Prevent the use of security questions for local accounts in Windows 10

December 25, 2018 updated by Admin Leave a reply »

Adding security questions for a local account will provide an extra way to restore PC access if you forget your Windows 10 password. If you think this feature is neither secure nor reliable, you can remove security questions using a registry tweak. Since Windows 10 build 18237, there is a new group policy that lets you disable / prevent the use of security questions for local accounts in Windows 10.

The following methods will prevent users from changing or adding security questions to local accounts. If your security questions are already set up, you’ll be unable to reset forgotten Windows login password by answering the security questions.

Method 1: Prevent Use of Security Questions for Local Accounts via Group Policy

  1. Open Local Group Policy Editor and navigate to:
    Computer Configuration -> Administrative Templates -> Windows Components -> Credential User Interface

    In the right pane, double-click on the “Prevent the use of security questions for local accounts” policy.

  2. Select Enabled and click OK.

  3. To make this group policy to take effect, you need to restart Windows 10.

Method 2: Prevent Use of Security Questions for Local Accounts via Registry Editor

  1. Open Registry Editor and go to the following key:
    HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\Windows\System

    On the right panel, right-click any blank area and select New -> DWORD (32-bit) Value. Note: if the System key doesn’t exist, you have to create it first.

  2. Name the new value as NoLocalPasswordResetQuestions. To disable the Security Questions feature, set its value data to 1.

  3. Close the Registry editor. Restart your computer to make the changes take effect.