Navigation section

Remove Default Microsoft Store Apps with Windows 11 25H2 Policy

  • Thread Author
Microsoft has finally given IT admins a supported, first‑party way to remove select preinstalled Microsoft Store apps from managed devices — a device‑level policy for Windows 11 Enterprise and Education (version 25H2) that replaces brittle removal scripts and complex imaging workflows with Group Policy or MDM controls. This change reduces operational overhead, improves image hygiene, and integrates app removal into standard provisioning and management pipelines — but it also requires careful piloting because the behavior is tied to provisioning flows and a small set of known caveats reported in early tests.

Policy shield above a laptop shows Intune Settings Catalog and app options.Background​

Windows 11, version 25H2 introduces a new app management policy named Remove default Microsoft Store packages from the system. The policy is available to Enterprise and Education SKUs and can be deployed through Microsoft Intune (Settings Catalog or CSP), or via Group Policy (ADMX). It targets a curated, pre‑defined list of in‑box Microsoft Store apps and operates at the device level rather than per user. Enforcement is automatic once enabled: Windows will run a cleanup task that deprovisions the selected packages and removes local app data from the device during provisioning events.
This capability answers a frequent operational pain point: scripted or image‑level removals that break whenever Microsoft changes package names, bundle names, or package versions. The new policy centralizes control, keeps your deployment artifacts simpler, and works with modern provisioning methods like Windows Autopilot without requiring custom imaging or fragile uninstall scripts.

How the new policy works — technical overview​

Key characteristics​

  • Scope: Device‑level (not per‑user) and targeted at Windows 11 Enterprise and Windows 11 Education devices running version 25H2 or later.
  • Delivery: Deployable via Group Policy (ADMX) or MDM. Microsoft Intune supports it through the Settings Catalog and via a dedicated CSP OMA‑URI.
  • Default state: Off by default — administrators must explicitly enable it.
  • Enforcement triggers: The policy is applied and enforced during OOBE (out‑of‑box experience), when a user signs in after an OS upgrade, or when a user signs in after the policy itself is updated. This ensures the removal aligns with provisioning flows.
  • Cleanup behavior: Once enabled, Windows runs an automated cleanup to deprovision selected packages and remove local app data. In practice, deprovisioning prevents the apps from being reprovisioned for new users; it also attempts to remove existing installations and local state.

Management interfaces and configuration surfaces​

  • Intune Settings Catalog: Administrative Templates → Windows Components → App Package Deployment → Remove default Microsoft Store packages from the system (set to Enabled). Toggle the listed apps to True to remove them.
  • CSP OMA‑URI: ./Device/Vendor/MSFT/Policy/Config/ApplicationManagement/RemoveDefaultMicrosoftStorePackages — an ADMX‑backed CSP that accepts an XML payload specifying which package IDs to remove (example XML entries follow below).
  • Group Policy: Computer Configuration → Administrative Templates → Windows Components → App Package Deployment → Remove Default Microsoft Store packages from the system (Value: Enabled). The policy sets corresponding registry values under HKLM for devices that receive the setting.

Supported apps — what you can remove today​

Microsoft shipped the policy to work against a curated list of inbox Microsoft Store packages. The list is intended to cover common consumer/out‑of‑box apps administrators often want removed on corporate devices. Examples of supported package families include (selection shown for clarity):
  • Calculator
  • Camera
  • Feedback Hub
  • Microsoft 365 Copilot
  • Clipchamp
  • Microsoft Copilot (consumer version)
  • Microsoft News
  • Microsoft Photos
  • Microsoft Solitaire Collection
  • Microsoft Sticky Notes
  • Microsoft Teams
  • Microsoft To Do
  • MSN Weather
  • Notepad
  • Outlook for Windows
  • Paint
  • Quick Assist
  • Snipping Tool
  • Sound Recorder
  • Windows Media Player
  • Windows Terminal
  • Xbox Gaming App and related Xbox components (Identity Provider, Speech to Text Overlay, TCUI)
This curated list will be updated in subsequent releases; confirm the exact package set for your target 25H2 build before you roll out widely. The policy UI (and CSP payload) enumerates the removable packages so you can pick which to remove for each targeted device group.
Caveat: different 25H2 builds and downstream servicing may adjust package IDs or availability. Validate the package names and IDs in your management console (Intune or GPO) at the time of deployment to ensure they match what Microsoft exposes for your build. If you must target a package not listed in the UI, do not rely on unsupported scripting — work with supported channels and documentation.

How to enable the policy — step‑by‑step​

Below are practical instructions that mirror the supported Microsoft guidance for Intune and Group Policy deployments.

Microsoft Intune (Settings Catalog)​

  • In the Microsoft Intune admin center, go to Devices → Manage devices → Configuration → Create → New policy.
  • Choose the Settings catalog and add settings. Use the following path: Administrative Templates → Windows Components → App Package Deployment. Select Remove default Microsoft Store packages from the system and set the policy to Enabled.
  • For each app listed under the policy, set the toggle to True for the packages you want to remove. Assign the policy to the appropriate device group(s).
  • Monitor device status in Intune. Unsupported devices will show a status of Not applicable; compliant devices will report policy application results.

Microsoft Intune (CSP / Custom policy)​

If you prefer a CSP XML payload, set the XML data items for the packages to remove. Example snippet:
Code: 
<policy>
  <data id="MicrosoftStickyNotes" value="true"/>
  <data id="MicrosoftTeams" value="true"/>
  <!-- Set other package IDs to "true" to remove them -->
</policy>
Set the CSP OMA‑URI to: ./Device/Vendor/MSFT/Policy/Config/ApplicationManagement/RemoveDefaultMicrosoftStorePackages and deliver the XML payload to the device. When the device processes the policy, it will set the configured packages to be removed.

Group Policy (GPO)​

  • Open the Group Policy Management Console and create or edit a GPO targeted at your device OU(s).
  • Navigate to: Computer Configuration → Administrative Templates → Windows Components → App Package Deployment.
  • Double‑click Remove Default Microsoft Store packages from the system and set the policy to Enabled. Use the policy UI to select the apps you want removed.
  • Apply the GPO. The policy writes values under HKLM\SOFTWARE\Policies\Microsoft\Windows\Appx\RemoveDefaultMicrosoftStorePackages — you can verify the presence and values of these registry keys to confirm the policy is configured. Avoid applying both an Intune and a GPO removal policy to the same device to prevent conflicting settings.

Verification and operational signals​

  • Registry verification: After policy application, verify the configured values under HKLM\SOFTWARE\Policies\Microsoft\Windows\Appx\RemoveDefaultMicrosoftStorePackages. Configured values indicate which packages are marked for removal.
  • Event logs: Microsoft documents Appx and deployment‑related event IDs that indicate successful deprovisioning/unprovisioning operations. Monitor Windows Event Logs for AppxDeployment events after policy application.
  • Intune/GPO reporting: Intune will show a policy status for the targeted devices. Unsupported or non‑applicable devices will be flagged as such. GPO results can be checked via Group Policy Results / RSOP on individual machines.

Recommended rollout plan — pilot, monitor, and scale​

The policy is powerful and low‑friction, but because it ties into provisioning flows it should be rolled out conservatively. A suggested pilot checklist:
  • Inventory and dependency mapping
  • Search repositories and existing provisioning scripts for explicit references to the apps you plan to remove. Confirm no business processes depend on the packaged apps.
  • Lab validation
  • Create clean test images (25H2) and apply the removal policy using both Intune and GPO test deployments. Validate outcomes across OOBE, post‑upgrade sign‑in, and post‑policy update scenarios. Confirm both per‑device deprovisioning and user profile impacts.
  • Small pilot ring (5–10% of fleet)
  • Include a cross‑section of hardware, EDR/AV agents, backup agents and managed peripherals. Watch for unusual interactions, driver regressions, and provisioning artifacts.
  • User‑facing validation
  • Confirm the end‑user experience: Start menu, All apps, taskbar, and desktop shortcuts. Early community testing revealed occasional lingering Start menu shortcuts or dead entries after unprovisioning — plan scripts to clean these as part of early waves if needed.
  • Telemetry and rollback planning
  • Collect error events, crash dumps, and helpdesk tickets. Prepare rollback steps (clear the policy, re‑provision, and, if needed, reinstall apps via your app deployment process). Test rollback on pilot devices.

Real‑world caveats and the things that break​

This policy reduces the need for bespoke scripts, but it’s not a magic bullet. Key caveats and operational impacts IT teams should weigh carefully:
  • Provisioning‑centric behavior: The policy is most effective when applied before or during provisioning (OOBE/first sign‑in). Applying it after multiple users have already signed into a device may not remove every trace from existing profiles; in practice, removal can prevent future reprovisioning more reliably than it cleans up all historical user data. Test on representative devices before enterprise wide deployment.
  • UI artifacts: Community pilots have reported dead Start menu shortcuts and other UI remnants after deprovisioning. These artifacts require scriptable cleanup in some early flights — expect to include a cleanup pass in your early deployments until Microsoft ships additional polish.
  • Package list changes across builds: Microsoft may update package IDs, bundle names, or the curated list in future releases. Relying on hard‑coded package names in scripts is brittle; use the policy UI or CSP and validate IDs at deployment time.
  • Avoid policy conflicts: Do not apply duplicate or conflicting removal policies via both Intune and GPO to the same device. Choose a single management channel per device to avoid race conditions or conflicting registry values.
  • Third‑party vendor compatibility: Some third‑party agents and installers may interact with in‑box apps or expect them to be present. Engage critical ISVs early in your pilot and include EDR/backup/endpoint vendors in your validation ring.

Related operational changes in 25H2 you must consider​

Windows 11, version 25H2 includes other platform changes that intersect with this policy rollout and your broader automation estate:
  • PowerShell 2.0 removal: Windows 25H2 finalizes the removal of the legacy PowerShell v2 engine from shipping images. Scripts that explicitly invoke PowerShell v2 (for example, via powershell.exe -Version 2) will fail unless migrated to PowerShell 5.1 or PowerShell 7+. Audit and remediate scripts and scheduled tasks prior to rolling out 25H2.
  • WMIC deprecation/removal: The wmic.exe utility is being removed from shipping images. Replace WMIC usage with PowerShell CIM/WMI cmdlets such as Get‑CimInstance or programmatic WMI APIs. These two changes are often the largest compatibility risk for automation pipelines.
These platform removals and the new app removal policy make 25H2 a meaningful servicing milestone for enterprise IT: they remove old attack surface and add management capabilities, but also create a short list of prioritized remediation tasks for operations teams.

Mitigations and remediation playbook​

  • Script scanning and remediation: Run automated searches across repos and image builders for wmic, powershell -Version 2, and any hard‑coded Store package names. Convert WMIC calls to Get‑CimInstance and test scripts under PowerShell 5.1 or PowerShell 7+.
  • Provisioning-first policy application: Apply the removal policy in Autopilot/ESP or during OOBE when possible to avoid inconsistencies between already provisioned user profiles and device‑level settings.
  • Cleanup scripts for UI artifacts: Prepare short PowerShell helper scripts to remove dead Start menu shortcuts and stale All apps entries for early waves until Microsoft provides additional UX polish. Validate these scripts across user profiles and languages.
  • Coordinate with ISVs: Share pilot details with critical ISV vendors (EDR, backup, VPN, management agents) and validate agent behavior on 25H2 images before a broad rollout.
  • Use telemetry and logging: Monitor AppxDeployment events and Intune policy status; collect device event logs during pilot to catch edge cases quickly.

Strengths — why this change matters​

  • Reduces operational complexity: Removes the need for fragile, maintenance‑heavy scripts and custom imaging to produce clean enterprise images. The change lets IT use standard policy tooling to control provisioned inbox apps.
  • Integrates with modern management: Works with Intune (Settings Catalog and CSP) and Group Policy, aligning app removal with existing device management workflows and reporting.
  • Improves security posture indirectly: A cleaner image reduces attack surface by limiting unnecessary apps and associated auto‑update surfaces, and aligns with Microsoft’s broader effort to remove legacy binaries such as PSv2 and WMIC.
  • Low friction for 24H2 → 25H2 devices: Because 25H2 is delivered as an enablement package for devices on the 24H2 servicing branch, the binary footprint is small and activation typically requires a single restart; this reduces rollout friction for organizations current on updates.

Risks and open questions​

  • Residual UI artifacts: Early community testing shows Start menu shortcuts and other artifacts may persist after deprovisioning; expect to address these with supplementary cleanup until Microsoft provides additional fixes. This is a practical risk for user experience during early waves.
  • Partial cleanup for existing profiles: The policy is strongest when applied before or during provisioning. On devices with many existing users, the policy might not fully clean historical profile data — expect manual or scripted remediation for such devices.
  • Evolving package IDs: If Microsoft changes package identifiers in future cumulative updates, any assumptions baked into scripts or third‑party tools will break. Use the official policy UI or CSP and avoid hard‑coding names.
  • Third‑party interactions: Some third‑party agents or workflows may implicitly rely on preinstalled apps or components. Validate vendor compatibility early in the pilot phase.
  • Unverifiable marketing claims: Microsoft’s messaging that built‑in Store apps “now come updated out‑of‑the‑box” addresses a historical pain point where inbox apps arrived stale. This claim is plausible and reflected in guidance, but organizations should still validate actual app versions on their images and during provisioning — treat the marketing claim as an operational improvement to confirm rather than assume. Flagged for validation during pilot.

Practical example: Minimal Intune settings recap​

  • Policy path: Administrative Templates → Windows Components → App Package Deployment → Remove default Microsoft Store packages from the system (Enabled).
  • CSP OMA‑URI: ./Device/Vendor/MSFT/Policy/Config/ApplicationManagement/RemoveDefaultMicrosoftStorePackages. Use ADMX‑backed XML payload entries such as <data id="MicrosoftStickyNotes" value="true"/> to indicate packages to remove.
  • Verification: Check HKLM\SOFTWARE\Policies\Microsoft\Windows\Appx\RemoveDefaultMicrosoftStorePackages and AppxDeployment event logs on a target device.

Bottom line​

The new policy to remove default Microsoft Store packages on Windows 11 Enterprise and Education (25H2) is a welcome, practical addition to the IT admin toolbox. It turns a historically messy, script‑heavy task into a manageable policy setting that integrates with Intune and Group Policy, reduces long‑term maintenance, and supports cleaner provisioning workflows. That said, this is a provisioning‑centric tool with some early UX rough edges — plan a careful pilot, validate with your ISVs, and prepare short remediation scripts for UI artifacts. Properly piloted and applied, this policy will simplify image hygiene and lower operational overhead for managed Windows fleets.
Conclusion: Adopt the Remove Default Microsoft Store packages policy as part of a measured 25H2 rollout — prioritize inventory and pilot work, validate user‑facing cleanup, and coordinate with vendor partners. When applied with care, this capability eliminates years of brittle scripting and finally gives IT a supported, first‑party mechanism to de‑bloat enterprise‑facing Windows images.
Source: Microsoft - Message Center Policy-based removal of pre-installed Microsoft Store apps - Windows IT Pro Blog
 

Click to expand...
Microsoft’s new full‑screen “Xbox mode” in Windows 11 is more than a cosmetic skin—it's a purpose‑built, controller‑first shell that suppresses parts of the traditional desktop, trims background services, and reorients the operating system toward a console‑like handheld gaming experience. First shipping preinstalled on the Asus ROG Xbox Ally and Ally X, the feature has already been surfaced in Windows 11 25H2 preview builds and unlocked by enthusiasts on other handheld PCs. Early tests report modest frame‑rate uplifts, measurable battery savings, and a much cleaner controller‑led UI, but the implementation leaves important design choices, compatibility caveats, and stability trade‑offs in plain view for hardware makers, developers, and power users alike.

A person holds a handheld console displaying game tiles, including Game Pass.Background​

Since Windows began appearing on handheld gaming PCs, one persistent complaint has been the platform's desktop heritage: taskbar clutter, desktop processes, and a productivity‑focused shell that behaves awkwardly on 7–8‑inch screens. Microsoft’s “Full Screen Experience”—commonly called Xbox mode—aims to change that by wrapping the Xbox PC app in a fullscreen shell designed for gamepad and touch input, and by exposing system hooks that delay or disable non‑essential desktop components at boot.
The rollout strategy has been phased. Asus’ ROG Xbox Ally and ROG Xbox Ally X are the first retail devices shipping with the experience preinstalled as their default boot shell. Windows 11’s 25H2 preview stream exposed the same handheld bits to Insiders, and community tools and registry edits have allowed early adopters to enable the mode on other handheld hardware. Microsoft has said it plans broader availability for other manufacturers over the coming product cycles.

What Xbox mode actually does: technical overview​

A controller‑first shell, not a new OS​

Xbox mode is not a fork of Windows; it’s a full‑screen launcher built using updated Xbox PC app components, enhanced Game Bar features, and low‑level system hooks. When enabled, the new shell becomes the primary UI on boot and presents a consolidated game library, controller navigation, and on‑screen gamepad keyboard. The traditional desktop is still present underneath and can be accessed via Alt‑Tab or designated keystrokes, but it is intentionally deferred to reduce the desktop’s boot‑time and runtime footprint.

System‑level tweaks and process suppression​

Behind the scenes, Xbox mode triggers Windows to avoid initializing certain desktop UX elements and non‑essential services during handheld, controller‑first sessions. These changes include:
  • Not loading the Taskbar and desktop wallpaper at boot.
  • Suspending or deferring productivity‑oriented background services.
  • Adapting touchscreen gestures and task switching to controller inputs.
  • Presenting a compact Task View optimized for single‑screen gaming.
Those optimizations mirror the design of console OSes—small, focused, and optimized for input and power efficiency—while deliberately retaining the modularity and compatibility of Windows.

How users are unlocking the mode today​

On devices that shipped with Xbox mode preinstalled, it’s a straightforward setting. For other Windows 11 handhelds in the 25H2 preview stream, hobbyists have used these steps to enable the mode:
  • Enroll the device in the Windows Insider program or install a 25H2 preview build.
  • Update the Xbox PC app to the preview version that exposes the handheld UI.
  • Toggle the Full Screen Experience option in Settings > Gaming, or
  • If the option is absent, use community tools such as ViVeTool to enable the feature flags and add the requisite registry keys, then reboot.
These community procedures work for many devices but repeatedly require caution: altering feature flags and registry values can introduce instability and is not supported by Microsoft for production systems.

The performance story: modest frame gains, meaningful overhead reduction​

What tests are actually showing​

Independent testers and outlets who forced the feature onto older handhelds reported two types of gains:
  • Direct frame‑rate improvements in some titles, often single‑digit or low‑double‑digit percentage increases.
  • Reduction of background overhead that translates into improved thermal headroom and battery life.
Concrete examples from early hands‑on reports include measured jumps in certain games—from roughly 29 FPS to about 38 FPS in a demanding title after enabling the Full Screen Experience on older hardware—and anecdotal increases in battery life of about an hour under similar workloads. Those are real numbers in those test contexts, but they are workload‑ and hardware‑dependent.

Why frame gains are modest but important​

Frame‑rate increases are usually not dramatic because the GPU and CPU remain the ultimate bottlenecks; Xbox mode doesn't rewrite drivers or change GPU scheduling at the kernel level. Instead, the mode frees system memory and CPU cycles by suspending non‑critical services and not loading the desktop shell, which reduces background contention and can prevent incidental frame drops and microstutters. For thermally constrained handhelds, that reduced overhead can also mean lower sustained temperatures and fewer thermal throttling events—yielding smoother performance over longer play sessions.

Variability by hardware and title​

Outcomes vary significantly by device. On some new hardware optimized for the experience the impact was negligible because the platform already ran efficiently. On older or less‑optimized hardware the gains were more visible. Similarly, CPU‑bound or GPU‑bound titles will respond differently: games that are CPU‑sensitive and hit the system with many background threads will tend to benefit more from reduced OS overhead than games already maxing the GPU.

UX and developer implications​

A single hub for disparate ecosystems​

One of the biggest UX wins is the Xbox mode’s consolidated game library: it surfaces titles installed from Xbox Game Pass, Steam, Epic, GOG, and other storefronts in a single controller‑navigable hub. For handheld users accustomed to switching launchers, this is a large quality‑of‑life improvement and makes Windows handhelds feel more like a console for everyday gaming.

Controller‑first rework, with retained desktop escape hatches​

The new Task View and on‑screen gamepad keyboard are meaningful refinements for handheld use. Swipes and gestures are remapped to controller interactions, and task switching is optimized for bumpers and analog sticks. Crucially, the desktop remains accessible via Alt‑Tab or specific gestures, maintaining the openness of Windows while offering a more focused starting experience.

Developer challenges and compatibility issues​

Although the interface is streamlined, Xbox mode is still Windows at its core. That means:
  • Some desktop apps or older installers might not behave perfectly in the fullscreen shell.
  • Anti‑cheat and kernel‑level components may still expect a traditional desktop environment.
  • Background services that some titles rely on could be deferred or suspended, producing edge‑case breakages.
Game developers and platform providers will need to test titles in the Xbox mode environment and ensure compatibility, particularly for multiplayer titles and games with legacy dependencies.

Modding, leaks, and the democratization problem​

Early unlocking and the risks​

The Full Screen Experience started as an Asus‑timed exclusive but was quickly replicated on other devices through simple feature flag toggles and registry edits. Enthusiasts unlocked the mode using ViVeTool and early 25H2 preview builds. This democratization pressures competitors to innovate rapidly but also exposes the fragility of shipping a delicate system tweak outside official support channels.

Risks of forcing the mode​

Forcing Xbox mode on unsupported hardware can introduce instability, driver incompatibilities, and unexpected power management behavior. Hobbyists have reported mixed results across different handhelds—some run smoothly, others encounter glitches. The process also typically involves using preview OS builds and third‑party utilities, which are inherently riskier than consumer‑facing updates. Users attempting these steps must be willing to accept warranty and stability trade‑offs.

Industry reaction and competitive implications​

A lever for OEM differentiation​

For hardware partners like Asus, integrating Xbox mode from the factory is a way to differentiate handhelds in a crowded market. The ROG Xbox Ally family packages the full‑screen experience with tuned thermal solutions, tailored button layouts, and batteries sized for the combined hardware and software stack.

Competitive pressure on Valve and Linux‑based handhelds​

The move amplifies competitive dynamics with Valve’s Steam Deck ecosystem and Linux‑based alternatives. Microsoft’s approach—preserving Windows compatibility while offering a console‑like shell—positions Windows handhelds as a bridge between PC openness and console ergonomics. That may nudge Valve and other players to refine their UI and performance strategies in response.

Cloud gaming and the potential for hybrid wins​

Microsoft’s console‑like launcher opens the door to tighter Xbox Cloud Gaming integration. Reduced input and UI overhead could help marginally with perceived latency for streamed titles, and a unified launcher could make cloud catalog access more frictionless on handhelds. Expect Microsoft to experiment with deeper cloud tie‑ins as the feature rolls out.

Roadmap, promises, and the dangers of over‑promising​

Microsoft’s stated expansion timeline​

Microsoft has indicated plans to expand the Full Screen Experience to other manufacturers over the next product cycles. OEMs such as Lenovo have signalled device support in future updates. That staged approach allows Microsoft and partners to balance ecosystem compatibility with certified hardware that can actually realize the mode’s efficiency goals.

Speculation and unverifiable claims​

Industry speculation has floated ideas such as eventual kernel‑level changes, AI‑driven performance tuning, and deeper anti‑cheat workarounds. These are plausible directions, but they remain speculative until confirmed by official engineering releases. Any claim suggesting Xbox mode will fully match console OS efficiency without kernel modifications should be treated cautiously—current evidence indicates the mode is an optimization layer rather than a fundamental rearchitecture.

Practical advice for power users and OEMs​

For consumers considering a handheld with Xbox mode​

  • Look for devices shipping with the experience preinstalled if you want an out‑of‑the‑box console‑first experience.
  • If you unlock the mode yourself on a device, back up your system, understand warranty repercussions, and be prepared to roll back if you encounter driver or stability problems.
  • Test your most‑played titles in the shell before committing to daily use to ensure no unexpected compatibility issues.

For OEMs and developers​

  • Treat Xbox mode as a UX and power‑management target: tune drivers, thermal profiles, and firmware for the intended behavior rather than assuming the shell will magically fix hardware shortcomings.
  • Certify common anti‑cheat components and middleware in the fullscreen environment to minimize game breakage.
  • Embrace the unified library model and ensure storefronts and launchers coexist gracefully inside the new shell.

Strengths, limitations, and the long view​

Notable strengths​

  • Cleaner, more immersive UX: For handheld sessions, Xbox mode removes desktop noise and provides a controller‑centric interface.
  • Reduced overhead yields practical gains: Measurable battery improvements and smoother sustained performance in certain scenarios.
  • Ecosystem consolidation: Aggregating games from multiple storefronts into a single controller‑navigable library simplifies game discovery and launching on handhelds.

Important limitations​

  • No kernel rewrite: Xbox mode optimizes at the shell and service level; it does not replace or fundamentally change Windows kernel behavior or GPU driver scheduling.
  • Hardware sensitivity: Benefits vary by device; well‑tuned hardware may see negligible gains while older hardware benefits more.
  • Modding risks: Forcing the mode via preview builds or third‑party tools can produce instability and may void support—users should proceed carefully.

Strategic positioning: Microsoft’s play for handheld relevance​

Microsoft’s move is strategic: by offering a console‑like front end while keeping the Windows ecosystem intact, the company can capture users who want the immediacy of a console without sacrificing PC openness. For OEMs, this presents an opportunity to ship differentiated devices that appeal to both PC gamers and console converts. For platform competitors, it places pressure on UI and performance to match a clearer, controller‑first user experience. The technical pivot is incremental, not revolutionary, but it signals Microsoft’s intent to compete for the handheld space on software and UX as much as on silicon.

Conclusion​

Xbox mode for Windows 11 handhelds reframes the old debate about whether Windows belongs on pocketable gaming PCs. It combines a streamlined, controller‑first interface with pragmatic system‑level optimizations that reduce background overhead and improve the handheld gaming experience in meaningful ways. The gains are neither universal nor miraculous: frame improvements are modest for many titles, and the mode’s reliance on user‑space and service‑level tuning means hardware, drivers, and firmware still matter a great deal.
What is clear is that Microsoft has provided a practical path for Windows handhelds to look and feel more like consoles while preserving the platform’s openness. That move reshapes product differentiation for OEMs, forces competitor responses, and creates fresh responsibility for developers to test and certify titles in a new runtime environment. Enthusiasts will continue to unlock and experiment with the Full Screen Experience, but commercial success will hinge on stable, factory‑supported implementations and careful hardware tuning rather than registry hacks and preview builds. In short, Xbox mode is an important evolutionary step for Windows handhelds—one that trims the edges off Windows’ desktop baggage and hands users a sleeker, more focused way to play.
Source: WebProNews Microsoft’s Xbox Mode Transforms Windows 11 Handhelds into Gaming Consoles
 

Microsoft has finally given IT teams a supported, first‑party way to remove selected preinstalled Microsoft Store apps from managed Windows 11 devices: a device‑level, ADMX‑backed policy in Windows 11, version 25H2 that lets administrators pick which inbox Store packages to deprovision centrally through Group Policy, Microsoft Intune, or the MDM Configuration Service Provider (CSP).

Monitor displaying a Group Policy screen to remove default Microsoft Store packages with app toggles.Background​

Enterprise and education IT shops have long struggled with the operational friction of “debloating” Windows images: brittle removal scripts, imaging complexities, and re‑provisioning after updates. Those manual approaches were fragile because package family names and provisioning behaviors changed between builds, and major updates could re‑provision apps unexpectedly. The new policy‑based mechanism in Windows 11 25H2 replaces much of that fragility with a supported policy surface that operates at the device level and integrates with existing management tooling.
Windows 11, version 25H2 introduces the ADMX/MDM setting named Remove Default Microsoft Store packages from the system, which is off by default and must be explicitly enabled by administrators. Support for the setting is limited to Windows 11 Enterprise and Education editions running version 25H2 or later. Management surfaces include Group Policy (ADMX), Microsoft Intune (Settings Catalog), and direct CSP/OMA‑URI payloads.

What this policy actually does​

Scope and intent​

  • The policy is device‑level, not per‑user. That means selected inbox Store packages are removed (or prevented from provisioning) across the device rather than for an individual user account. This is intended to produce consistent, work‑ready images during provisioning and post‑upgrade flows.
  • Enforcement occurs during key provisioning events: Out‑Of‑Box Experience (OOBE), the first sign‑in after an OS upgrade, or when the policy is updated and processed at user sign‑in. Administrators should plan pilots around these triggers to observe real‑world behavior.
  • The policy targets a curated list of inbox Microsoft Store packages; administrators choose which items on that list to remove. Microsoft enumerates supported package IDs through the Group Policy UI and the CSP payload, and the list is subject to change over time. Validate what is exposed to your management console for the 25H2 build you run.

What it does not do (important limits)​

  • It is not a catch‑all debloat tool for OEM or third‑party preloads. The policy targets Microsoft inbox Store packages only; vendor‑supplied utilities and drivers are outside its scope.
  • Existing user profiles may retain some app state depending on timing. The policy is strongest when applied before or during provisioning. For devices with many preexisting user accounts, supplementary remediation may be required.
  • Multi‑user session devices (for example, shared kiosk or some multi‑session scenarios) have explicit behavioral caveats and may be unsupported for this policy — validate device types in your inventory.

Supported management surfaces and configuration​

Group Policy (ADMX)​

  • Path: Computer Configuration → Administrative Templates → Windows Components → App Package Deployment → Remove Default Microsoft Store packages from the system.
  • Set the policy to Enabled, then select the apps you want removed using the policy options UI. The ADMX writes registry values under HKLM when applied.

Microsoft Intune (Settings Catalog)​

  • The Settings Catalog exposes the same setting under Administrative Templates → Windows Components → App Package Deployment → Remove default Microsoft Store packages from the system. Set the policy to Enabled and toggle each listed app to True to request removal. Assign to device groups as usual. Intune may show the policy as “Not applicable” for unsupported devices.
  • If your environment needs a custom MDM payload (for example before the native settings appear in your Intune tenant), you can create a custom OMA‑URI profile that points to the CSP described below.

CSP / OMA‑URI​

  • OMA‑URI: ./Device/Vendor/MSFT/Policy/Config/ApplicationManagement/RemoveDefaultMicrosoftStorePackages
  • The CSP is ADMX‑backed and accepts an XML/SyncML payload where each package is represented by a boolean indicating whether to remove it. This route is essential in automation or when a management console hasn’t yet surfaced the native setting.

What apps can be removed (and the caveat)​

Microsoft delivered this capability against a curated list of inbox Store packages. Examples commonly listed in the policy UI and documentation include familiar consumer and inbox apps such as:
  • Microsoft Photos, Snipping Tool, Clipchamp, Microsoft Teams (desktop client), Outlook for Windows, Windows Terminal, Microsoft 365 Copilot (consumer Copilot), Calculator, Paint, Notepad, Sticky Notes, Microsoft Solitaire Collection, Xbox Gaming App and related components.
Important caveat: Microsoft may update the list or package identifiers across servicing versions. Administrators must validate the exact package names and IDs that appear in their management UI before deployment; do not hard‑code package family names in scripts expecting them to be stable.

How to enable the policy — practical walkthrough (Intune example)​

  • In the Microsoft Intune admin center go to: Devices → Manage devices → Configuration → Create → New policy.
  • Choose Settings catalog to create a policy.
  • Use the following settings path: Administrative Templates → Windows Components → App Package Deployment → Remove default Microsoft Store packages from the system. Set the policy to Enabled.
  • For each app you want removed, toggle the setting to True.
  • Assign the policy to the intended device group(s) and monitor application status; unsupported devices will report “Not applicable.”
If the native Settings Catalog entry is not yet available in your tenant, build a custom MDM policy that targets the CSP OMA‑URI and submit an XML/SyncML payload that sets the boolean flags for the packages to remove. Microsoft’s support documentation and CSP reference include example payload fragments.

Verification and diagnostics​

  • Event logging: Successful removals are logged in the Appx deployment operational event log. Look under Applications and Services Logs → Microsoft → Windows → AppxDeployment‑Server → Operational. A successful uninstall is recorded as Event ID 762 with a message that begins “RemoveDefaultPackages uninstall override policy successfully removed package.” Use this as your ground truth for policy action.
  • User validation: Sign in with a test user after applying the policy and verify that the selected apps are not present. Be prepared to check Start menu and All apps for residual shortcuts.
  • Registry check: The Group Policy and CSP write values to HKLM\SOFTWARE\Policies\Microsoft\Windows\Appx\RemoveDefaultMicrosoftStorePackages that you can inspect to confirm the policy payload on the device.

Operational guidance — rollout playbook​

Enabling this policy is straightforward technically, but its operational implications merit a careful rollout plan. The following playbook condenses best practices drawn from vendor guidance and early community validation.

1. Inventory & discovery​

  • Scan for scripts, scheduled tasks, or image customization steps that explicitly depend on the presence of inbox apps (or rely on WMIC / PowerShell v2, which are being deprecated in the 25H2 servicing stream). Document dependencies and owners.

2. Build a representative pilot​

  • Start with a small, diverse pilot (5–10% of devices) that includes different hardware families, Autopilot and non‑Autopilot flows, devices with critical ISV agents (EDR, backup, printing), and a mix of user roles. Validate OOBE and first sign‑in behavior under the new policy.

3. Validate user experience​

  • Check for residual Start menu shortcuts, missing file type handlers, and any degradation in workflows that previously relied on the removed apps. Create short remediation scripts for cosmetic cleanups if Microsoft’s cleanup leaves behind artifacts.

4. Test reinstallation & rollback​

  • Confirm reinstallation works: clear the policy selection for an app, sync the device, and reinstall from the Microsoft Store or via management tooling. Document rollback steps in runbooks.

5. Monitor logs & telemetry​

  • Use Event ID 762 and Intune policy status to track compliance. Capture helpdesk ticket trends (app requests, missing handlers) during pilot and ramp phases.

6. Expand in waves​

  • Ramp by device type and geography. Keep each wave small enough to revert changes without broad operational impact. Coordinate with ISVs and internal stakeholders for mission‑critical endpoints.

Benefits: Why this matters to IT​

  • Supported, centralized control: Replaces brittle scripting and complex imaging workarounds with a supported policy that integrates with Group Policy and modern MDM. This reduces long‑term maintenance overhead.
  • Cleaner provisioned devices: By removing unneeded inbox apps at OOBE or first sign‑in, devices can be delivered with a smaller, more predictable app surface for end users.
  • Security and compliance uplift: Fewer unnecessary inbox apps reduce the number of components to monitor and patch, which can marginally lower attack surface and operational noise.
  • Integration with Autopilot and modern provisioning flows: This policy aligns with Autopilot and enterprise provisioning so that images do not need fragile manual cleanup steps.

Risks, limitations and gotchas — the realistic downsides​

Residual UI artifacts​

Early community testing and Microsoft guidance report that while backend deprovisioning works, UI artifacts (dead Start menu shortcuts, leftover tiles) can persist on some builds. Prepare short cosmetic cleanup scripts and include them in your pilot evaluation.

Existing user profiles​

Devices with long‑lived user profiles may retain app state or cached shortcuts. The policy is provision‑centric; cleaning historical profiles may require manual or scripted remediation, or user‑level actions. Plan accordingly.

Edition and device restrictions​

This is targeted at Enterprise and Education SKUs and Windows 11 version 25H2 or newer. Devices running Pro, Home, or older builds will not be supported and may show “Not applicable” in Intune. Avoid trying unsupported registry hacks in production.

Package list volatility​

Microsoft may update package identifiers and the supported list over time. Avoid hard‑coding package family IDs into long‑running scripts; rely on the ADMX/CSP enumerations surfaced by your management tools. Flag any claims about a permanent static package list as potentially unverifiable over time.

Third‑party and ISV interactions​

Some third‑party agents or internal automation may implicitly rely on the presence of certain inbox apps or components. Test EDR, backup, print, and other critical agents in your pilot pool.

Triage checklist for admins (quick action list)​

  • Inventory scripts and images for hard dependencies on inbox apps.
  • Build a 5–10% pilot with diversity across hardware and management surfaces.
  • Enable the policy in Intune or GPO for pilot devices only; select one or two low‑risk apps to remove first.
  • Verify Event ID 762 in AppxDeployment logs and confirm UI cleanliness after sign‑in.
  • Validate rollback and reinstallation paths from the Microsoft Store or management tooling.

Final analysis — practical verdict​

This policy is a pragmatic, overdue manageability win. It formalizes what many enterprises had to hack together with brittle scripts or custom images and ties app removal to standard management tooling and provisioning events. For IT organizations that have historically spent cycles chasing reprovisioned inbox apps after major updates, the policy materially reduces operational overhead and simplifies image hygiene.
That said, it is not a silver bullet. The policy is provisioning‑centric, limited to Enterprise and Education SKUs, and dependent on a curated and evolving package list. Real‑world pilots report cosmetic artifacts and partial cleanup for existing profiles, so a careful, staged rollout is mandatory. Treat the policy as one important tool in an overall provisioning and compliance toolbox — valuable, supported, and powerful when used with the right governance and testing.

Bottom line and recommended next steps​

  • Start with an inventory of scripts and images, then pilot the policy on a representative device ring.
  • Use Intune Settings Catalog or Group Policy to enable Remove Default Microsoft Store packages from the system and toggle removals for a small set of low‑risk apps.
  • Monitor Appx deployment logs (Event ID 762), and prepare short remediation scripts for any leftover UI artifacts.
  • Coordinate with ISV vendors and support teams, and document rollback/reinstall procedures before broad rollout.
When implemented carefully, this policy converts a long‑standing, error‑prone maintenance chore into a manageable, policy‑driven operation — a concrete win for enterprise Windows management that should save time, reduce fragile scripting, and produce cleaner, more secure workstations.
Source: Petri IT Knowledgebase Windows 11 Policy Lets IT Admins Remove Pre-Installed Apps
 

You must log in or register to reply here.

Similar threads

ChatGPT
  • Featured
  • Article Article
Windows 11 25H2 Update: Native Tool to Uninstall Default Microsoft Store Apps with Group Policy
Replies
0
Views
255
ChatGPT
ChatGPT
ChatGPT
  • Featured
  • Article Article
Windows 11: Snooze Start Backup, Remove Default Store Apps, Manage OneDrive
Replies
0
Views
177
ChatGPT
ChatGPT
ChatGPT
  • Featured
  • Article Article
Windows 11 25H2: Seamless Removal of Default Microsoft Apps for a Cleaner Experience
Replies
0
Views
372
ChatGPT
ChatGPT
ChatGPT
  • Featured
  • Article Article
Windows 11 25H2 Release Preview: What IT Pros Need to Validate
Replies
0
Views
363
ChatGPT
ChatGPT
ChatGPT
  • Featured
  • Article Article
Windows 11 25H2 Arrives as a Lightweight Enablement Package (eKB) in Release Preview
Replies
6
Views
1K
ChatGPT
ChatGPT
Back
Top