10. OneDrive

OneDrive is Microsoft Cloud storage built into Windows 10 and automatically enabled by default. It is the default location for all files; disabled this.

Danger

After every major windows update, verify these settings.

Unlink OneDrive before disabling

taskbar › OneDrive › 🖱 › More › Settings › Account

Unlink this PC

🖯

Unlink account

🖯

If you have signed into OneDrive on this machine, OneDrive should be unlinked before proceeding. Data will still be on https://onedrive.live.com.

Updated: 2021-02-19 Reference Reference

Remove OneDrive from Windows Explorer

HKEY_CLASSES_ROOT\CLSID\{018D5C66-4533-4307-9B53-224DE2ED1FE6}

System.IsPinnedToNameSpaceTree

DWORD

0

OneDrive is integrated with Windows Explorer by default.

Updated: 2021-02-19 Reference Reference

Disable OneDrive from storing files

Windows updates may re-enable this task.

GPO

Computer Configuration › Administrative Templates › Windows Components › OneDrive › Prevent the usage of OneDrive for file storage

☑

ENABLED

Updated: 2021-02-19 Reference Reference Reference

GUI

⌘ › Task Scheduler › Task Scheduler Library › OneDrive Standalone Update Task v2

Task

DISABLED

Updated: None

Remove OneDrive

OneDrive may be removed manually via the GUI once disabled.

Remove OneDrive (powershell as admin).

taskkill /F /IM OneDrive.exe
%SystemRoot%\SysWOW64\OneDriveSetup.exe /uninstall

Reboot.

Reference Reference

10.1. Firewall

Endpoints for telemetry may change. Peridiocally verify these have not changed. See references for additional documentation.

Warning

These endpoints should be blocked or routed to a blackhole. See Pi-Hole and DNAT for Captive DNS.

Diagnostic data services endpoints

Service	Endpoint
OneDrive app for Windows 10	https://vortex.data.microsoft.com/collect/v1
›	vortex.data.microsoft.com/collect/v1