Velocet
New Member
Since everyone is freaking out about privacy, data collection, disabling services and other stuff it's time to finally get a solution that works with the least amount of work and no third-party apps like WPD, O&O ShutUp, etc. What most users forget and the apps won't tell you: Most of these settings only work on Enterprise editions.
Microsoft provides an overview of all settings and endpoints that you need to change/block:
Manage connections from Windows 10 operating system components to Microsoft services - This site is the main entry point for Windows.
Overview of privacy controls for Microsoft 365 Apps for enterprise - This site is the main entry point for Office 365 (also applies to Office 2016/2019)
For all you crazy people out there with zero knowledge about what you are doing (like using the hosts file to block IPs...) Microsoft is providing a list which endpoint is responsible for which functionality:
Manage connection endpoints for Windows 10 Enterprise, version 2004 - Just click on Learn how to turn off traffic to the following endpoint(s) and you will know which setting it is.
nuhi
To make it as easy as possible for you to implement Microsoft provides a set of files which hold the corresponding GPOs/registry keys. You can always find the latest version of this file (which includes settings for all Windows 10 and Server versions) here:
Windows Restricted Traffic Limited Functionality Baseline
With the provided ADMX and ADML files you also don't have to write any text or explanation. Just parse these XML files. I hope that this will make it less painful for you to implement.
Microsoft provides an overview of all settings and endpoints that you need to change/block:
Manage connections from Windows 10 operating system components to Microsoft services - This site is the main entry point for Windows.
Overview of privacy controls for Microsoft 365 Apps for enterprise - This site is the main entry point for Office 365 (also applies to Office 2016/2019)
For all you crazy people out there with zero knowledge about what you are doing (like using the hosts file to block IPs...) Microsoft is providing a list which endpoint is responsible for which functionality:
Manage connection endpoints for Windows 10 Enterprise, version 2004 - Just click on Learn how to turn off traffic to the following endpoint(s) and you will know which setting it is.
nuhi
To make it as easy as possible for you to implement Microsoft provides a set of files which hold the corresponding GPOs/registry keys. You can always find the latest version of this file (which includes settings for all Windows 10 and Server versions) here:
Windows Restricted Traffic Limited Functionality Baseline
With the provided ADMX and ADML files you also don't have to write any text or explanation. Just parse these XML files. I hope that this will make it less painful for you to implement.