AFAIK, Group Policy Editor has higher priority over Reg Editor and as I think better to use it for a such purposes.
As far as I was reading and understood Recall was reserved for Snapdragon X Elite. So it should not work with Intel/amd.
The Enterprise 202x LTSC to IoT Ent 202x LTSC conversion started with the fact that IoT Enterprise 2021 LTSC only is released in en-US and x64 only, so we do convert the xx-XX Enterprise 2021 LTSC to xx-XX IoT Enterrprise 2021 LTSC, and it will most likely be the same for 2024 LTSC. And some do update Enterprise 2024 LTSC and next simply offline upgrade the updated Enterprise 2024 LTSC to IoT Enterprise 2024 LTSC.
Partial success install iot on my laptop Which includes drivers & other s**t like appx Some problems with scaling. First login. Scale work fine & reverted Second logins.. work fine Some appx will require you to temperery install store You can remove it later if you like Running any script.. have 1 sec lag .
Toggle it on, restart then toggle it off and restart again. If that doesn't work, then try editing the registry item or the gpo for VBS.
Recompiled Copilot nerf, for use in any online servicing situation. Does not itself remove MicrosoftWindows.Client.AIX_cw5n1h2txyewy. Last update on this topic. Spoiler: .bat file Code: @Echo Off Title Pilot Kills Copilot :: :: REQUESTING ADMIN :: >nul 2>&1 reg query "HKU\S-1-5-19\Environment" if '%errorlevel%' NEQ '0' ( (echo.Set UAC = CreateObject^("Shell.Application"^)&echo.UAC.ShellExecute "%~s0", "", "", "runas", 1)>"%tmp%\getadmin.vbs" "%tmp%\getadmin.vbs" exit /B ) else ( >nul 2>&1 del "%tmp%\getadmin.vbs" ) :: :: DONE :: REM -- DefaultUser, aka new accounts Reg.exe load HKU\DefaultUser "C:\Users\Default\NTUSER.DAT" timeout 1 /nobreak > nul Reg.exe add "HKU\DefaultUser\Software\Microsoft\Windows\Shell\Copilot" /v "IsCopilotAvailable" /t REG_DWORD /d "0" /f Reg.exe add "HKU\DefaultUser\Software\Microsoft\Windows\Shell\Copilot" /v "CopilotDisabledReason" /t REG_SZ /d "FeatureIsDisabled" /f Reg.exe add "HKU\DefaultUser\Software\Microsoft\Windows\CurrentVersion\WindowsCopilot" /v "AllowCopilotRuntime" /t REG_DWORD /d "0" /f Reg.exe add "HKU\DefaultUser\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced" /v "ShowCopilotButton" /t REG_DWORD /d "0" /f Reg.exe add "HKU\DefaultUser\Software\Microsoft\Windows\Shell\Copilot\BingChat" /v "IsUserEligible" /t REG_DWORD /d "0" /f timeout 1 /nobreak > nul Reg.exe unload HKU\DefaultUser REM -- CurrentUser, aka you or system. .DEFAULT, local system. S-1-5-19, local service. HKLM. Reg.exe add "HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Appx\AppxAllUserStore\Deprovisioned\MicrosoftWindows.Client.AIX_cw5n1h2txyewy" /f Reg.exe add "HKCU\Software\Microsoft\Windows\Shell\Copilot" /v "IsCopilotAvailable" /t REG_DWORD /d "0" /f Reg.exe add "HKCU\Software\Microsoft\Windows\Shell\Copilot" /v "CopilotDisabledReason" /t REG_SZ /d "FeatureIsDisabled" /f Reg.exe add "HKCU\Software\Microsoft\Windows\CurrentVersion\WindowsCopilot" /v "AllowCopilotRuntime" /t REG_DWORD /d "0" /f Reg.exe add "HKCU\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced" /v "ShowCopilotButton" /t REG_DWORD /d "0" /f Reg.exe add "HKCU\Software\Microsoft\Windows\Shell\Copilot\BingChat" /v "IsUserEligible" /t REG_DWORD /d "0" /f Reg.exe add "HKCU\Software\Policies\Microsoft\Windows\WindowsCopilot" /v "TurnOffWindowsCopilot" /t REG_DWORD /d "1" /f Reg.exe add "HKU\.DEFAULT\Software\Microsoft\Windows\Shell\Copilot" /v "IsCopilotAvailable" /t REG_DWORD /d "0" /f Reg.exe add "HKU\.DEFAULT\Software\Microsoft\Windows\Shell\Copilot" /v "CopilotDisabledReason" /t REG_SZ /d "FeatureIsDisabled" /f Reg.exe add "HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\WindowsCopilot" /v "AllowCopilotRuntime" /t REG_DWORD /d "0" /f Reg.exe add "HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced" /v "ShowCopilotButton" /t REG_DWORD /d "0" /f Reg.exe add "HKU\.DEFAULT\Software\Microsoft\Windows\Shell\Copilot\BingChat" /v "IsUserEligible" /t REG_DWORD /d "0" /f Reg.exe add "HKU\.DEFAULT\Software\Policies\Microsoft\Windows\WindowsCopilot" /v "TurnOffWindowsCopilot" /t REG_DWORD /d "1" /f Reg.exe add "HKU\S-1-5-19\Software\Microsoft\Windows\Shell\Copilot" /v "IsCopilotAvailable" /t REG_DWORD /d "0" /f Reg.exe add "HKU\S-1-5-19\Software\Microsoft\Windows\Shell\Copilot" /v "CopilotDisabledReason" /t REG_SZ /d "FeatureIsDisabled" /f Reg.exe add "HKU\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\WindowsCopilot" /v "AllowCopilotRuntime" /t REG_DWORD /d "0" /f Reg.exe add "HKU\S-1-5-19\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced" /v "ShowCopilotButton" /t REG_DWORD /d "0" /f Reg.exe add "HKU\S-1-5-19\Software\Microsoft\Windows\Shell\Copilot\BingChat" /v "IsUserEligible" /t REG_DWORD /d "0" /f Reg.exe add "HKU\S-1-5-19\Software\Policies\Microsoft\Windows\WindowsCopilot" /v "TurnOffWindowsCopilot" /t REG_DWORD /d "1" /f Reg.exe add "HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsCopilot" /v "TurnOffWindowsCopilot" /t REG_DWORD /d "1" /f Reg.exe add "HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsAI" /v "DisableAIDataAnalysis" /t REG_DWORD /d "1" /f Reg.exe add "HKLM\SOFTWARE\WOW6432Node\Policies\Microsoft\Windows\WindowsCopilot" /v "TurnOffWindowsCopilot" /t REG_DWORD /d "1" /f Reg.exe add "HKLM\SOFTWARE\WOW6432Node\Policies\Microsoft\Windows\WindowsAI" /v "DisableAIDataAnalysis" /t REG_DWORD /d "1" /f Reg.exe add "HKLM\SOFTWARE\Policies\Microsoft\Windows\WindowsUpdate" /v "AllowTemporaryEnterpriseFeatureControl" /t REG_DWORD /d "0" /f Reg.exe add "HKLM\SOFTWARE\Policies\Microsoft\Edge" /v "CopilotCDPPageContext" /t REG_DWORD /d "0" /f Reg.exe add "HKLM\SOFTWARE\Policies\Microsoft\Edge" /v "CopilotPageContext" /t REG_DWORD /d "0" /f Reg.exe add "HKLM\SOFTWARE\WOW6432Node\Policies\Microsoft\Edge" /v "CopilotCDPPageContext" /t REG_DWORD /d "0" /f Reg.exe add "HKLM\SOFTWARE\WOW6432Node\Policies\Microsoft\Edge" /v "CopilotPageContext" /t REG_DWORD /d "0" /f REM -- ;; 1. optional, idk for sure if they contribute here but a default mdm is microsoft itself Reg.exe delete "HKLM\SOFTWARE\Policies\Microsoft\Windows\Appx" /v "MdmHosts" /f Reg.exe add "HKLM\SOFTWARE\Policies\Microsoft\Windows\Appx" /v "MdmHosts" /f REM -- ;; 2. see 1 Reg.exe add "HKLM\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\MDM" /v "DisableRegistration" /t REG_DWORD /d "1" /f Reg.exe add "HKLM\SOFTWARE\Policies\Microsoft\Windows\CurrentVersion\MDM" /v "AutoEnrollMDM" /t REG_DWORD /d "0" /f Exit I wish I knew what this actually did. I think it turned on with UEFI lock for me. In case it did for you, here's a fix for that. Spoiler: UEFI Unlock Code: @echo off title ~~~ Credential Guard UEFI Unlocker ~~~ color 0E set msg= cls :REQUESTADMIN :: >nul 2>&1 reg query "HKU\S-1-5-19\Environment" if '%errorlevel%' NEQ '0' ( (echo.Set UAC = CreateObject^("Shell.Application"^)&echo.UAC.ShellExecute "%~s0", "", "", "runas", 1)>"%tmp%\getadmin.vbs" "%tmp%\getadmin.vbs" exit /B ) else ( >nul 2>&1 del "%tmp%\getadmin.vbs" ) :: :: call:banner echo ---- PLEASE DISABLE ANY OS-BASED ACTIVATION OF CG! echo ---- Examples: Registry, Group Policy, Core Isolation, LSA PPL echo. choice /c:yn /m:"---- Would you like to continue? >>" if "%errorlevel%" == "2" exit if "%errorlevel%" == "1" goto :change if "%errorlevel%" == "0" set "msg=No changes were made..." && goto :err :change call:banner echo (window to abort) echo. timeout 7 /nobreak goto :unlock :unlock call:banner echo ---- Processing... mountvol X: /s >nul copy %WINDIR%\System32\SecConfig.efi X:\EFI\Microsoft\Boot\SecConfig.efi /Y > nul if "%errorlevel%" GTR "0" goto :clean call:banner echo ---- 1/6... timeout 1 /nobreak > nul bcdedit /create {0cb3b571-2f2e-4343-a879-d86a476d7215} /d "DebugTool" /application osloader > nul if "%errorlevel%" GTR "0" goto :clean call:banner echo ---- 2/6... timeout 1 /nobreak > nul bcdedit /set {0cb3b571-2f2e-4343-a879-d86a476d7215} path "\EFI\Microsoft\Boot\SecConfig.efi" > nul if "%errorlevel%" GTR "0" goto :clean call:banner echo ---- 3/6... timeout 1 /nobreak > nul bcdedit /set {bootmgr} bootsequence {0cb3b571-2f2e-4343-a879-d86a476d7215} > nul if "%errorlevel%" GTR "0" goto :clean call:banner echo ---- 4/6... timeout 1 /nobreak > nul bcdedit /set {0cb3b571-2f2e-4343-a879-d86a476d7215} loadoptions DISABLE-LSA-ISO > nul if "%errorlevel%" GTR "0" goto :clean call:banner echo ---- 5/6... timeout 1 /nobreak > nul bcdedit /set {0cb3b571-2f2e-4343-a879-d86a476d7215} device partition=X: > nul if "%errorlevel%" GTR "0" goto :clean mountvol X: /d > nul call:banner echo ---- 6/6... timeout 1 /nobreak > nul echo ---- Done... timeout 2 /nobreak > nul goto :end :clean call:banner echo ---- Some Ting Wong... echo ---- Reverting changes... set "msg=Changes not reverted...Run again or open .bat to find changes to undo." del X:\EFI\Microsoft\Boot\SecConfig.efi /Y > nul bcdedit /delete {0cb3b571-2f2e-4343-a879-d86a476d7215} /cleanup > nul bcdedit /set {bootmgr} bootsequence {current} > nul timeout 2 /nobreak > nul mountvol X: /d > nul set "msg=Changes reverted..." goto :err :end call:banner echo ---- Reboot your computer to finish. echo ---- Follow the UEFI prompt's instructions. echo ---- If no prompt, you don't have enough rights. echo. pause exit :err call:banner echo. echo. echo ---- Error! Terminating... echo ---- %msg%... echo. timeout 5 exit :banner cls echo. echo ================================================================= echo " ___ _ ___ _ " echo " / __\_ __ ___ __| | / _ \ _ _ __ _ _ __ __| | " echo " / / | '__|/ _ \ / _` | / /_\/| | | | / _` || '__|/ _` | " echo " / /___| | | __/| (_| |/ /_\\ | |_| || (_| || | | (_| | " echo " \____/|_| \___| \__,_|\____/ \__,_| \__,_||_| \__,_| " echo " __ ___ _____ _ _ " echo " /\ /\ /__\/ __\\_ \ /\ /\ _ __ | | ___ ___ | | __ " echo " / / \ \ /_\ / _\ / /\/ / / \ \| '_ \ | | / _ \ / __|| |/ / " echo " \ \_/ ///__/ / /\/ /_ \ \_/ /| | | || || (_) || (__ | < " echo " \___/ \__/\/ \____/ \___/ |_| |_||_| \___/ \___||_|\_\ " echo " " echo ================================================================= echo. echo. goto:eof
Just to make sure, I tried to install IoTEnterprise 26100 on an older system (without POPCNT). Used my own apply scripts. After reset to start the setup phase, we wind up in the usual boot loop.
Same here (dell dimension 9200,intel P965, core 2 duo e6700), try all possibilty (scripts, Fix-it (all methods), used dvd,used usb bootable, used internal sata bootable W11 iso, add additional pcie card that handle sata 600, nothing work, boot loop is here. So popcnt is impossible to bypass, i will stick with W10 IoT which work like a charm!!!!.
But would anything newer as for example Sandy Bridge or Haswell work? Would Rufus work with this ISO to disable checks?
Yes SandyBridge and Haswell work as they get the popcnt support, rufus should work with disable check.
Thanks. First impressions after switching from Windows 10 IoT Enterprise 21H2 to Windows 11 IoT Enterprise 24H2?
Popcnt are cpu features not possible to bypass Any cpu from intel 2009 and later are 24h2 ready ( change older cpu with latest supported if you have before 2010 ) For amd any cpu from 2013
First own personal impression (don't like the W11 UI in general,what's going on in the near future (new usage restrictions and........)) installed on two computers one with a SandyBridge, other with WhiskeyLake (work well), like am oldschool, i think i will stick with W10 IoT LTSC til 2032, also had several computers running Debian so after 2032, Linux being my way!!!
I think a clean installation is usually a better choice. Windows 11 seemed a little faster compared to Windows 10 when running on a Sandy Bridge, but I don't like the W11 UI either.