home.social

#microsoftaccount — Public Fediverse posts

Live and recent posts from across the Fediverse tagged #microsoftaccount, aggregated by home.social.

  1. Regular warning regarding backups and data recovery with Windows 11 25H2 and Bitlocker encryption.

    By default, new installations of Windows 11 25H2 have BitLocker automatically enabled, on laptops and desktops.

    In theory, the BitLocker recovery keys are transferred to the online Microsoft Account settings when you login that way on Windows 11.

    If you use a Windows local account only then it's not backed up. Nor are you prompted to do so. This is very obviously a potentially dangerous state.

    If you're going with a local account only Windows 11 OS installation then:

    • Backup the recovery keys safely offline,

    AND

    • Keep unencrypted backups of important data off the system (ideally several copies stored separately)

    OR

    • Disable BitLocker

    Unless you have a very specific use case or "interesting" threat model then disabling BitLocker is my suggestion.

    Once BitLocker it's disabled then ensure you are taking regular backups of import data off the PC, ideally multiple copies in separate places for redundancy.

    Hardware and storage media do fail. Motherboards and their TPM / UEFI Firmware data do get damaged. That's where the BitLocker encryption keys are stored.

    If the BitLocker recovery information on the motherboard is damaged or unrecoverable, your BitLocker encrypted data will be unrecoverable without the recovery keys.

    #Windows #BitLocker #MicrosoftAccount #25H2 #DataRecovery

  2. Regular warning regarding backups and data recovery with Windows 11 25H2 and Bitlocker encryption.

    By default, new installations of Windows 11 25H2 have BitLocker automatically enabled, on laptops and desktops.

    In theory, the BitLocker recovery keys are transferred to the online Microsoft Account settings when you login that way on Windows 11.

    If you use a Windows local account only then it's not backed up. Nor are you prompted to do so. This is very obviously a potentially dangerous state.

    If you're going with a local account only Windows 11 OS installation then:

    • Backup the recovery keys safely offline,

    AND

    • Keep unencrypted backups of important data off the system (ideally several copies stored separately)

    OR

    • Disable BitLocker

    Unless you have a very specific use case or "interesting" threat model then disabling BitLocker is my suggestion.

    Once BitLocker it's disabled then ensure you are taking regular backups of import data off the PC, ideally multiple copies in separate places for redundancy.

    Hardware and storage media do fail. Motherboards and their TPM / UEFI Firmware data do get damaged. That's where the BitLocker encryption keys are stored.

    If the BitLocker recovery information on the motherboard is damaged or unrecoverable, your BitLocker encrypted data will be unrecoverable without the recovery keys.

    #Windows #BitLocker #MicrosoftAccount #25H2 #DataRecovery

  3. Regular warning regarding backups and data recovery with Windows 11 25H2 and Bitlocker encryption.

    By default, new installations of Windows 11 25H2 have BitLocker automatically enabled, on laptops and desktops.

    In theory, the BitLocker recovery keys are transferred to the online Microsoft Account settings when you login that way on Windows 11.

    If you use a Windows local account only then it's not backed up. Nor are you prompted to do so. This is very obviously a potentially dangerous state.

    If you're going with a local account only Windows 11 OS installation then:

    • Backup the recovery keys safely offline,

    AND

    • Keep unencrypted backups of important data off the system (ideally several copies stored separately)

    OR

    • Disable BitLocker

    Unless you have a very specific use case or "interesting" threat model then disabling BitLocker is my suggestion.

    Once BitLocker it's disabled then ensure you are taking regular backups of import data off the PC, ideally multiple copies in separate places for redundancy.

    Hardware and storage media do fail. Motherboards and their TPM / UEFI Firmware data do get damaged. That's where the BitLocker encryption keys are stored.

    If the BitLocker recovery information on the motherboard is damaged or unrecoverable, your BitLocker encrypted data will be unrecoverable without the recovery keys.

    #Windows #BitLocker #MicrosoftAccount #25H2 #DataRecovery

  4. Regular warning regarding backups and data recovery with Windows 11 25H2 and Bitlocker encryption.

    By default, new installations of Windows 11 25H2 have BitLocker automatically enabled, on laptops and desktops.

    In theory, the BitLocker recovery keys are transferred to the online Microsoft Account settings when you login that way on Windows 11.

    If you use a Windows local account only then it's not backed up. Nor are you prompted to do so. This is very obviously a potentially dangerous state.

    If you're going with a local account only Windows 11 OS installation then:

    • Backup the recovery keys safely offline,

    AND

    • Keep unencrypted backups of important data off the system (ideally several copies stored separately)

    OR

    • Disable BitLocker

    Unless you have a very specific use case or "interesting" threat model then disabling BitLocker is my suggestion.

    Once BitLocker it's disabled then ensure you are taking regular backups of import data off the PC, ideally multiple copies in separate places for redundancy.

    Hardware and storage media do fail. Motherboards and their TPM / UEFI Firmware data do get damaged. That's where the BitLocker encryption keys are stored.

    If the BitLocker recovery information on the motherboard is damaged or unrecoverable, your BitLocker encrypted data will be unrecoverable without the recovery keys.

    #Windows #BitLocker #MicrosoftAccount #25H2 #DataRecovery

  5. Regular warning regarding backups and data recovery with Windows 11 25H2 and Bitlocker encryption.

    By default, new installations of Windows 11 25H2 have BitLocker automatically enabled, on laptops and desktops.

    In theory, the BitLocker recovery keys are transferred to the online Microsoft Account settings when you login that way on Windows 11.

    If you use a Windows local account only then it's not backed up. Nor are you prompted to do so. This is very obviously a potentially dangerous state.

    If you're going with a local account only Windows 11 OS installation then:

    • Backup the recovery keys safely offline,

    AND

    • Keep unencrypted backups of important data off the system (ideally several copies stored separately)

    OR

    • Disable BitLocker

    Unless you have a very specific use case or "interesting" threat model then disabling BitLocker is my suggestion.

    Once BitLocker it's disabled then ensure you are taking regular backups of import data off the PC, ideally multiple copies in separate places for redundancy.

    Hardware and storage media do fail. Motherboards and their TPM / UEFI Firmware data do get damaged. That's where the BitLocker encryption keys are stored.

    If the BitLocker recovery information on the motherboard is damaged or unrecoverable, your BitLocker encrypted data will be unrecoverable without the recovery keys.

    #Windows #BitLocker #MicrosoftAccount #25H2 #DataRecovery

  6. Microsoft Account (MSA) may no longer be a requirement for Windows 11!

    When Windows 11 was released on October 5th, 2021, several people pointed out the biggest flaws of this version of Windows, especially when it comes to Microsoft Account. This outrage was so loud and heated that we even provided our opinion about how we approached the Microsoft Account requirement, which is negative.

    Due to negative opinions outnumbering the positive ones when it comes to Microsoft Account, several workarounds were being proposed, with Microsoft closing them in an attempt to force more people to sign in to their Microsoft Account, especially when it comes to Windows 11 Home and Pro.

    Now, Microsoft has announced that they’re committing to a better Windows 11 quality with a huge milestone that will happen this year, with this blog post being posted to the Windows Insiders Blog.

    One of the improvements that will be made, alongside vertical taskbar, Copilot reduction, and other quality-of-life changes, Microsoft’s VP, Scott Hanselman, explained that he hated the Microsoft Account requirement with a simple tweet:

    https://twitter.com/shanselman/status/2035110958314745891

    However, this is just an update from the Windows VP indicating that he’s working on dealing with the Microsoft Account debacle that has been going on for over 4 years. The actual changes remain to be seen, and we won’t be able to see this change until Microsoft releases an update that contains all life-of-quality changes.

    Meanwhile, you’ll be stuck with the current workarounds, such as “bypassnro” and Rufus (with unattend.xml), until this update actually arrives.

    When Microsoft decides to remove the requirement, we will let you know.

    To learn more about the remaining changes, here is the blog post.

    Learn more #microsoft #MicrosoftAccount #MSA #news #Tech #Technology #update #Windows #Windows11
  7. If you need Windows 11 (e.g. in a VM/sandbox) but don't want to create a Microsoft account:

    1. Turn off the Internet
    2. Run setup until Win11 tells you, you need Internet.
    3. Ctrl+ F10 and type in oobe\bypassnro
    4. PC reboots
    5. Do setup again and click the "I don't have Internet" button that now magically appears.

    You're welcome!

    #windows11 #bypass #MicrosoftAccount

  8. Microsoft makes it even harder for users to use local accounts

    In the series of non-ending mistakes that Microsoft did since the release of Windows 11, the biggest of them was to try to get people to sign in to their Microsoft account instead of using the local account when first setting up their Windows 11 installation, especially when targeting those who use the Windows 11 Home edition. Since then, Microsoft have been taking efforts to take down known bypass methods to get around the Microsoft Account sign in requirement, such as removing the bypassnro.cmd file from the %WINDIR%\System32\oobe folder, while still allowing the local-only workarounds with start ms-cxh:localonly.

    Now, Microsoft continued to play their chess game at doubling down on requiring users to sign in to their Microsoft account by releasing a new Windows 11 Insider version v26120.6772. According to their official blog, Microsoft explained that they’ve removed all known workarounds, because while “these mechanisms were often used to bypass Microsoft account setup, they also inadvertently skip critical setup screens, potentially causing users to exit OOBE with a device that is not fully configured for use. Users will need to complete OOBE with internet and a Microsoft account, to ensure device is setup correctly.”

    According to Windows Latest, Microsoft is still testing the requirement, and it might make it to the final Windows 11 ISOs when 2026 starts, which is going to be the worst way to start the new year.

    Basically, Microsoft had said “Checkmate” to all users who are planning to using local accounts in new installations, which is disrespectful to users who didn’t want an MSA to sign in to Windows.

    We are absolutely not going to sign in to our Microsoft account in all our new Windows 11 installations, especially when dealing with virtual machines, due to our internal requirements we cannot specify. This change doesn’t account for situations where local accounts are necessary, such as temporary virtual machines, test machines, and enterprise-oriented machines. It also doesn’t account for situations where the internet access is limited or nonexistent, such as lab equipment or air gapped systems, or for users who prefer privacy first.

    When creating bootable Windows USBs, Rufus already provides an option to remove the requirement for Microsoft Account when setting up your computer. When it’s enabled, it adds the same command to the deployment file.

    If Microsoft is to block this method of bypass through the unattended file, it might have a negative impact towards major enterprise infrastructure. Local accounts require no internet connectivity to sign in to Windows, and has been this way since the introduction of Windows NT, while the Microsoft account sign-in to Windows function was added to Windows 8.

    If a workaround is found other than the Rufus unattended file workaround, we’ll post it here to continue letting users to make their local account.

    #microsoft #MicrosoftAccount #MSA #news #Tech #Technology #update #Windows #Windows11

  9. In Windows 11, a local account is limited to a single device, while a Microsoft account can be used across multiple devices and Microsoft services. Read the key Differences Between and Which Should You Choose in 2025? windows101tricks.com/local-acc

    #windows #windows11 #MicrosoftAccount #LocalUserAccount #TechTutorial #TechGuide #HowToGuide #Microsoft

  10. If you use a #MicrosoftAccount to log in to Windows, it automagically saves a #passkey that will let you into your online account, without needing Two-Step Verification.

    The weirdness is: it does not work as a backup Two-Step Verification method when you use Chrome, or even an InPrivate Edge window!
    superuser.com/questions/189603

  11. A better Microsoft Account bypass method

    Following the event of where Microsoft has removed the bypassnro.cmd file from the oobe folder to attempt to force everyone to set up their PCs with a Microsoft account and a controversy following Microsoft’s statement of “This change ensures that all users exit setup with internet connectivity and a Microsoft Account,” the internet has blown up with outcry across several websites, especially Reddit:

    Normally, you’d think that the bypass has been removed. However, people have recently uncovered the contents of the bypassnro.cmd file that will be shown below. Now, we have a completely new bypass method involving a single short command to be run in the command prompt.

    reg add HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\OOBE /v BypassNRO /t REG_DWORD /d 1 /fshutdown /r /t 0

    Checkmate, Microsoft!

    A tipster at X has recently shown a video showcasing how to bypass the Microsoft account requirement without having to write the above commands. It involves running CMD and executing the “start ms-cxh:localonly” command. The tipster claims that it is only required for both Home and Pro editions.

    At any point in the OOBE, you can perform the following steps:

    1. Press SHIFT + F10
    2. Type start ms-cxh:localonly
    3. Write your preferred username and password for your local account
    4. Click Next

    Don’t fret by “Microsoft Account” in the title bar and references to “child or teenager accounts” in the dialog box itself; they are unrelated to the local account. If everything goes well, the OOBE should exit and proceed immediately to the “Setting up your PC” screen. You may be prompted to review your privacy settings.

    We have saved a copy of the video, in case the video gets taken down. You can find it here.

    Now, you should be in your empty desktop.

    Image by diana.grytsku on Freepik

    #BypassNRO #BypassNROCmd #microsoft #MicrosoftAccount #MicrosoftWindows #msCxh #msCxhLocalonly #msCxhLocalonly #news #Tech #Technology #update #Windows

  12. A better Microsoft Account bypass method

    Following the event of where Microsoft has removed the bypassnro.cmd file from the oobe folder to attempt to force everyone to set up their PCs with a Microsoft account and a controversy following Microsoft’s statement of “This change ensures that all users exit setup with internet connectivity and a Microsoft Account,” the internet has blown up with outcry across several websites, especially Reddit:

    Normally, you’d think that the bypass has been removed. However, people have recently uncovered the contents of the bypassnro.cmd file that will be shown below. Now, we have a completely new bypass method involving a single short command to be run in the command prompt.

    reg add HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\OOBE /v BypassNRO /t REG_DWORD /d 1 /fshutdown /r /t 0

    Checkmate, Microsoft!

    A tipster at X has recently shown a video showcasing how to bypass the Microsoft account requirement without having to write the above commands. It involves running CMD and executing the “start ms-cxh:localonly” command. The tipster claims that it is only required for both Home and Pro editions.

    At any point in the OOBE, you can perform the following steps:

    1. Press SHIFT + F10
    2. Type start ms-cxh:localonly
    3. Write your preferred username and password for your local account
    4. Click Next

    Don’t fret by “Microsoft Account” in the title bar and references to “child or teenager accounts” in the dialog box itself; they are unrelated to the local account. If everything goes well, the OOBE should exit and proceed immediately to the “Setting up your PC” screen. You may be prompted to review your privacy settings.

    We have saved a copy of the video, in case the video gets taken down. You can find it here.

    Now, you should be in your empty desktop.

    Image by diana.grytsku on Freepik

    #BypassNRO #BypassNROCmd #microsoft #MicrosoftAccount #MicrosoftWindows #msCxh #msCxhLocalonly #msCxhLocalonly #news #Tech #Technology #update #Windows

  13. 😂🎉 Breaking news: Microsoft has somehow found a way to make "mandatory" even more mandatory! Now, if you even think of using Windows 11, prepare to pledge your firstborn to a Microsoft Account. Welcome to the future, where "skip to content" means skipping to more sign-ins. 🔒💻
    arstechnica.com/gadgets/2025/0 #MicrosoftAccount #Windows11 #MandatorySignIns #TechNews #FutureOfSoftware #HackerNews #ngated

  14. 😂🎉 Breaking news: Microsoft has somehow found a way to make "mandatory" even more mandatory! Now, if you even think of using Windows 11, prepare to pledge your firstborn to a Microsoft Account. Welcome to the future, where "skip to content" means skipping to more sign-ins. 🔒💻
    arstechnica.com/gadgets/2025/0 #MicrosoftAccount #Windows11 #MandatorySignIns #TechNews #FutureOfSoftware #HackerNews #ngated

  15. 😂🎉 Breaking news: Microsoft has somehow found a way to make "mandatory" even more mandatory! Now, if you even think of using Windows 11, prepare to pledge your firstborn to a Microsoft Account. Welcome to the future, where "skip to content" means skipping to more sign-ins. 🔒💻
    arstechnica.com/gadgets/2025/0 #MicrosoftAccount #Windows11 #MandatorySignIns #TechNews #FutureOfSoftware #HackerNews #ngated

  16. 😂🎉 Breaking news: Microsoft has somehow found a way to make "mandatory" even more mandatory! Now, if you even think of using Windows 11, prepare to pledge your firstborn to a Microsoft Account. Welcome to the future, where "skip to content" means skipping to more sign-ins. 🔒💻
    arstechnica.com/gadgets/2025/0 #MicrosoftAccount #Windows11 #MandatorySignIns #TechNews #FutureOfSoftware #HackerNews #ngated