Eleven forums < Ntlite forumsThe reason most users (including half of ElevenForums' contributors) are wrong, is the actual behavior changed over time.
21H2 introduced the workaround. It works in all instances. But since every tech blogger had a loud mouth, this workaround intended for enterprise clients was widely shared on every site. This undercuts the reach of MS Account, for without one you can't buy a paid OneDrive subscription. MS essentially makes zero off Windows, but OneDrive and O365 subscriptions are the cash cow for Windows Consumer.
22H2 changed this behavior. BypassRNO doesn't work in all instances, especially if Windows already detected there was a valid network connection before you tried rebooting. So people moved to the fake e-mail account hack. But again, too much of the same over-reporting lead MS to block some fake accounts from working, so you need to invent a new fake account.
Like everything in Windows, it's all timing based. The earlier the reg key is inserted (reg hive, specialize pass), the more effective the bypass is. MS is expecting you to think they're stupid, and OOBE\BypassRNO will still work on 22H2 and later. Nope. They changed the logic and now are checking much earlier in the OOBE workflow.
Every time I roll my eyes on ElevenForums, I keep thinking someone should just make a comprehensive test matrix of what works and what doesn't. But half of the crowd is working off tribal knowledge, and doesn't bother to do updated testing.
The bypass check works differently btw 21H2 and 22H2+ releases. A number of times I've forgotten (or mis-applied) the reg in the image, and presumed I could just run OOBE\BypassRNO to get past OOBE – Nope. Which is why when I'm locked out and too lazy to remake the image, I will switch to the Work or School account hack on Pro.
you got to test test test before deployment. people will say that tweak X works on windows 10 but wont usually say which version of windows 10, there have been 14 versions of windows 10 and to me that equates to 14 service packs, do you remember the fun and games when xp sp2 came out? i prefer to class each version as a new os in its own right due to the constant changes, even in a version series so thats why i list my stuff as 17763.3165 for example so if anyone complains i can say that it did work on 17763.3165.The reason most users (including half of ElevenForums' contributors) are wrong, is the actual behavior changed over time.
Most of that comes from telemetry, Windows Update, Microsoft Store, and the junk we're all trying to debloat. You can see a general overview by looking at the Network Usage page in Windows, which details how much data each item is downloading/uploading, and with enough general tweaking it will reduce this overhead as a side effect. My Optimized Image guide has a drastically reduced data usage page compared to a default install.I made a compilation of some things that appeared on my firewall. Which of these items can I safely block access to?
Did you inspect the block list? 1/2 are essential Windows services, 1/4 are vaguely detailed to the point of being unhelpful, and only 1/4 can be recognized as telemetry spam. The problem with low-end or 3rd-party firewalls are their self-learning heuristics (or lack of) will create a lot of false positives.Most of that comes from telemetry, Windows Update, Microsoft Store, and the junk we're all trying to debloat. You can see a general overview by looking at the Network Usage page in Windows, which details how much data each item is downloading/uploading, and with enough general tweaking it will reduce this overhead as a side effect. My Optimized Image guide has a drastically reduced data usage page compared to a default install.
Name: a2-18-127-229.deploy.static.akamaitechnologies.com
Address: 2.18.127.229
It can check whether the digital signature of the file is valid.Windows Explorer
InstallService - Windows installer for apps
It is only essential, if the one uses Windows DoH, if DNS service is disabled and DNS set manually, it will not make any requests.DNS Caching Resolver - Essential service
Used for ping. I block it, apps like XSplit Broadcaster can ping separately.NT Kernel & System
Required to update certificates used by browsers and to update digital signatures.Cryptographic Services
I generally allow MS processes to connect only to MS IP ranges and CDN for updates and MS related stuff.Windows Explorer
System Settings
Host Process for Tasks
CU preview (KB5040527) , personally would wait for the official instead of the previewToday an update was released
Windows Registry Editor Version 5.00
[HKEY_LOCAL_MACHINE\SYSTEM\Setup]
"CmdLine"="X:\\sources\\setup.exe"