UCF STIG Viewer Logo

Windows Telemetry must be configured to the lowest level of data sent to Microsoft.


Overview

Finding ID Version Rule ID IA Controls Severity
V-63683 WN10-CC-000205 SV-78173r1_rule Medium
Description
Some features may communicate with the vendor, sending system information or downloading data or components for the feature. Limiting this capability will prevent potentially sensitive information from being sent outside the enterprise.
STIG Date
Windows 10 Security Technical Implementation Guide 2016-06-24

Details

Check Text ( C-64431r1_chk )
If the following registry value does not exist or is not configured as specified, this is a finding.

Registry Hive: HKEY_LOCAL_MACHINE
Registry Path: \SOFTWARE\Policies\Microsoft\Windows\DataCollection\

Value Name: AllowTelemetry

Type: REG_DWORD
Value: 0

Windows 10 Professional may have a value of 1. The value for Off [Enterprise Only] implements the same limitations as Basic in Windows 10 Professional.
Fix Text (F-69611r1_fix)
Configure the policy value for Computer Configuration >> Administrative Templates >> Windows Components >> Data Collection and Preview Builds>> "Allow Telemetry" to "Enabled" with "0 - Off [Enterprise Only]" selected in "Options:".

Windows 10 Professional may be configured to Basic. The value for Off [Enterprise Only] implements the same limitations as Basic in Windows 10 Professional.