back to article Windows 11 adds auto-recovery, kills offline setup loophole

Windows Insiders will soon get their hands on Microsoft's attempt to ward off another CrowdStrike incident, and the company is also closing a loophole for users who don't want a Microsoft account. Quick Machine Recovery (QMR) is rolling out to Windows Insiders in the Beta channel as part of build 26120.3653. It is aimed at …

  1. xyz Silver badge

    I'm so glad I installed Mint

    And toasted that win 11 POS.

    1. Alumoi Silver badge

      Re: I'm so glad I installed Mint

      Why did you wait until 11?

      1. Bryan W
        Devil

        Re: I'm so glad I installed Mint

        We all have different thresholds for pain.

        1. Anonymous Coward
          Anonymous Coward

          Re: I'm so glad I installed Mint

          Some of us are forced to use Windows in unimaginative corporations that think Linux is the refuge of the greater unwashed.

          At home, I have a Threadripper Pro running Linux Mint 22 just fine.

      2. M.V. Lipvig Silver badge

        Re: I'm so glad I installed Mint

        In my case, I waited until my Win7 box was coming apart. It was literally breaking into pieces. The screen had split from its backing, it would slowly fall backwards when in use, the mousepad stopped working, can't read the keys anymore, ect. You na e it, it was going bad. Pull the power off and it woudlld die within 30 seconds because the batteries were shot. I definitely got my money's worth out of it.

        The new one, I had to create a Windows account because it refused to allow me to get access to the firmware menu before an install was completed, but the same day I started using it Win11 was gone. Well, it's still lurking but I'll never use it. Eventually when I have a free day, I'll do a full wipe.

    2. cdilla

      Re: I'm so glad I installed Mint

      I did exactly the same a month or so back. But it did raise one regret; not doing it sooner.

    3. 0laf Silver badge

      Re: I'm so glad I installed Mint

      My Ryzen 7 desktop went POP!_OS last week.

      Was a bit of a ballache to get going. I feel dirty saying it but GPT was really useful for fixing the borked linux install.

      I do kinda wish I'd used CoPilot to fix it just to twist the knife a little.

    4. navarac Silver badge

      Re: I'm so glad I installed Mint

      I saw the writing on the wall and did exactly that in 2020. Five years on I don't regret it. Microsoft has totally lost the plot when it comes to Windows and satisfying their customers. I know businesses must make money and please shareholders, but not while taking the piss out of product users, especially me. I don't take kindly to it, especially when there are better products for my use case. YMMV, of course.

    5. FuzzyTheBear Silver badge
      Happy

      Re: I'm so glad I installed Mint

      I installed Linux when RedHat was at 6.2 .. never used anything else at home than Linux since. Over 20 years,

      Mint for at least 4 years if not more. Main reason ? , pain free. Stress is at 0. Never had an issue so big as to need a reinstall .. on and on .. no giving up all my rights to a company and kissing my privacy goodbye. I mean .. You done a great step.

      Congrats.

  2. Jou (Mxyzptlk) Silver badge

    start ms-cxh:localonly

    The new oobe\bypasssnro.cmd has already been found...

    1. UCAP Silver badge

      Re: start ms-cxh:localonly

      The more you tighten your grip ...

    2. TheGriz

      Re: start ms-cxh:localonly

      https://www.tomshardware.com/software/windows/microsoft-eliminates-workaround-that-circumvents-microsoft-account-requirement-during-windows-11-installation

      1. Anonymous Coward Silver badge
        Facepalm

        Re: start ms-cxh:localonly

        Wow. I used to have respect for Tom's Hardware. Haven't looked there for many years, but this article shows that they have no idea.

        Yes, the important info is in there. But stating that adding a registry key will re-enable a .cmd file that has been removed is complete rubbish. It performs the same actions that the .cmd file used to perform.

      2. Luiz Abdala Silver badge
        Megaphone

        Re: start ms-cxh:localonly

        Apparently that original workaround still works if you add this, before that link you posted goes down:

        reg add HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\OOBE /v BypassNRO /t REG_DWORD /d 1 /fshutdown /r /t 0

    3. cmdrklarg

      Re: start ms-cxh:localonly

      If you're on Win11 Home you can use the above.

      For Pro you can specify that you are joining a domain during OOBE without the MS account. The above command works as well.

      1. Luiz Abdala Silver badge
        Windows

        Re: start ms-cxh:localonly

        I was looking for that one.

        Adding an email you are basically putting your PC in an MS Domain. Instead you want to login in your own domain, which would be nice to use the same login in any machine in my house in a centralized way.

        This is brilliant.

    4. GNU Enjoyer
      Angel

      Re: start ms-cxh:localonly

      Yes, microsoft intentionally leaves things like that so the suckers always have a "workaround", that ensures they always end up installing the latest version of the proprietary malware with enhanced spyware in the end (which means the profits never stop flowing).

      There's a reason why microsoft has also only made it mildly difficult to avoid the "license key" payment - the profit they make from spying on the user and the network effect is enough in the end.

      If they can't get you to install windows, the second best thing to microsoft is for you to install a proprietary GNU/Linux distro, regard it as "just Linux" and run their proprietary software on it (as they still end up winning and you lose in the end).

      What they do not want you to do is to install GNU/Linux-libre and refuse to run any of their proprietary malware, or any malware from their buddies, as that means they lose and you win.

      All of the claims above are the result of careful research (they sound insane, but they're true).

      1. Jou (Mxyzptlk) Silver badge

        Re: start ms-cxh:localonly

        > mildly difficult to avoid the "license key" payment - the profit they make from spying

        Well, the real reason is something else: A simple driver update was enough to make Windows XP or Server 2003 (R2) stuck. Same could happen if you upgrade network cards. Stuck in the sense of: Unless you call the hotline, you could not activate the computer - especially if you upgraded network cards, since you couldn't install the driver yet. And either the important machine the XP controlled, or the important services (Mail, domain controller, DHCP...) which were installed on Server 2003, would not start. This caused a lot of issues with good customers, and MS had to pay quite some compensation money to avoid some law suits. But even if the customers did not receive compensation: The higher load on the activation hotline, only 'cause of that, was a financial burden. Edit: And there were even worse situations: The activation UI would not start unless you install an older IE version in safe mode...

        Therefore, since Vista and Server 2008 (without R2) the machine always boots to the desktop, and starts all services normally. Only some optics cannot be changed, and you get a constant reminder in the lower right corner.

        The only exceptions are eval versions, which display how long they still run, and then they shut down after a few hours operation. (Or minutes? Never checked, only read about it)

        1. GNU Enjoyer
          Angel

          Re: start ms-cxh:localonly

          You appear to be describing a minor backpedaling on the restrictions, so the "license check" would occur later (rather than too early, which caused problems) and also degraded operation, rather than total failure to operate (which avoided other problems).

          I was referring to how trivial it is to avoid even degraded operation with activation software right from microsoft github, for example; https://github.com/massgravel/Microsoft-Activation-Scripts

          microsoft could quite easily ban all of such software from their git host and prevent such activation scripts from working, but there's a reason why they allow those kind of things to work - it gets suckers who aren't a big enough sucker to pay, but are a big enough sucker to use their spyware OS if they don't need to directly pay.

    5. Kraft

      Re: start ms-cxh:localonly

      That's a good tip. However, average customers/users who buy a PC or laptop and want to do simple stuff are unlikely to use this alternative. It's good that it has been found, but the push to MS online services is still highly predatory and annoying.

  3. David Austin

    Fun game

    Try talking a normal user through connecting a rebuilt machine to the internet for said "essential" Microsoft account if the Network/Wifi Driver isn't in that version of Windows install media - lots of secret shortcuts and powershell-fu.

    Even as someone who *Can* do it, it quicker and easier to shove an old USB network device in.

    removing /BYPASSNRO says loud and clear Microsoft care more about getting Microsoft accounts in place than you having a working PC.

    what's the betting this is the prepwork for Windows 12 Home removing local accounts completely? Heck, at this point, I wouldn't bank on Windows 12 Pro allowing Domain Join over Azure...

    1. m4r35n357 Silver badge

      Re: Fun game

      Not often mentioned these days but here is another reason I have despised M$ over the years - The Microsoft Network.

      http://www.codersnotes.com/notes/the-microsoft-network/

      Maybe it will finally have its day in the cloud . . .

      1. Annihilator Silver badge

        Re: Fun game

        Christ alive that's unlocked a core memory. That was probably my first home internet experience on the family PC with a 1-month "free trial" (but, to my parent's and then my dismay, a billable phone number...) and working out that while it was connected, Netscape Navigator worked just fine and you weren't locked in to their little window.

    2. blu3b3rry

      Re: Fun game

      The joyfulness of reinstalling W11 on a year-old (intel 13th gen) Lenovo LOQ gaming laptop and finding that it didn't support the wifi chipset out of the box....thankfully it recognised one of my cheapo wifi USB dongles and allowed me to complete the install.

      Barely a month later I switched over to the latest Ubuntu 24.04 LTS - it runs far better and even had driver support for everything out of the box.

      More fool my work colleague who bought a ThinkBook for his wife only to find W11 didn't have the drivers from the factory during OOBE setup!

      No ethernet port either - he ended up bringing it to work where I had the bits and bobs to get it talking to the internet.

      It won't be long before the last W10 machine in the house gets Linux Mint slapped on it, and then it's just a matter of tolerating W10 at work (my workbench PC being far too old for M$ to support - and long may it stay that way).

      1. Joe W Silver badge

        Re: Fun game

        Ah.... drivers....

        Fun, that none of the windows machines knows the newer WiFi standard WPA3 - I did get a few machines with Win10 and Win11 preinstalled for the kids, they would not connect to my WiFi. Installed Linux on them, and it even works out of the box on Devuan on both laptops. I have a second router on my network for the windows machines, so they can be segregated from the rest. Oh, and my Raspberry Pi 3.

      2. The Dogs Meevonks Silver badge

        Re: Fun game

        I've been putting it off for years... I know I need to migrate away from W10Pro this year... But I'm in my mid 40's now and getting to a point where I'm resistant to learning a whole new environment.

        As this system is mostly used for gaming and web browsing, and my work system doesn't require an MS account... I've happily avoided having one forever.

        I'm kinda waiting to see what Steam OS for desktop is like as that will at least be the most compatible platform to carry on using my games...

        1. BinkyTheMagicPaperclip Silver badge

          Re: Fun game

          You can pay for another three years of extended Windows 10 support, but after that it's 11 or 12.

          1. nijam Silver badge

            Re: Fun game

            > You can pay for another three years of extended Windows 10 support, but after that it's 11 or 12.

            I read that as "Windows 10 will be the last Windows ever." Just as was promised at the time.

        2. S O

          Re: Fun game

          SteamOS is just a custom version of Arch with the default desktop being Steam itself in "gamepad" mode, which you can enable yourself. The "desktop mode" is just KDE.

          Any major Linux distro you can install Steam on will work fine.

    3. Tron Silver badge

      Re: Fun game

      Our PCs should be free now, paid for my MS, as they basically own and control them. They have a backdoor into our system and the ability to observe our use of it. They gate what we put on it and can scan all the files on it. It's not 'personal' any more. It's just a telescreen.

      At this rate, your keyboard will freeze whenever your system cannot connect to a MS server.

      Windows has become malware.

      1. GNU Enjoyer
        Angel

        Re: Fun game

        >Our PCs should be free now

        Yes, you should install GNU/Linux-libre.

        >paid for my MS, as they basically own and control them.

        You pay the master, the master doesn't pay you - they own and control them totally, there is no "basically".

        >your keyboard will freeze whenever your system cannot connect to a MS server.

        Yes, the plan is to turn everything into a subscription, with each program running on m$'s servers accessible via the "windows app" (remote desktop), meaning everything would freeze without that m$ server connection.

        >Windows has become malware.

        Windows was malware from the very start, considering the very first version contained malicious features.

        1. DJV Silver badge

          Re: very first version contained malicious features

          From memory, I can't recall Windows 1.x having anything resembling a feature at all!

          1. GNU Enjoyer
            Angel

            Re: very first version contained malicious features

            It inherited the malicious features that were in later versions of MS-DOS, as it was a graphical interface program running on MS-DOS.

      2. nijam Silver badge

        Re: Fun game

        > Windows has become malware.

        Interesting use of the word "become" - still, at least you used the past tense without specifying how long ago...

    4. David Austin

      Re: Fun game

      Quick update; Testing this today with a 7th Gen Surface Pro laptop with Windows 24H2 (build 26100.2033) install media, there is now a GUI Load drivers button during the Out of Box Experience: that means while you still need an "Add Driver" style LAN/Wifi software loaded onto a USB stick, at least you don't have to dive into the command prompt now - the lowest of low bars has been cleared.

      Still, this is a MICROSFT SURFACE laptop, which didn't have a compatible LAN or WAN Driver baked into the install media; heck, it didn't have a touchscreen or keyboard driver loaded in, so had to use a USB set to get through setup - this is how good the driver support is in Microsoft's own hardware, let alone the myriad of other brands out there - this is not an edge case issue...

  4. The Man Who Fell To Earth Silver badge

    Meh

    What I do is log into the Microsoft account I never use during the install, and afterward, I set up a local account, give it Administrator privileges, log out of the Microsoft account, and use the local account thereafter. And setup local accounts for the rest of the household.

    1. Anonymous Coward
      Anonymous Coward

      Re: Meh

      Trouble is that way you still have to HAVE an MS account. Talking to gran setting up over the phone you have to go though all the faff of creating an account you'll never use...

      At least having a skip option means not having that mess.

      1. tony72

        Re: Meh

        If you ignore that Microsoft account long enough, Microsoft will deactivate and eventually close it. So you have to have a Microsoft account, but not forever.

        1. PRR Silver badge

          Re: Meh

          > ignore that Microsoft account long enough, Microsoft will deactivate and eventually close it.

          "my" MS account was originally a Skype account in the day when eBay had just bought it. So 20 years? And I am sure we totally ignored it for most of a decade. No 'just checking', no pinging email, no logging-in at MS websites. It may age-out, maybe is supposed to age-out, but MS can't even do that right.

          1. Jou (Mxyzptlk) Silver badge

            Re: Meh

            My MS accounts ends with @hotmail.com ... long before MS bought Skype.

            1. Phil Kingston

              Re: Meh

              Do you have <firsname>@hotmail.com ? They're the real elders.

              1. Jou (Mxyzptlk) Silver badge

                Re: Meh

                <old-nickname>@hotmail.com, created for I forgot why. I never thought it would be used that long, and for so many things... Like insider feedback, a stranded office 2013 license, some MS-Certifications, MS-Forums... But not used for "sync all my crap to MS", local account be it must.

                1. The Organ Grinder's Monkey

                  Re: Meh

                  "local account be it must."

                  You are Yoda's German cousin & I claim my £5.

              2. Luiz Abdala Silver badge
                Devil

                Re: Meh

                I created one fake Hotmail account to allow Dirt 2 to save local progress (Windows games, remember that crud?) with the zip code of Manhattan, so it would be "supported".

                I still have that around somewhere.

              3. Spamfast
                Happy

                Re: Meh

                Do you have <firsname>@hotmail.com ? They're the real elders.

                Not quite, but I do have firstname_lastname@hotmail.com - actual, real and quite common first & last names at that.

                I also have the same firstnamelastname as my separate Skype ID from its pre-Microsoft days.

                Not that I use either much anymore - there are better voice/videocall services out there and I have my own email domains & servers.

              4. X5-332960073452
                Megaphone

                Re: Meh

                Do I win?

                Five letter (initial and surname) username @hotmail.com i.e. xxxxx@hotmail.com

        2. David 132 Silver badge

          Re: Meh

          Define "ignore". Does booting up a PC that is assigned to that account - even if you're logging in to a local account on it - not reset the "days since this account was used" counter? (Genuine question, not trying to be snarky.)

          1. tony72

            Re: Meh

            I don't know what counts, but I've had Microsoft accounts expire in that same scenario. However, if you ever once allowed any of the elements of Windows 10/11 that want to interact with a Microsoft account to do so, even if you're not using a Microsoft account to log on to the machine, then that would probably do it. You could sign in to said account on the web and check the recent activity, so see if some part of Windows is signing in without you realising it, although at the cost of certainly resetting the "counter".

    2. Jou (Mxyzptlk) Silver badge

      Re: Meh

      You talk about the non-home Windows 11, right?

      See there is a difference. I cannot live with the home version, others don't have the choice (well, they do, but don't).

    3. John Brown (no body) Silver badge

      Re: Meh

      Assuming that your disabled MS account doesn't mysteriously get re-enabled during the monthly round of updates. MS have many years of form for changing a users customised settings back the MS approved defaults without notification.

    4. Who-me

      Re: Meh

      Did an install the other day after an upgrade to a processor. Just created a new online account with a silly name. Did the setup. Created my usual local admin account. Deleted the other account and removed its profile. If MS want to play these games, I’ll just created a new account every time, then abandon it. If everyone does this MS will soon get tired of the mess it makes of their servers.

      1. Anonymous Coward
        Anonymous Coward

        Re: Meh

        I can't remember the details, but wasn't MS turning on Bitlocker automatically for those who had an online account- or at least one tied to an email adress with a Microsoft-owned domain- causing problems for people who'd created an account solely to placate that demand during installation and had then forgotten about it until they later realised they needed it to recover the drive they didn't realise was Bitlocker-enabled?

        1. X5-332960073452

          Re: Meh

          Don't forget to decrypt the disk after doing this (or tattoo the bit locker key on your forehead)!

          Internal storage is encrypted no matter if you used an MS or local account first.

    5. Anonymous Coward
      Anonymous Coward

      Re: Meh

      Remember that if you use a Microsoft account at any point, Windows will merrily send your BitLocker key to MS servers by default. So if you object to that then adjdust or ameliorate accordingly.

      1. Jou (Mxyzptlk) Silver badge

        Re: Meh

        Does not have to be, "any point" is simply wrong. But if you blindly create an MS-Account during install (or enter your MS-Account) and always log in that way, it does unless you tell it "no". You can control it in fine detail - at least on the non-home version. But who in this forum does use a home version for self? I hope none since XP era... And gpedit.msc is not much of a secret to members of this forum too - and if they learn fast.

  5. Anonymous Coward
    Anonymous Coward

    I had to reinstall a windows10 laptop for somebody without internet access recently. The whole "you must have a microsoft account" thing is a massive pain the ass. All of the loopholes I've used to get around it in the past *no longer work*. It took me over an hour of fannying about to make it install (I'm not a newbie, I have been a developer and sysadmin for over 30 years).

    And then it was locked in fucking S mode. And they tell you that the only way to remove S mode is to install an app from the Microsoft Store, for which you need network access and a Microsoft Account. I eventually found a way around that too but seriously what a huge waste of time to do something that should be simple and easy.

    It just shows what utter contempt Microsoft has for the their customers that they deliberately go to such lengths to make life difficult for them.

    1. ecofeco Silver badge

      Right?

      People still talking about Linux being hard when the fact is, it's FAR easier to install than M$ and has been for years.

      1. Joe W Silver badge

        This.

        Unless you want to partition the harddisk you can just hit [enter] [enter] ... until it installs. Oh, and punch in a name and password at one point. It's so easy that I don't even have a template for the VMs I set up - it's only once a quarter, I'd say, so it#s not worth the extra work (yet).

      2. Coastal cutie

        Serious question - can you recommend a good starting point, either online or old fashioned print for someone like me who has never installed an operating system or worked outside the MS ecosystem? I've seriously had enough of MS and want to switch to some form of Linux but don't have the vaguest idea of how to start or what version of it to choose.

        1. DiskJunky

          Linux Mint is the easiest install. Generally speaking, it just works.

          1. Coastal cutie
            Thumb Up

            Thank you

        2. ecofeco Silver badge

          Mint Mate is the closet to Win look and feel.

          Install? Create ISO thumb drive. Make PC start from thumb drive. Mint will load and ask if you want to do one of two things. Run from thumb drive without installing, or go ahead and install. If you choose install, it then asks what drive. If you already have Win installed, it sees that partition and asks how much of the harddrive you want to use for Linux. (partition) You can use all of the drive or part. It will let you choose.

          And that's it. Just self explanatory button clicks. Really, that's as hard as it gets.

          Hardware? Unless you have something exotic, rare or very unusual, it will work straight away. Settings buttons need some exploring, but everything you need is there. Wifi sets up more is or less like Windows. Available networks, enter password, done.

          Truly, the hardest part is learning the settings menu layouts.

          I do not recommend dual boot, but it can be done. However, you will have to hit F12 (change load drives) every single time you reboot and the Linux drive name will be something arcane and not obvious. It can be changed, but I never bother. Once I see the Linux partition is named G45xxxK0976 (or some such arcana) I just remember what it is.

    2. Anonymous Coward
      Anonymous Coward

      Return to sender

      > And they tell you that the only way to remove S mode is to install an app from the Microsoft Store,

      I have used the same solution every time for S Mode. Return to store with "not fit for purpose" as the argument.

      Wasted too much time with that mess.

      1. Annihilator Silver badge

        Re: Return to sender

        To be fair, every machine I've bought that had Windows S had it clearly labelled as such, and it was the work of seconds to disable it.

    3. JimboSmith

      Anonymous Coward

      I had to reinstall a windows10 laptop for somebody without internet access recently. The whole "you must have a microsoft account" thing is a massive pain the ass. All of the loopholes I've used to get around it in the past *no longer work*. It took me over an hour of fannying about to make it install (I'm not a newbie, I have been a developer and sysadmin for over 30 years).

      And then it was locked in fucking S mode. And they tell you that the only way to remove S mode is to install an app from the Microsoft Store, for which you need network access and a Microsoft Account. I eventually found a way around that too but seriously what a huge waste of time to do something that should be simple and easy.

      It just shows what utter contempt Microsoft has for the their customers that they deliberately go to such lengths to make life difficult for them.

      Do you know that was the exact reason that I decided to dump MS on a new laptop and go with Mint instead.

      I was told by the sales bloke that it came with a free trial of MS Office which I said I didn’t want. I asked if they had any machines that didn’t have Windows installed and he said no you have to have it don’t you or the computer won’t work. When I mentioned Linux he just looked a bit blank, so I said what about Apple? Again he just looked blank. Frustrated by the Windows Account and that blasted S Mode, I got a USB stick out and wiped out Windows with Linux.

      1. Annihilator Silver badge

        "I said what about Apple? Again he just looked blank."

        When was this, 1998?

        1. werdsmith Silver badge

          Not necessarily 1998, he just knew that Mac OS won't easily run on the non-Apple hardware.

          Retail staff must really love the customers who are deliberately obtuse to make their job harder.

          But, if it helps with self-esteem for the smart-arse then at least does some good.

          1. JimboSmith

            Not necessarily 1998, he just knew that Mac OS won't easily run on the non-Apple hardware.

            Retail staff must really love the customers who are deliberately obtuse to make their job harder.

            But, if it helps with self-esteem for the smart-arse then at least does some good.

            I work in retail and I have dealt with staff* in the businesses I’ve worked at, and also elsewhere. This bloke for my laptop wasn’t a very communicative person and not the best at technology. He was a little bit clueless as to whether the laptop I was enquiring about had USB-C as it wasn’t mentioned on the ticket (no display model) and he didn’t have the initiative to check on the internet or their internal systems. He also had a total disregard for the customer, as he went to talk to a colleague after initially talking to me and then spent 10 minutes talking to the colleague rather than coming back to me with the information.

            It was only when I walked over to the pair of them that he suddenly remembered I existed. He then had to go and find the information he’d gone to get because the bloke he was talking to didn’t work in that area and didn’t know. He did know that Nick was having a party on Saturday night, that it was bring a bottle and that it was worth going just to see Nick’s new girlfriend who apparently was (and probably still is) extremely good looking and a bit too good for Nick. I know this because I was able to hear them talking from where I was standing.

            *who have in one case been hired for no reason other than they turned up for the interview and no one else did, on a transport strike day.

            1. Anonymous Coward
              Anonymous Coward

              Where the f were you buying a laptop, Argos? I genuinely can't think of any retail environments that sells laptops that aren't on display apart from there. In any case, asking about whether you could buy a laptop without Windows in a retail environment, might I suggest you were being deliberately obtuse.

              1. Anonymous Coward
                Anonymous Coward

                My local Curry’s has information out about products they’ve either sold the display model of or it just isn’t there. When I asked ‘bout a missing monitor salesdroid said a baby was sick over it earlier. Yuck!

    4. Deadly_NZ

      Did they

      Also kill the Rufus settings to make local account and login only using that also you can turn off the bitlocker encryption as well. Well you could about a month ago.

  6. karlkarl Silver badge

    >> We're removing the bypassnro.cmd script from the build to enhance security and user experience of Windows 11. This change ensures that all users exit setup with internet connectivity and a Microsoft Account.

    Stick to LTSC. Microsoft won't remove this or it will fail the "offline from inception" requirement most businesses have for imaging. It would be commercial suicide.

    1. Paul Crawford Silver badge
      Facepalm

      Microsoft won't remove this or it will fail the "offline from inception" requirement most businesses have for imaging. It would be commercial suicide.

      You want to bet on that?

      1. Jou (Mxyzptlk) Silver badge

        Well the LTSC only exists for that, and you can have an Office 2024 nor, and you can still get OnPrem Exchange (possibly even with Lync / Skype For Business working with the Exchange SE).

        Those options are not offered by choice, they exist 'cause governments say that everything else is unacceptable for security reasons.

        1. Paul Crawford Silver badge

          I just looked for Office LTSC and indeed it looks good, but seems MS don't want to sell it to me!

          Oh FFS...back to the air-gapped Office 2010 for "has to match Office work"...

          1. Jou (Mxyzptlk) Silver badge

            of course you can buy Office LTSC. Be a bigger company, and then you can buy it in volume. That is the only way to get it. Home user? Forget it, wait for the monthly update on .torrent or emule or gnutella or whatever network - if you actually need it at home! Starmaker Office is a good alternative, better polished than Libreoffice, which works for most (including me, despite my pet bug not having an xyz chart, but then I write a powershell script, use DOTNET draw functions and do it on my own...)

            1. Paul Crawford Silver badge

              Starmaker Office is a good alternative

              Do you mean SoftMaker Office ?

              https://www.softmaker.com/en

              They offer Linux versions as well, if it is good enough to match formatting in MS' offerings then it spares me the enhittified experience of win11 use (older stuff in Win7 VM, works nicely).

              1. Jou (Mxyzptlk) Silver badge

                Oh bummer, you are right. I use the flip-flip-flip ah forget it, too late for the excuse rolodex...

                1. S O

                  Pretty sure Libre Office has an xyz chart under a different name, I rarely use them myself.

                  1. Jou (Mxyzptlk) Silver badge

                    Nope Libreoffice does not have an xyz chart. Not "a different name", not even as a "gnuplot plugin" or something similar. Feature request open as "bug" since 2012. In 2018 I added the "Excel 4.0 from 1992 can do it" screenshot to that bug - by that time running Windows 2000 VM with Excel 4.0 installed, just to test that. Rumors are that older Excel versions can do it as well, but I could not make it work with older Excel. But I bet there are DOS-Spreadsheet programs around which can do it on a 1989 PC, but I did not invest time in it. Ashton Tate Framework III comes to my mind as a candidate to test with... Before that you simply programmed it yourself in MS/Commodore Basic 3.5 on a C16 or higher, or qbasic.

            2. This post has been deleted by its author

  7. Donn Bly

    Removing BypassNRO is shortsighted

    I support small businesses that are large enough or have software requirements that result in them having an on-premise file server, but for various reasons do NOT use Microsoft 365 or Entra.

    Our process for these businesses is to take any hardware purchased or turned in during turnover and start with a fresh repartitioning, format, and operating system load of Win 11 Pro. These steps all take place offline. Then we disable automatic updates and put this known-clean system on a designated VLAN, load OEM drivers, an initial set of pre-downloaded Microsoft updates, and install our RMM application. Then we use the RMM to finish the updates, log system inventory, etc.

    It then goes back on the shelf until needed, at which time I join it to the domain. All of the preceding steps take place at a location that is inaccessible to the domain controller, in fact, we often don't even know to which site or domain the machine will eventually be deployed. Of the machines that we DO know, we usually have no idea who the end user will be. It may be a new hire or be used to exchange existing equipment.

    At no time during this process is a Microsoft account wanted or needed. If a user is using Microsoft 365, THEN a Microsoft account can be added.

    Given these changes, what will be the "Microsoft recommended and supported" method of preparing these machines?

    1. imanidiot Silver badge

      Re: Removing BypassNRO is shortsighted

      "what will be the "Microsoft recommended and supported" method of preparing these machines?"

      Given how MS operates: "Screw you, that's how" is probably the answer.

    2. collinsl Silver badge

      Re: Removing BypassNRO is shortsighted

      They would say "We'll happily sell you M365 with InTune provisioning and EntraID (or whatever it's called this week) for your login requirements so you don't have to worry about prepping the laptops, just hand them out fresh from the manufacturer and we'll take care of the rest as soon as your user logs in for the first time"

  8. JWLong Silver badge

    I just use the "setup /PRODUCT SERVER".

    No account, no OneDrive, no CoPilot, or the rest of their shit.

    I have 17 outbound firewall rules to stop the telemetry bullshit.

    Then disable the update crap(only allowed to update every 3 months).

    Edit the registry and set the enterprise=1 flag and off and running. Edit a few other thing's and it looks like a plane Jane WIN7 shell.

    There's lots of ways around microshits crap, but for the average user Rufus is probably the easiest/safest.

    I also have ISO's from 22H2 and 23H2 to work with. If I get a machine that's already polluted I just mount one of the above and "format c:" then "setup /PRODUCT SERVER". At this point though you need a good activation key, but that's not hard to do for free.

    Just my 2¢'s worth of telling MS to kiss my white walking ass.

  9. mark l 2 Silver badge

    Microsoft said: "We're removing the bypassnro.cmd script from the build to enhance security and user experience of Windows 11. This change ensures that all users exit setup with internet connectivity and a Microsoft Account."

    Id love for someone from Microsoft to explain how removing a feature that clearly lots of people want, the ability to set up a PC without requiring a MS account, is enhancing their user experience?

    1. John Brown (no body) Silver badge

      It doesn't "enhance security" either. For most home users, the only firewall is the one running on the PC. The one they are installing. The one that might be infected before the install has even finished. Things may have improved. The last time I made that mistake was with Windows XP, so a ling time and a few versions of Windows back in time. I got caught out because my only Windows installs happened at home on my own network protected with a Smoothwall PC (again, yeah, it was a while ago), so I didn't really give much thought to it when helping a friend out and didn't think to pull his broadband Ethernet cable out before starting the install. Fscking Windows XP started screaming about malware as soon as it's built-in scanner started on the first proper boot. So we started all over again without the Ethernet connection and made sure all 3rd party protections were in place before going on line.

      1. Annihilator Silver badge

        Yeah I'm also wondering what level of Orwellian filter they're running to come up with a reason as to why they think using a Microsoft account is "more secure". And what level of security they think the average home user really needs.

        Only one I can think of, they store a copy of the bitlocker key, so you can unlock it for whatever reason. But as I've posted previously, no idea what they think bitlocker is necessary for the average home user either.

        1. John Brown (no body) Silver badge

          Good point. AIUI, Bitlocker is only protecting you data "at rest". Once you are logged in, then any malware is running "as you" and gets access to everything you have access to.

      2. Peter Gathercole Silver badge

        Ah. Smoothwall.

        For it's time, Smoothwall was quite suitable for protecting a home (or even a small business) network without requiring too much effort. I originally put it on a redundant Pentium 100 system which had no CPU fan and a very quiet power supply, even before we had always-on broadband. Using the dial-on-demand feature with a flat fee internet provider (at the time Virgin.net) on a dedicated 2nd phone line enabled me to distribute the Internet firstly to all of the systems in my 'office' (which turned into a gaming room as soon as the kids got home from school), then through thinwire Ethernet to the rooms close to the office (I could have used twisted pair, but I had the cables, terminators, T-pieces and NICs scavenged from bins where I worked as they got thrown out), then twisted pair as computers and laptops got RJ45 Ethernet connectors and I got TP hubs/switches, and then via WiFi to the parts of the house that that would reach.

        Was pleasantly surprised when we had ADSL installed, that I could just replace the modem that provided the Red network with a second NIC connected to the router and re-run the network setup to change the Red definitions, and the whole house had access to broadband (at least where the WiFi would reach) with minimal changes, way before ISPs provided wireless routers.

        I sometimes regret that the community edition of Smoothwall fell into an unmaintained state, although I did contemplate trying to contribute to help keep it alive, but I didn't have the time.

    2. Dave K

      Simple, it's a bare-faced lie. It's typical marketing bluster for trying to explain away a crappy change. Anyone who can use bypassnro actively does NOT want a Microsoft account, it's not something a home user does by accident...

  10. Long John Silver Silver badge
    Pirate

    Where lies 'added value' in Microsoft products?

    Given that reliable 'free', no payment or subscription required, operating system variants exist, upon what basis does MS continue to believe people/companies will pay considerable sums for the privilege of using Windows and associated products?

    For individual users of Linux flavours, there exist nowadays online user groups containing considerable expertise. Similarly, business can acquire 'enterprise' versions with varying degrees of 'pay-for' technical support.

    Register readers, almost daily, are regaled with tales of Windows mishaps, sometimes with further annoyances arising from attempts to fix them. MS is highly restrictive over user options to tailor the product to their specific needs, this being an irritant to knowledgeable folks capable of navigating through the labyrinthine structure. Additionally, apparently increasing use by MS of Windows intrusively to promote its other products and those of "trusted partners" doesn't sit well with the growing number of people unhappy with advertising-based culture (Amazon being the greatest offender). Moreover, the ease by which an almost ubiquitous OS available from only one source can morph into surveillance/control apparatus for state agencies, 'rights' holders, and marketing trackers, should be apparent.

    The aforementioned concerns tie into the growth of 'cloud computing'. Fast Internet connections allow high level operating system functionalities (e.g. running 'office software', many 'entertainment' options including games, and highly specialised applications such as image processing and 'AI') together with some processing-related memory (e.g. RAM) and longer-term storage memory to be devolved to proprietary clouds. Not only is control over data delegated, but also there is incentive for 'consumer' level computing products to be simplified into Internet dumb terminals. Taken a step further, the state could license only certain individuals and institutions to possess stand-alone and non-cloud computing. Ultimately, when long-term storage becomes, for most people, available only in the cloud, it becomes feasible for agencies to check upon legitimacy/legality of 'content'; also they could detect most instances when disapproved encryption has been deployed.

    The sketched scenario offers beguiling simplicity for users of computational devices: unobtrusive apparatus requiring only to be plugged in, text and images viewable anywhere connected without fuss to the household Intranet, most interaction via speech, and mobile phones as intermediaries for uploading homemade images and audio to the cloud. So-called 'influencers' can be recruited to plug this idea as a desirable, economical, and clutter-free, lifestyle choice.

    1. Doctor Syntax Silver badge

      Re: Where lies 'added value' in Microsoft products?

      "upon what basis does MS continue to believe people/companies will pay considerable sums for the privilege of using Windows and associated products?"

      The fact that people actually do do that.

      They do so because there are always people hanging about to assure tham that Linux is hard - FFS read through the contortions some commentators are describing to have to undertake installing Windows.

      They do so because there are always people hanging about to assure them that they'll have to learn a new UI to use Linux despite Microsoft imposing new UIs on them whenever marketing decides to do that.

      They do so because there are always people hanging round to tell them that the choice of distors in confusing despite the fact that they make choices in everything else from breakfast cereals to cars or where to live.

      They do so because they're being slowly boiled like forgs.

      1. Joe W Silver badge

        Re: Where lies 'added value' in Microsoft products?

        They do so, because they have a f'ing old application that they need. There were the pains when they removed the Internet Explorer, because that broke stuff.

        Or they do so because work forces them to. But for me that's our IT department's job, and I just use the machine (to log into my actual development machines).

        1. EricPodeOfCroydon

          Re: Where lies 'added value' in Microsoft products?

          Doesn't have to be an "old" application, just one not available on Linux. I really wish Affinity would make the leap - after all, they have an Apple version, so how hard can it be?

          1. Doctor Syntax Silver badge

            Re: Where lies 'added value' in Microsoft products?

            It's a a vicious circle. It's not available under Linux so people don't run Linux so there's no market pressure on them to do so. However, would it run under Wine?

        2. Doctor Syntax Silver badge

          Re: Where lies 'added value' in Microsoft products?

          You're not the one who's paying them. Your IT department does that. I could investigate whether your old application will run under Wine, but no, it's been persuaded that it would be too difficult for IT professionals to do things like that.

  11. Alistair
    Windows

    Asset value issues dictating installation methods.

    "We have increased our subscriber base by 23% over the last six months because of this change" /s

    Microsoft, much after DOS 6.2 became a seriously traded stock, and an awful lot of folks rely on that stock, so Wall Street BuzzWord Bingo applies. More "subscribers" means more income, means more value, means better stock value, means higher paypackets and golden parachutes for the C Suite. Thus such nonsense will continue unabated, not just with MS, but with pretty much any WallStreet BuzzWord Bingo victim technology corporations. Sadly, there are very many of them.

    1. John Brown (no body) Silver badge

      Re: Asset value issues dictating installation methods.

      Yes, a "subscriber base" that was forced into it isn't a subscriber base. And anyway, surely they already have a "subscriber base" from the licence keys asset list? It's the OS you "subscribe" to, not the MS account.

      1. Doctor Syntax Silver badge

        Re: Asset value issues dictating installation methods.

        A subscriber base that was forced into it is very much a locked=in subscriber base.

  12. Doctor Syntax Silver badge

    "enhance security and user experience of Windows 11"

    Translation. enhance the security of our income and bad user experience of Windows 11

  13. anthonyhegedus Silver badge

    Bollocks

    What a load of enshittification!

  14. navarac Silver badge

    Message for Microshit's CEO SatNad

    It's all about an entitled Tech entity thinking that everyone who uses a computer has always-on internet access so you can scrape their data and make them beholden to you.

    Well, here is the message you stupid morons, NOT everyone has internet access. All you are doing is making people use a non-Microshit OS because they cannot go online to register the PC with you! Really clever marketing, you bozos.

  15. Tron Silver badge

    Microsoft should sponsor Millwall.

    Origin of the chant 'No one likes us, we don't care'.

  16. martinusher Silver badge

    Does it even matter?

    Seriously. Corporate types will just buy a new system. For the rest of us it this stuff worth even the time of day?

  17. Anonymous Coward
    Anonymous Coward

    Relax guys

    Just inhale deeply

    1. Jou (Mxyzptlk) Silver badge
  18. Pelican Express
    Thumb Down

    Goal is targetted ads, not security

    I read somewhere (sorry don't remember link) that an online account give MS a unique advantage of knowing the user location and demographic (age and sex). This kind of information can be leveraged for targetted ads in a more efficient ways than the browser cookies.

    Also having a large verified online user accounts could favor MS as authentication provider for various service providers.

    This seems to make sense to me that MS uses the online accounts as a source of revenue stream. If you are specialists in the domain of ads/auth provider. Hope you can confirm or develop further clarifications.

  19. Zippy´s Sausage Factory
    Devil

    Given that the Microsoft account forces you to use OneDrive, I do wonder why Dropbox aren't making a monopoly complaint. Would have to be in the EU at the moment to have any chance of success at the moment I'd think. Although if they did, I wonder if Windows Defender might suddenly designate Dropbox as malware. Purely by accident, of course, I mean - after all, typos do happen, don't they?

    1. Anonymous Coward
      Anonymous Coward

      Do people still use Dropbox? Their storage prices went to insane levels compared to competition a long time ago and lots of people abandoned ship. Their egress limits were also shit...also Mega exists...you get 10 times more for free than at Dropbox with much more generous egress limits...even if you pay, on Mega you can transfer more than your storage limit, with Dropbox you can transfer orders of magnitude less than your storage limit. It's just shit.

      1. ecofeco Silver badge

        Dropbox lost the plot years ago. High prices, master class in bad UX, excessive up-sell nags, and I will never trust their security.

    2. imanidiot Silver badge

      "I wonder if Windows Defender might suddenly designate Dropbox as malware"

      I haven't used Dropbox in... probably over a decade but I'm not sure that it wouldn't be an accurate designation anyway. I think they only ever got reasonably big by having generous limits and the moment they shrank those (to ridiculous levels) their product was imho entirely uninteresting.

    3. PB90210 Silver badge

      The 'free' OneDrive allocation is just 5Gb, so less useful than the cheapest memory stick

  20. Anonymous Coward
    Anonymous Coward

    I assume this removal of the Microsoft Account workaround will only apply to the home version? The Pro / Enterprise version doesn't require a workaround at the moment - it's simply a case of knowing which non-obvious option to click during setup (join to a domain, which actually creates a local account and doesn't join to a domain).

  21. ICL1900-G3 Silver badge

    Humour

    "We're removing the bypassnro.cmd script from the build to enhance security and user experience of Windows 11" - I wonder if they were able to say that with a straight face.

  22. imanidiot Silver badge

    Anyone who doesn't have a stable, reliable internet connection (or any internet connection) can get bent then?

    And also, it should be entirely MY decision whether or not I want to make a Microsoft account and connect MY computer to the internet...

  23. IGnatius T Foobar !

    Windows users are in an abusive relationship.

    Anyone who continues to use Windows, year after year, while it becomes more and more abusive, needs some serious help. You're supposed to get OUT of abusive relationships. Windows is not going to get less abusive if you just try harder to be a good little user. It's going to get worse and worse. You're being harmed. Get out.

    1. intrigid

      Re: Windows users are in an abusive relationship.

      Some of us refused to get into the abusive relationship in the first place by blocking the Upgrade™ to Windows 8, and we never looked back.

  24. TRT Silver badge

    No.... just no. FFS.

    "We're removing the bypassnro.cmd script from the build to enhance security and user experience of Windows 11. This change ensures that all users exit setup with internet connectivity and a Microsoft Account."

  25. anthonyhegedus Silver badge

    Dogged determination

    This dogged determination to annoy end users smacks of desperation. It's pathetic really

  26. intrigid

    And for Windows 7 holdouts:

    The computing experience just keeps getting better and better every year, relatively speaking.

  27. Groo The Wanderer - A Canuck

    Well, it's a good thing I reinstalled Windows 11 Pro when I did then, because my mobo's network interface isn't supported by the Windows installer and I see no options for installing drivers before the installation proceeds without networking available...

  28. Ascy

    Oh Dear

    Whilst I pay for Microsoft services and have a Microsoft account, I always insist on creating a local account on my multiple machines, so this isn't great news. MS are an odd bunch and I wonder whether they are slowly going downhill. The new windows taskbar is a disaster - apparently, it's too difficult on a technical level to allow it to be docked anywhere other than the bottom of the screen. As a developer, either their devs are morons or they are talking nonsense. The right click menu that hides all the other options that you want is also unwelcome in Windows Explorer. Thankfully, ExplorerPatcher fixes this nonsense, but it really shouldn't have to be this way. Rather than new features and constant nagging to use one of the world's most naff browsers (Edge), I'd much rather MS concentrate on making the OS more polished, more customisable, more performant and more secure.

    As for the people crowing on about moving to desktop Linux, what do you guys actually do on there? I've tried Linux for over 20 years on and off and it's just a complete disaster on the desktop. I admit that I was very impressed with a boxset of SuSE that I purchased back in the early 2000s, but there just weren't the apps to keep me on there. My last attempt was within the last 6 months or so when I tried to put Ubuntu onto a laptop that initially wouldn't upgrade to Windows 11. First off, the TPM didn't work with disk encryption. Then, I tried to get hibernation working, but for some reason, the geniuses that work on Linux think hibernating to a swap file or swap partition is a sensible idea. Except, as they should know, a swap file is used (I'm over simplifying here) when the RAM is full, so you may go to hibernate and find there's no space left. Also, even with space available, it didn't work. And then I installed Vivaldi on there and it looked awful. There are also quite a few applications that I like to use that won't run on Linux.

    So I thought to myself, I can either spend 3 days of my already busy life getting basic things in Ubuntu to work and continue to face more and more problems the longer I use it, or I can go back to installing Windows on my laptop (there was a workaround for the older CPU support which was blocking the Windows 11 upgrade) and be up and running in less than an hour without any problems. Linux and an open source OS is a nice idea in theory, but the current state of Linux on the desktop is real amateur hour stuff, surely for those with far too much time on their hands. So out of Mac, Linux and Windows, the latter is the best of a bad bunch. I just wish MS would make it better, though I'm not holding my breath.

    1. S O

      Re: Oh Dear

      You have some pretty basic misunderstandings here, but it's simplest to say that most things anyone needs to do can be done just as easily under Linux.

      The OS requires less work unless there are missing drivers, like any OS including Windows. Windows uses a separate file for hibernation, Linux does too (or partition). Ubuntu has supported using TPM for full disk encryption for years and you could do it manually since the function became available, I don't know what your problem was.

      Ultimately you real complaint is "it's different and my stuff isn't there", which is fine, but also a sign you weren't interested in funding out of you could make it work for yourself. It's a different OS, you will need to use different things.

POST COMMENT House rules

Not a member of The Register? Create a new account here.

  • Enter your comment

  • Add an icon

Anonymous cowards cannot choose their icon

Other stories you might like