Known Folder Move (KFM) is a set of Group Policy Objects (GPO) settings that attempt to migrate user data into the OneDrive Sync Client with a minimum of user and/or administrator intervention. Data are moved automatically into the user’s OneDrive storage, allowing the user to then access this data from any device that either has the OneDrive application installed or can access the OneDrive web client. This post outlines the preparations for KFM, and the next post covers the Group Policy settings for the OneDrive Sync Client.

As Microsoft’s Enterprise File Share and Sync (EFSS) implementation, OneDrive is rapidly gaining traction within many sectors. Delivered as part of the Office 365 suite, OneDrive offers up to 1TB of free storage space and an easy way for users to access, share, and collaborate on data files across a plethora of different platforms.

One challenge for enterprises in adopting OneDrive is determining how to migrate users to OneDrive seamlessly and effectively. In many environments, users have saved data and documents to many different areas, and migrating these into OneDrive without intervention can prove difficult. However, Microsoft is addressing this issue by providing policies that can help take the sting out of the migration process; one of the most pertinent ones is the Known Folder Move (KFM) feature.

Known Folder Move

KFM currently operates on the Documents, Pictures, and Desktop folders only. I hope that Microsoft will allow more system folders to be added in the future or even allow for custom folders. However, currently having the Desktop folder included is very useful as users commonly store shortcuts and data there when possible. It’s also very useful for nonpersistent environments where users rely on network-stored profiles; for example, if a user’s profile is deleted, the data the user has stored on the desktop are not lost but are instead synchronized back down when the user signs in to OneDrive.


To enable KFM, you need to use the OneDrive Sync Client with build 18.111.0603.0004 or later. If you’re on a lower version, you’ll only be able to synchronize empty folders into the OneDrive client, which really defeats what we’re trying to achieve here!

If you plan to supplement OneDrive KFM with the Files On-Demand feature (and I recommend that you do), then you also need to be on Windows 10 version 1709 or higher, or on Windows Server 2019 for Remote Desktop Session Host systems.

Ideally, your users should be logging on to the client device with the credentials they use to access Office 365 so that if they move to a new device or lose their profile, they can access their synchronized data without having to sign in to OneDrive manually. It’s not a major blocker because the synchronization will occur after they sign in, but it simply makes the process much smoother and more seamless. Most environments use the same sets of credentials, but if you don’t, note that you may have to inform your users that they need to sign in to OneDrive with a different username/password combination.

If you have the Documents, Pictures, and Desktop folders redirected using Folder Redirection (either via GPO or another method), note that you’ll need to disable this at some point to complete the KFM. This means that your Folder Redirection policies should be configured to copy the data back locally when the policy is removed, as shown below.

Folder Redirection removal behavior

Folder Redirection removal behavior

You’ll also need to know your Office 365 tenant ID before beginning to enable KFM. If you don’t know it offhand, simply input your domain name into to find out.


It’s a good idea to target specific batches of users for the OneDrive migration so you don’t get inundated with support calls if problems arise. In a recent project, we prepped groups of 250 users per day to be migrated across to OneDrive.

The first step was to disable any Folder Redirection in place so that the users had the data copied back locally ahead of the migration. Don’t forget, Folder Redirection GPO changes can’t be processed during the user session—the user must log out and back in before the changes are applied. So, not only must the target users pick up the policy changes, they must also log out and back in to activate them.

Subscribe to 4sysops newsletter!

The second step was to deploy the OneDrive Sync Client onto the target devices and apply the corresponding policies. In my next post,  I will explain the main Known Folder Move Group Policy settings.

  1. trent 2 years ago

    Thanks for putting together this guide, its really usefull. 

    I have one quetsion on this – we have a local folder rediect in place, so its to a different location on the C drive for documents and not the default c:\users\username path, this article conflicts with MS article here: – where it says: 

    If folders have been redirected to a location on a local PC:

    Disable the Window Folder Redirection Group Policy and make sure to leave the folder and contents at the redirected location.
    Enable KFM Group Policy. Known folders move to OneDrive.

    is the above folder re-direction guidance for those who have re-directed their docs off the machine, or is this a one size fits all solution? Reason i ask is that it makes my life a lot easier if i just disable folder re-direct and let the folders remain in place. 

  2. rick smith 2 years ago

    How are you handling users that use multiple machines?

  3. Mike 2 years ago

    Good questions here James…

Leave a reply

Please enclose code in pre tags

Your email address will not be published.


© 4sysops 2006 - 2023


Please ask IT administration questions in the forums. Any other messages are welcome.


Log in with your credentials


Forgot your details?

Create Account