CIS Microsoft Windows 10 Enterprise Release 1909 Benchmark

18.8.31.2 (L2) Ensure 'Allow upload of User Activities' is set to 'Disabled' (Scored)

ProfileApplicability:

 Level 2 (L2) - High Security/Sensitive Data Environment (limited functionality)

Description:

This policy setting determines whether published User Activities can be uploaded to the cloud.

The recommended state for this setting is: Disabled .

Rationale:

Due to privacy concerns, data should never be sent to any 3rd party since this data could contain sensitive information.

Audit:

Navigate to the UI Path articulated in the Remediation section and confirm it is set as prescribed. This group policy setting is backed by the following registry location:

HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\System:UploadUserActiv ities

Remediation:

To establish the recommended configuration via GP, set the following UI path to Disabled :

Computer Configuration\Policies\Administrative Templates\System\OS Policies\Allow upload of User Activities

Note: This Group Policy path may not exist by default. It is provided by the Group Policy template OSPolicy.admx/adml that is included with the Microsoft Windows 10 Release 1803 Administrative Templates (or newer).

Impact:

Activities of type User Activity are not allowed to be uploaded to the cloud. The Timeline feature will not function across devices.

719 | P a g e