Removing "some of these settings are hidden or managed by your organization"

Craig Corlis 11 Reputation points
2021-06-29T14:55:42.31+00:00

I was in the Windows Insider Program until this morning. Suddenly, it tells me I need to turn on optional diagnostic data. When I try to do that, I get the message "some of these settings are hidden or managed by your organization".

I am fairly sure at some point I accessed my work email on this machine, but it is my personal desktop and has never been used on a domain or connected to my work in any way.

I have checked the other solutions, such as Windows Update Policy, Telemetry, and Data Collection and Preview Builds policy. They are either already set how the article explains or are unable to be changed due to the same error message above.

I want control over my own system back. Any help would be greatly appreciated.

C:\WINDOWS\system32>GPResult /v

Microsoft (R) Windows (R) Operating System Group Policy Result tool v2.0
© Microsoft Corporation. All rights reserved.

Created on ‎6/‎29/‎2021 at 9:50:14 AM

RSOP data for DESKTOP-GH45736\CorlisC on DESKTOP-GH45736 : Logging Mode


OS Configuration: Standalone Workstation
OS Version: 10.0.19043
Site Name: N/A
Roaming Profile: N/A
Local Profile: C:\Users\corli
Connected over a slow link?: No

COMPUTER SETTINGS


Last time Group Policy was applied: 6/29/2021 at 9:42:44 AM
Group Policy was applied from:      N/A
Group Policy slow link threshold:   500 kbps
Domain Name:                        DESKTOP-GH45736
Domain Type:                        <Local Computer>

Applied Group Policy Objects
-----------------------------
    Local Group Policy

The computer is a part of the following security groups
-------------------------------------------------------
    BUILTIN\Administrators
    Everyone
    NT AUTHORITY\Authenticated Users
    System Mandatory Level

Resultant Set Of Policies for Computer
---------------------------------------

    Software Installations
    ----------------------
        N/A

    Startup Scripts
    ---------------
        N/A

    Shutdown Scripts
    ----------------
        N/A

    Account Policies
    ----------------
        N/A

    Audit Policy
    ------------
        N/A

    User Rights
    -----------
        N/A

    Security Options
    ----------------
        N/A

        N/A

    Event Log Settings
    ------------------
        N/A

    Restricted Groups
    -----------------
        N/A

    System Services
    ---------------
        N/A

    Registry Settings
    -----------------
        N/A

    File System Settings
    --------------------
        N/A

    Public Key Policies
    -------------------
        N/A

    Administrative Templates
    ------------------------
        GPO: Local Group Policy
            Folder Id: Software\Policies\Microsoft\Windows\DataCollection\AllowTelemetry     [[[I have since re-disabled this]]]
            Value:       3, 0, 0, 0
            State:       Enabled

USER SETTINGS


Last time Group Policy was applied: 6/29/2021 at 9:38:23 AM
Group Policy was applied from:      N/A
Group Policy slow link threshold:   500 kbps
Domain Name:                        DESKTOP-GH45736
Domain Type:                        <Local Computer>

Applied Group Policy Objects
-----------------------------
    Local Group Policy

The user is a part of the following security groups
---------------------------------------------------
    None
    Everyone
    Local account and member of Administrators group
    BUILTIN\Administrators
    BUILTIN\Users
    NT AUTHORITY\INTERACTIVE
    CONSOLE LOGON
    NT AUTHORITY\Authenticated Users
    This Organization
    Local account
    LOCAL
    NTLM Authentication
    High Mandatory Level

The user has the following security privileges
----------------------------------------------

    Bypass traverse checking
    Manage auditing and security log
    Back up files and directories
    Restore files and directories
    Change the system time
    Shut down the system
    Force shutdown from a remote system
    Take ownership of files or other objects
    Debug programs
    Modify firmware environment values
    Profile system performance
    Profile single process
    Increase scheduling priority
    Load and unload device drivers
    Create a pagefile
    Adjust memory quotas for a process
    Remove computer from docking station
    Perform volume maintenance tasks
    Impersonate a client after authentication
    Create global objects
    Change the time zone
    Create symbolic links
    Obtain an impersonation token for another user in the same session
    Increase a process working set

Resultant Set Of Policies for User
-----------------------------------

    Software Installations
    ----------------------
        N/A

    Logon Scripts
    -------------
        N/A

    Logoff Scripts
    --------------
        N/A

    Public Key Policies
    -------------------
        N/A

    Administrative Templates
    ------------------------
        GPO: Local Group Policy
            Folder Id: SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\PushNotifications\NoToastApplicationNotification
            Value:       0, 0, 0, 0
            State:       Enabled

    Folder Redirection
    ------------------
        N/A

    Internet Explorer Browser User Interface
    ----------------------------------------
        N/A

    Internet Explorer Connection
    ----------------------------
        N/A

    Internet Explorer URLs
    ----------------------
        N/A

    Internet Explorer Security
    --------------------------
        N/A

    Internet Explorer Programs
    --------------------------
        N/A
Windows
Windows
A family of Microsoft operating systems that run across personal computers, tablets, laptops, phones, internet of things devices, self-contained mixed reality headsets, large collaboration screens, and other devices.
5,630 questions
Windows 10 Security
Windows 10 Security
Windows 10: A Microsoft operating system that runs on personal computers and tablets.Security: The precautions taken to guard against crime, attack, sabotage, espionage, or another threat.
2,956 questions
{count} votes

4 answers

Sort by: Most helpful
  1. Daisy Zhou 26,561 Reputation points Microsoft Vendor
    2021-06-30T01:46:37.547+00:00

    Hello @Craig Corlis ,

    Thank you for posting here.

    Hope the information provided by yagmoth555 is helpful to you.

    Please confirm the following information:

    1.As I understand your machine is in workgroup instead of in any domain, is it right?

    2.And now you are log on this machine using local Administrator account and run gpresult /v command, is it right?

    3.Based on "I was in the Windows Insider Program until this morning.", what did you mean you were in the Windows Insider Program?

    4.Where did you see the message "some of these settings are hidden or managed by your organization".? Please provided the screenshot if possible.

    Please provide the gpresult /h report:

    Log on this machine using local Administrator account.
    Open CMD (run as Administrator).
    Type gpresult /h C:\gpo.html and click Enter.
    Open gpo.html and check if you have configured and gpo settings under "User Details" and "Computer Details".
    Or you can provide gpo.html to us (If there is any private information, please obscure it).

    Hope the information above is helpful.

    Should you have any question or concern, please feel free to let us know.

    Best Regards,
    Daisy Zhou

    ============================================

    If the Answer is helpful, please click "Accept Answer" and upvote it.

    1 person found this answer helpful.

  2. Philippe Levesque 5,806 Reputation points
    2021-06-29T17:30:40.76+00:00

    Hi

    Did you removed the local group policy that set a registry settings too ?

    Per your log;

         GPO: Local Group Policy
             Folder Id: SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\PushNotifications\NoToastApplicationNotification
             Value:       0, 0, 0, 0
             State:       Enabled
    

    Do a gpupdate /force and restart after.

    Thanks

    Philippe

    0 comments No comments

  3. Alex935 16 Reputation points
    2021-11-04T09:15:58.787+00:00

    Hello,

    yes this is due to the fact that you were using a school or work account on your private device, this allows - in means of data protection - your organization to manage parts or your full private device to handle security, compliance & regulatory requirements accordingly.

    As I have full access to my tenant/organization, the answer is to create an according device configuration policy which sets the desired Windows Insider settings over Intune/Endpoint Manager146541-inkedwindows-updates-again.jpg146543-inkeddisconnect-work-or-school.jpg.
    https://learn.microsoft.com/en-us/windows-insider/business/manage-builds

    Alternatively you can of course disconnect your school or work account to remove applied policies.

    Please keep in mind that you need to reboot your PC to activate any changes.

    best regards,
    Alex

    0 comments No comments

  4. BaxterAnthony-4285 5 Reputation points
    2021-11-11T22:07:48.477+00:00

    Im recommenting, since my earlier comment got buried under another comment. so I have this same problem, and I have tried all the tricks. I have also disconnected all school accoutns which I have, but that didtn affect anything. I also cant even join Insider Program currently, because I have settings blocked as Data collection as well. ![148662-138289-problem2.jpg][1]![148656-138140-gpo.jpg][2] ![148647-138304-problem1.jpg][3] [1]: /api/attachments/148662-138289-problem2.jpg?platform=QnA [2]: /api/attachments/148656-138140-gpo.jpg?platform=QnA [3]: /api/attachments/148647-138304-problem1.jpg?platform=QnA


Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.