Microsoft Wants To Do Away With Windows 10 Local Accounts

DEAD7 · Feb 27, 2020

Microsoft Wants To Do Away With Windows 10 Local Accounts

As time goes on, it is becoming increasingly clear that Microsoft is trying to make local accounts a thing of the past and push all new Windows 10 users to a Microsoft account. Since Windows 10 1903, Microsoft quietly changed the Windows Out-of-box Experience (OOBE) or setup experience so that many users are no longer able to create a local account during set up as they could previously. Recently, this change also expanded to international users in India and Germany.

For those affected, the only way to create a local account during setup is to disconnect the computer from the Internet. Yes, that's right, Microsoft now makes you disconnect the computer from the Internet to create a local account during setup! If you don't want to disconnect your network, then you need to first set up Windows with a Microsoft Account and then when done with setup go into the Windows 10 'Family & other users' settings and create a local account. Even that is a bit convoluted as you have to first start the process of creating a Microsoft account and finally on the second screen, be given the option that you wish to create a local account. Once a local account has been created, you can delete the original Microsoft account you created during setup.

jj23 · Feb 27, 2020

Easy to push that to standard users, though it's bullshyt, but with domains and active directory, how do they get enterprises to sign on to this?

When you remove a computer from a domain who the fukk wants to be falling back to a Microsoft online account?

Especially if your servers are not connected to the internet....

Black Hans · Feb 27, 2020

So they want users logging into an undisclosed cloud? Gee, I wonder why? :stopitslime:

Companies like MS and Google are openly preying on consumers for their private information and clowns who think nothing is official until CNN, WaPo, or NYTimes says it will try to behave like this is tinfoil nonsense. Sheeple.

Pressure · Feb 27, 2020

jj23 said:
Easy to push that to standard users, though it's bullshyt, but with domains and active directory, how do they get enterprises to sign on to this?

When you remove a computer from a domain who the fukk wants to be falling back to a Microsoft online account?

Especially if your servers are not connected to the internet....

In and Enterprise environment users are using AD or AAD accounts.

This is no different.

Pressure · Feb 27, 2020

Black Hans said:
So they want users logging into an undisclosed cloud? Gee, I wonder why? Companies like MS and Google are openly preying on consumers for their private information and clowns who think nothing is official until CNN, WaPo, or NYTimes says it will try to behave like this is tinfoil nonsense. Sheeple.

No, they're associating your system login with your MSA login.

Beyond the practical benefits of password recovery, finding lost devices, and data sync across your devices via one drive you also gain the benefits of MFA without deploying your own ADFS infrastructure.

That being said, this article is stupid. Consumer machines don't come connected to the internet when setting up windows. :russ:

StatUS · Feb 27, 2020

You can bypass this by entering user at the login screen. The device will lock you out and allow you to start a local account. This won't affect AD as @Pressure said because that's basically what it is already.

Could just use Linux though once M$ goes full out though :mjpls:

Vandelay · Feb 27, 2020

Pressure said:
No, they're associating your system login with your MSA login.

Beyond the practical benefits of password recovery, finding lost devices, and data sync across your devices via one drive you also gain the benefits of MFA without deploying your own ADFS infrastructure.

That being said, this article is stupid. Consumer machines don't come connected to the internet when setting up windows.

I'm trying to follow, I used to build computers and even with my new laptop Windows always actively tries to connect the internet upon installation, am I missing something? Isn't this how the product keys, updates, and everything setup?

acri1 · Feb 27, 2020

Pressure said:
In and Enterprise environment users are using AD or AAD accounts.

This is no different.

This. I don't know that I'm a fan of the idea but I think it'll impact home users more. As far as enterprise environments, I'm a domain admin so I can join computers to the domain as needed, I'd rarely have use for a local account. :yeshrug:

Still, I wouldn't want my users inadvertently creating Microsoft Accounts because their computer is offline and some prompt or something came up telling them to.

jj23 · Feb 27, 2020

Pressure said:
In and Enterprise environment users are using AD or AAD accounts.

This is no different.

Yep, but loads of servers aren't connected to the net. Especially secure networks. Sometimes you need to remove machines from the domain.

What do you do then?

Pressure · Feb 27, 2020

If you have an MSA account)(

jj23 said:
Yep, but loads of servers aren't connected to the net. Especially secure networks. Sometimes you need to remove machines from the domain.

What do you do then?

Connected to the internet or not these machines are still Domain joined.

Even if we're talking air gapped environments that no different. I'd suspect you have a GPO locking the machines down further.

If you tried to login using your MSA account in environment without internet access it would fail anyway since you couldn't reach the MS endpoint.

This scenario, as described in the article, would only come into play if you installed windows on a personal machine. None of this affects domain joined machines.

If it does, then the admin probably should be fired anyway. :mjlol:

Pressure · Feb 27, 2020

I'm going to deploy a new machine in my lab, install windows, and then laugh.

jj23 · Feb 27, 2020

Pressure said:
If you have an MSA account)(

Connected to the internet or not these machines are still Domain joined.

Even if we're talking air gapped environments that no different. I'd suspect you have a GPO locking the machines down further.

If you tried to login using your MSA account in environment without internet access it would fail anyway since you couldn't reach the MS endpoint.

This scenario, as described in the article, would only come into play if you installed windows on a personal machine. None of this affects domain joined machines.

If it does, then the admin probably should be fired anyway.

Breh I am talking about servers - maybe you misunderstood, even domain joined servers sometimes need to be removed for various reasons, in those situations you need to login with a local account.

King Sun · Feb 27, 2020

Hell fukkin no.

CrushedGroove · Feb 27, 2020

Not sure if it would affect home users much, maybe confuse them initially as they're used to using their machine a certain way.

For the workplace, I would hate it. With the amount of PCs that comes through our hands for setup, you don't want to be forced to use an MS account.

Pressure · Feb 27, 2020

jj23 said:
Breh I am talking about servers - maybe you misunderstood, even domain joined servers sometimes need to be removed for various reasons, in those situations you need to login with a local account.

This is only for some version of windows 10. Based on what I just saw, maybe on home, because pro gave me an option to skip that step. :yeshrug:

Microsoft Wants To Do Away With Windows 10 Local Accounts

More options

DEAD7

Veteran

jj23

Veteran

Black Hans

Follow Jesus. Be Beautiful

Pressure

#PanthersPosse

Pressure

#PanthersPosse

StatUS

Veteran

Vandelay

Life is absurd. Lean into it.

acri1

The Chosen 1

jj23

Veteran

Pressure

#PanthersPosse

Pressure

#PanthersPosse

jj23

Veteran

King Sun

Big Boss

CrushedGroove

Superstar

Pressure

#PanthersPosse

Similar threads