Policy CSP - ADMX_sdiageng

Tip

This CSP contains ADMX-backed policies which require a special SyncML format to enable or disable. You must specify the data type in the SyncML as <Format>chr</Format>. For details, see Understanding ADMX-backed policies.

The payload of the SyncML must be XML-encoded; for this XML encoding, there are a variety of online encoders that you can use. To avoid encoding the payload, you can use CDATA if your MDM supports it. For more information, see CDATA Sections.

BetterWhenConnected

Scope	Editions	Applicable OS
✅ Device ❌ User	✅ Pro ✅ Enterprise ✅ Education ✅ Windows SE ✅ IoT Enterprise / IoT Enterprise LTSC	✅ Windows 10, version 2004 [10.0.19041.1202] and later ✅ Windows 10, version 2009 [10.0.19042.1202] and later ✅ Windows 10, version 21H1 [10.0.19043.1202] and later ✅ Windows 11, version 21H2 [10.0.22000] and later

./Device/Vendor/MSFT/Policy/Config/ADMX_sdiageng/BetterWhenConnected

This policy setting allows users who are connected to the Internet to access and search troubleshooting content that's hosted on Microsoft content servers. Users can access online troubleshooting content from within the Troubleshooting Control Panel UI by clicking "Yes" when they're prompted by a message that states, "Do you want the most up-to-date troubleshooting content?".

• If you enable or don't configure this policy setting, users who are connected to the Internet can access and search troubleshooting content that's hosted on Microsoft content servers from within the Troubleshooting Control Panel user interface.

• If you disable this policy setting, users can only access and search troubleshooting content that's available locally on their computers, even if they're connected to the Internet. They are prevented from connecting to the Microsoft servers that host the Windows Online Troubleshooting Service.

Description framework properties:

Property name	Property value
Format	chr (string)
Access Type	Add, Delete, Get, Replace

Tip

This is an ADMX-backed policy and requires SyncML format for configuration. For an example of SyncML format, refer to Enabling a policy.

ADMX mapping:

Name	Value
Name	BetterWhenConnected
Friendly Name	Troubleshooting: Allow users to access online troubleshooting content on Microsoft servers from the Troubleshooting Control Panel (via the Windows Online Troubleshooting Service - WOTS)
Location	Computer Configuration
Path	System > Troubleshooting and Diagnostics > Scripted Diagnostics
Registry Key Name	SOFTWARE\Policies\Microsoft\Windows\ScriptedDiagnosticsProvider\Policy
Registry Value Name	EnableQueryRemoteServer
ADMX File Name	sdiageng.admx

ScriptedDiagnosticsExecutionPolicy

Scope	Editions	Applicable OS
✅ Device ❌ User	✅ Pro ✅ Enterprise ✅ Education ✅ Windows SE ✅ IoT Enterprise / IoT Enterprise LTSC	✅ Windows 10, version 2004 [10.0.19041.1202] and later ✅ Windows 10, version 2009 [10.0.19042.1202] and later ✅ Windows 10, version 21H1 [10.0.19043.1202] and later ✅ Windows 11, version 21H2 [10.0.22000] and later

./Device/Vendor/MSFT/Policy/Config/ADMX_sdiageng/ScriptedDiagnosticsExecutionPolicy

This policy setting allows users to access and run the troubleshooting tools that are available in the Troubleshooting Control Panel and to run the troubleshooting wizard to troubleshoot problems on their computers.

• If you enable or don't configure this policy setting, users can access and run the troubleshooting tools from the Troubleshooting Control Panel.

• If you disable this policy setting, users can't access or run the troubleshooting tools from the Control Panel.

Note that this setting also controls a user's ability to launch standalone troubleshooting packs such as those found in .diagcab files.

Description framework properties:

Property name	Property value
Format	chr (string)
Access Type	Add, Delete, Get, Replace

Tip

This is an ADMX-backed policy and requires SyncML format for configuration. For an example of SyncML format, refer to Enabling a policy.

ADMX mapping:

Name	Value
Name	ScriptedDiagnosticsExecutionPolicy
Friendly Name	Troubleshooting: Allow users to access and run Troubleshooting Wizards
Location	Computer Configuration
Path	System > Troubleshooting and Diagnostics > Scripted Diagnostics
Registry Key Name	SOFTWARE\Policies\Microsoft\Windows\ScriptedDiagnostics
Registry Value Name	EnableDiagnostics
ADMX File Name	sdiageng.admx

ScriptedDiagnosticsSecurityPolicy

Scope	Editions	Applicable OS
✅ Device ❌ User	✅ Pro ✅ Enterprise ✅ Education ✅ Windows SE ✅ IoT Enterprise / IoT Enterprise LTSC	✅ Windows 10, version 2004 [10.0.19041.1202] and later ✅ Windows 10, version 2009 [10.0.19042.1202] and later ✅ Windows 10, version 21H1 [10.0.19043.1202] and later ✅ Windows 11, version 21H2 [10.0.22000] and later

./Device/Vendor/MSFT/Policy/Config/ADMX_sdiageng/ScriptedDiagnosticsSecurityPolicy

This policy setting determines whether scripted diagnostics will execute diagnostic packages that are signed by untrusted publishers.

• If you enable this policy setting, the scripted diagnostics execution engine validates the signer of any diagnostic package and runs only those signed by trusted publishers.

• If you disable or don't configure this policy setting, the scripted diagnostics execution engine runs all digitally signed packages.

Description framework properties:

Property name	Property value
Format	chr (string)
Access Type	Add, Delete, Get, Replace

Tip

This is an ADMX-backed policy and requires SyncML format for configuration. For an example of SyncML format, refer to Enabling a policy.

ADMX mapping:

Name	Value
Name	ScriptedDiagnosticsSecurityPolicy
Friendly Name	Configure Security Policy for Scripted Diagnostics
Location	Computer Configuration
Path	System > Troubleshooting and Diagnostics > Scripted Diagnostics
Registry Key Name	SOFTWARE\Policies\Microsoft\Windows\ScriptedDiagnostics
Registry Value Name	ValidateTrust
ADMX File Name	sdiageng.admx

Related articles

Policy configuration service provider