXXXXX ... free basic plan only
Direct effects for Operations**
Performance Degradation
Users will experience slower access to OneDrive and SharePoint due to lack of performance optimizations, leading to frustration and decreased productivity.
- roles: End Users, IT Support Staff
- references: https://learn.microsoft.com/deployedge/microsoft-edge-browser-policies/localnetworkaccessallowedforurls" target="_blank" rel="nofollow noopener noreferrer">https://learn.microsoft.com/deployedge/microsoft-edge-browser-policies/localnetworkaccessallowedforurls, https://support.microsoft.com/office/work-with-onedrive-web-app-when-offline-05d1865d-8694-4c0a-8e46-28ccb8c58b37
" target="_blank" rel="nofollow noopener noreferrer">https://support.microsoft.com/office/work-with-onedrive-web-app-when-offline-05d1865d-8694-4c0a-8e46-28ccb8c58b37
Increased Helpdesk Contacts
The introduction of permission prompts will lead to an increase in helpdesk requests as users encounter unexpected issues with accessing OneDrive and SharePoint.
- roles: IT Support Staff, End Users
- references: https://chromeenterprise.google/policies/#LocalNetworkAccessAllowedForUrls, https://learn.microsoft.com/deployedge/microsoft-edge-browser-policies/localnetworkaccessallowedforurls" target="_blank" rel="nofollow noopener noreferrer">https://learn.microsoft.com/deployedge/microsoft-edge-browser-policies/localnetworkaccessallowedforurls
Loss of Offline Functionality
Without pre-authorization of local network access, users will lose the ability to access OneDrive and SharePoint offline, impacting their ability to work remotely or without internet access.
- roles: End Users, IT Support Staff
- references: https://support.microsoft.com/office/work-with-onedrive-web-app-when-offline-05d1865d-8694-4c0a-8e46-28ccb8c58b37, https://learn.microsoft.com/deployedge/microsoft-edge-browser-policies/localnetworkaccessallowedforurls" target="_blank" rel="nofollow noopener noreferrer">https://learn.microsoft.com/deployedge/microsoft-edge-browser-policies/localnetworkaccessallowedforurls
Configutation Options**
XXXXXXX ... paid membership only
Opportunities**
Enhanced User Experience through Policy Configuration
By pre-authorizing trusted domains using the LocalNetworkAccessAllowedForUrls policy, users will not encounter permission prompts, ensuring seamless access to OneDrive and SharePoint. This leads to improved performance and offline capabilities, enhancing overall user satisfaction and productivity.
- next-steps: Identify all relevant SharePoint and OneDrive endpoints for your organization. Configure the LocalNetworkAccessAllowedForUrls policy and deploy it to all managed devices before the Chromium 142 rollout.
- roles: IT Administrators, End Users, Support Staff
- references: https://chromeenterprise.google/policies/#LocalNetworkAccessAllowedForUrls, https://learn.microsoft.com/deployedge/microsoft-edge-browser-policies/localnetworkaccessallowedforurls
Reduced Helpdesk Support Requests
Implementing the necessary browser policy will prevent users from encountering prompts that could lead to confusion and frustration. This proactive approach will likely reduce the number of helpdesk tickets related to access issues, freeing up IT resources for other tasks.
- next-steps: Monitor helpdesk ticket trends before and after policy implementation to quantify the reduction in support requests. Train helpdesk staff on the changes to provide better user support.
- roles: Helpdesk Staff, IT Administrators
- references: https://support.microsoft.com/office/work-with-onedrive-web-app-when-offline-05d1865d-8694-4c0a-8e46-28ccb8c58b37
Improved Compliance and Security Management
By controlling local network access through a defined policy, organizations can better manage compliance and security related to data access. This ensures that only authorized domains are accessible, aligning with internal security governance and reducing the risk of data breaches.
- next-steps: Review and update security policies to include the new browser settings. Ensure that all endpoints are compliant with the latest security standards and conduct regular audits to maintain compliance.
- roles: Compliance Officers, IT Security Staff, IT Administrators
- references: https://learn.microsoft.com/deployedge/microsoft-edge-browser-policies/localnetworkaccessallowedforurls
Potentional Risks**
XXXXXXX ... paid membership only
IT Security**
XXXXXXX ... paid membership only
explanation for non-techies**
XXXXXXX ... free basic plan only
** AI generated content. This information must be reviewed before use.
a free basic plan is required to see more details. Sign up here
A cloudsocut.one plan is required to see all the changed details. If you are already a customer, choose login.
If you are new to cloudscout.one please choose a plan.
change history
| Date | Property | old | new |
| 2025-10-21 | MC Messages | Updated October 3, 2025: We have updated the timeline. Thank you for your patience.
[Introduction] Upcoming privacy-related changes in Chromium-based browsers (Google Chrome and Microsoft Edge) will increase restrictions on local network access. When enforcement begins, users accessing OneDrive for Web (and some integrated Microsoft 365 experiences such as Microsoft Lists and SharePoint Document Libraries) will encounter a browser permission prompt for local network access unless the required policy is in place. If the permission is not allowed, performance optimizations and offline capabilities powered by OneDrive and Share Point will not be available. This communication provides required administrator actions to prevent loss of functionality. [When this will happen:] Chrome and Edge will roll out this privacy related change as part of Chromium 141 at the end of October 2025 (previously end of September). | Updated October 20, 2025: We have updated the content to correctly reference Chromium 142. Thank you for your patience.
[Introduction] Upcoming privacy-related changes in Chromium-based browsers (Google Chrome and Microsoft Edge) will increase restrictions on local network access. When enforcement begins, users accessing OneDrive for Web (and some integrated Microsoft 365 experiences such as Microsoft Lists and SharePoint Document Libraries) will encounter a browser permission prompt for local network access unless the required policy is in place. If the permission is not allowed, performance optimizations and offline capabilities powered by OneDrive and Share Point will not be available. This communication provides required administrator actions to prevent loss of functionality. [When this will happen:] Chrome and Edge will roll out this privacy related change as part of Chromium 142 at the end of October 2025 (previously end of September). |
| 2025-10-21 | MC Last Updated | 10/03/2025 17:17:59 | 2025-10-20T21:07:20Z |
| 2025-10-21 | MC Summary | Chromium browsers will restrict local network access, causing OneDrive and SharePoint web apps to prompt users for permission, impacting performance and offline use. Admins must configure the LocalNetworkAccessAllowedForUrls policy to pre-authorize trusted domains, preventing prompts and preserving functionality before Chromium 141 rollout in October 2025. | Chromium browsers will restrict local network access, causing OneDrive and SharePoint web apps to prompt users for permission, impacting performance and offline use. Admins must configure the LocalNetworkAccessAllowedForUrls policy to pre-authorize trusted domains, preventing prompts and preserving functionality before Chromium 142 rollout in October 2025. |
| 2025-10-03 | MC Messages | Updated September 15, 2025: We have updated the content. Thank you for your patience.
[Introduction] Upcoming privacy-related changes in Chromium-based browsers (Google Chrome and Microsoft Edge) will increase restrictions on local network access. When enforcement begins, users accessing OneDrive for Web (and some integrated Microsoft 365 experiences such as Microsoft Lists and SharePoint Document Libraries) will encounter a browser permission prompt for local network access unless the required policy is in place. If the permission is not allowed, performance optimizations and offline capabilities powered by OneDrive and Share Point will not be available. This communication provides required administrator actions to prevent loss of functionality. [When this will happen:] Chrome and Edge will roll out this privacy related change as part of Chromium 141 at the end of September. | Updated October 3, 2025: We have updated the timeline. Thank you for your patience.
[Introduction] Upcoming privacy-related changes in Chromium-based browsers (Google Chrome and Microsoft Edge) will increase restrictions on local network access. When enforcement begins, users accessing OneDrive for Web (and some integrated Microsoft 365 experiences such as Microsoft Lists and SharePoint Document Libraries) will encounter a browser permission prompt for local network access unless the required policy is in place. If the permission is not allowed, performance optimizations and offline capabilities powered by OneDrive and Share Point will not be available. This communication provides required administrator actions to prevent loss of functionality. [When this will happen:] Chrome and Edge will roll out this privacy related change as part of Chromium 141 at the end of October 2025 (previously end of September). |
| 2025-10-03 | MC Last Updated | 09/15/2025 15:12:52 | 2025-10-03T17:17:59Z |
| 2025-10-03 | MC Summary | Chromium browsers will restrict local network access, causing OneDrive, SharePoint, and Microsoft Lists web apps to prompt users for permission. Without admin-configured browser policies allowing trusted Microsoft 365 domains, users will lose performance and offline capabilities. Admins must deploy the LocalNetworkAccessAllowedForUrls policy before Chromium 141 rollout in late September. | Chromium browsers will restrict local network access, causing OneDrive and SharePoint web apps to prompt users for permission, impacting performance and offline use. Admins must configure the LocalNetworkAccessAllowedForUrls policy to pre-authorize trusted domains, preventing prompts and preserving functionality before Chromium 141 rollout in October 2025. |
| 2025-09-16 | MC prepare | Identify Required Domains
Include your organization's SharePoint Online and OneDrive endpoints, for example: https://YOURTENANT-my.sharepoint.com or https://YOURTENANT.sharepoint.com Add additional sanctioned SharePoint Online host variations if applicable (e.g., specialized cloud environments). Avoid overly broad wildcards-conform to internal security governance. Configure Browser Policy Set the Chromium policy LocalNetworkAccessAllowedForUrls (Chrome Enterprise / Edge policy) to pre-authorize the listed domains. Apply via: ADMX / JSON for Windows; plist or configuration profile for macOS (Chrome and Edge). Roll out to all managed device groups (Windows, macOS, VDI as applicable). Even if the following policies are currently enabled by policy, deploy the allow-list to prevent future prompts and avoid user confusion. DisableNucleusSync DisableOfflineMode Remediation for Users Who Already Clicked Block Deploying the managed LocalNetworkAccessAllowedForUrls policy will override any prior per-user deny state and enforce the allow setting once the policy is applied to the device/profile; no end-user action is required after policy propagation. If you need immediate remediation before policy reaches the device, have the user open the affected OneDrive site, use the site (lock) icon, reset or change the local/network device access permission to Allow, then refresh. [Compliance considerations:] Compliance AreaExplanation Alters how existing customer data is accessedLocal network access impacts how OneDrive and SharePoint optimize performance and offline access to cached data. Includes admin controlAdmins can configure the LocalNetworkAccessAllowedForUrls policy and deploy it via group policy or configuration profiles. Can be controlled through Entra ID group membershipPolicy deployment can be scoped to device groups managed via Entra ID. Allows user to enable/disable featureUsers can manually allow or block local network access via browser prompts if policy is not enforced. https://chromeenterprise.google/policies/#LocalNetworkAccessAllowedForUrls https://learn.microsoft.com/deployedge/microsoft-edge-browser-policies/localnetworkaccessallowedforurls https://support.microsoft.com/office/work-with-onedrive-web-app-when-offline-05d1865d-8694-4c0a-8e46-28ccb8c58b37 | Identify Required Domains
Include your organization's SharePoint Online and OneDrive endpoints, for example: https://YOURTENANT-my.sharepoint.com or https://YOURTENANT.sharepoint.com Add additional sanctioned SharePoint Online host variations if applicable (e.g., specialized cloud environments). Avoid overly broad wildcards-conform to internal security governance. Configure Browser Policy Set the Chromium policy LocalNetworkAccessAllowedForUrls (Chrome Enterprise / Edge policy) to pre-authorize the listed domains. Apply via: ADMX / JSON for Windows; plist or configuration profile for macOS (Chrome and Edge). Roll out to all managed device groups (Windows, macOS, VDI as applicable). Even if the following policies are currently enabled by policy, deploy the allow-list to prevent future prompts and avoid user confusion. DisableNucleusSync DisableOfflineMode Remediation for Users Who Already Clicked Block Deploying the managed LocalNetworkAccessAllowedForUrls policy will override any prior per-user deny state and enforce the allow setting once the policy is applied to the device/profile; no end-user action is required after policy propagation. If you need immediate remediation before policy reaches the device, have the user open the affected OneDrive site, use the site (lock) icon, reset or change the local/network device access permission to Allow, then refresh. Ensure your Sync Client is updated to v.25.164 1. Per machine SKU: The Sync client will automatically apply the required permissions and policies for existing users in Chrome and Edge-no user action is needed. 2. Per user SKU: The Sync client will prompt users via a Windows Toast notification to enable these permissions. Users should follow the notification instructions to complete setup. [Compliance considerations:] Compliance AreaExplanation Alters how existing customer data is accessedLocal network access impacts how OneDrive and SharePoint optimize performance and offline access to cached data. Includes admin controlAdmins can configure the LocalNetworkAccessAllowedForUrls policy and deploy it via group policy or configuration profiles. Can be controlled through Entra ID group membershipPolicy deployment can be scoped to device groups managed via Entra ID. Allows user to enable/disable featureUsers can manually allow or block local network access via browser prompts if policy is not enforced. https://chromeenterprise.google/policies/#LocalNetworkAccessAllowedForUrls https://learn.microsoft.com/deployedge/microsoft-edge-browser-policies/localnetworkaccessallowedforurls https://support.microsoft.com/office/work-with-onedrive-web-app-when-offline-05d1865d-8694-4c0a-8e46-28ccb8c58b37 |
| 2025-09-16 | MC MessageTagNames | User impact, Admin impact | Updated message, User impact, Admin impact |
| 2025-09-16 | MC Summary | Chromium browsers will restrict local network access, prompting users for permission when accessing OneDrive, SharePoint, and Microsoft Lists. Without configuring the LocalNetworkAccessAllowedForUrls policy to pre-authorize trusted domains, users will face slower performance and loss of offline capabilities. Admins must deploy this policy before the change rolls out in Chromium 141 at September's end. | Chromium browsers will restrict local network access, causing OneDrive, SharePoint, and Microsoft Lists web apps to prompt users for permission. Without admin-configured browser policies allowing trusted Microsoft 365 domains, users will lose performance and offline capabilities. Admins must deploy the LocalNetworkAccessAllowedForUrls policy before Chromium 141 rollout in late September. |
| 2025-09-16 | MC Last Updated | 09/10/2025 01:08:35 | 2025-09-15T15:12:52Z |
| 2025-09-16 | MC Messages | [Introduction]
Upcoming privacy-related changes in Chromium-based browsers (Google Chrome and Microsoft Edge) will increase restrictions on local network access. When enforcement begins, users accessing OneDrive for Web (and some integrated Microsoft 365 experiences such as Microsoft Lists and SharePoint Document Libraries) will encounter a browser permission prompt for local network access unless the required policy is in place. If the permission is not allowed, performance optimizations and offline capabilities powered by OneDrive and Share Point will not be available. This communication provides required administrator actions to prevent loss of functionality. [When this will happen:] Chrome and Edge will roll out this privacy related change as part of Chromium 141 at the end of September. | Updated September 15, 2025: We have updated the content. Thank you for your patience.
[Introduction] Upcoming privacy-related changes in Chromium-based browsers (Google Chrome and Microsoft Edge) will increase restrictions on local network access. When enforcement begins, users accessing OneDrive for Web (and some integrated Microsoft 365 experiences such as Microsoft Lists and SharePoint Document Libraries) will encounter a browser permission prompt for local network access unless the required policy is in place. If the permission is not allowed, performance optimizations and offline capabilities powered by OneDrive and Share Point will not be available. This communication provides required administrator actions to prevent loss of functionality. [When this will happen:] Chrome and Edge will roll out this privacy related change as part of Chromium 141 at the end of September. |
| 2025-09-16 | MC How Affect | Who is affected:
All users accessing OneDrive for Web, Microsoft Lists, and SharePoint Document Libraries via Chrome or Edge browsers. Admins managing browser policies for Windows, macOS, and VDI environments. What will happen: If no action is taken: Users will see a new browser prompt requesting permission for local network access when opening OneDrive for Web and Lists. If users do not click Allow, the following results occur on that device: Performance acceleration will not be available (loss of faster data access behavior). Offline functionality in OneDrive Web will not be available. The experience will be slower and less resilient, and helpdesk contacts will increase due to unexpected prompts and missing offline capability. When the recommended browser policy is deployed in advance, the prompt is suppressed for the specified trusted Microsoft 365 endpoints and existing performance, and offline behavior are preserved. The policy prevents loss of existing capability and avoids user confusion. | If no action is taken:
Who is affected: All users accessing OneDrive for Web, Microsoft Lists, and SharePoint Document Libraries via Chrome or Edge browsers. Admins managing browser policies for Windows, macOS, and VDI environments. What will happen: If no action is taken: Users will see a new browser prompt requesting permission for local network access when opening OneDrive for Web and Lists. If users do not click Allow, the following results occur on that device: Performance acceleration will not be available (loss of faster data access behavior). Offline functionality in OneDrive Web will not be available. The experience will be slower and less resilient, and helpdesk contacts will increase due to unexpected prompts and missing offline capability. When the recommended browser policy is deployed in advance, the prompt is suppressed for the specified trusted Microsoft 365 endpoints and existing performance, and offline behavior are preserved. The policy prevents loss of existing capability and avoids user confusion. |
Last updated 5 days ago ago
