features of Windows will pas work sauf si a Microsoft Account is used?
None. You seulement lose features of various software, et 99% of that is conveniences that nobody will miss. You lose le "Store" completely, et applications like "Weather" need to have le location configured (they ne peut pas juste pull that data depuis votre account).
Are leur tout gotchas of pas using a Microsoft Account in a domain-environment?
Nothing spécifique to le domain ou security.
We désactivez le le Store et Login avec MS Accounts anyway, juste so people ne wander into anything:
Computer Configuration\Policies\Windows Settings\Security Settings\Local Policies\Security Options\Accounts: Block Microsoft accounts
Computer Configuration\Policies\Administrative Templates\Windows Components\Store\Turn off the Store application
If you désactivez le Store, mais do pas uninstall tous of le apps, you will likely want to installez le updates for those apps (Je suis pas aware of tout recent security problems, mais c'est Microsoft software). Microsoft provides a full list of built-in App updates that can be imported into a WSUS sever (or you can extract le MSI installer depuis le cabinet file et deploy it however you like).
