In a notable shift for users of Windows 11, Microsoft is tightening its grip on account creation methods during the installation process. The latest adjustments were unveiled in the Windows 11 Insider Preview Build 26220.6772 (KB5065797), which is currently available to Insiders in the Dev Channel. This move suggests that similar changes will soon be rolled out in future production builds.
Changes to Account Setup
Microsoft’s Amanda Langowski explained that the company is eliminating certain known methods that allowed users to create local accounts and bypass the requirement for a Microsoft account during the installation of Windows 11. The rationale behind this decision is rooted in the desire to ensure that devices are “fully configured” upon completion of the setup process.
Langowski emphasized, “We are removing known mechanisms for creating a local account in the Windows Setup experience (OOBE).” She further elaborated that while these methods were frequently utilized to circumvent the Microsoft account setup, they inadvertently skipped essential setup screens, leaving users with devices that were not fully optimized for use.
Once these changes take effect, users will be required to complete the Out-Of-Box Experience (OOBE) while connected to the internet and logged into a Microsoft account. This is aimed at ensuring that PCs are set up correctly from the outset.
This latest development follows Microsoft’s earlier removal of the ‘BypassNRO.cmd’ script, which was also aimed at enhancing the security and user experience of Windows 11. Despite the removal of this script, reports indicate that the BypassNRO Registry value remains intact, allowing for potential workarounds to still create local accounts and bypass the networking requirement.
For those technically inclined, it has been suggested that users could still theoretically bypass the Microsoft account requirement by executing specific commands through Regedit. This can be accessed via the Shift+F10 command prompt during the “Let’s connect you to a network” screen in the installation process. The commands are as follows:
reg add HKLMSOFTWAREMicrosoftWindowsCurrentVersionOOBE /v BypassNRO /t REG_DWORD /d 1 /f
shutdown /r /t 0
However, it is important to note that this workaround has not been tested, and Microsoft may choose to eliminate it in future updates as part of their ongoing commitment to security and proper device configuration.
As the landscape of Windows 11 continues to evolve, users and IT professionals alike will need to stay informed about these changes to navigate the installation process effectively.
Join the Breach and Attack Simulation Summit and experience the future of security validation. Hear from top experts and see how AI-powered BAS is transforming breach and attack simulation. Don’t miss the event that will shape the future of your security strategy.
