How to use DNS over HTTPS connectivity feature in Windows 11

DNS over HTTPS (DoH) is a privacy feature that restricts your ISP/any mid tracker from tracking your web activity, proofing your access to a website in a very secure, encrypted way to the DNS. Windows 10 never supported this feature natively, though it was quite possible to do it with third-party applications. Gladly, Windows 11 has introduced this essential security feature in its core settings and you, the users can easily use it to ensure more privacy. Follow these easy steps to enable the DoH settings on your computer.

 

How to enable DNS over HTTP (DoH) feature in Windows 11

Just go through these easy steps to enable the DoH feature on your computer.

1. At first, press the Windows key+I keys together to open up the Settings.

2. Then, click on the “Network & Internet” settings.

3. Here you will different connectivity options, such as – WiFi, Ethernet, etc.

4. Select the network type your PC/laptop is currently using.

(As this computer is using the ‘Ethernet’ connection, we have selected it.)

 

Ethernet Min



 

5. Now, you will see various connectivity settings on this page.

6. Find out the “DNS Server assignment:” settings. Then, click on the “Edit” button.

 

Dns Edit Min

 

7. Now, you will see two options – ‘Automatic’ and ‘Manual’.

8. Just click on the “Manual” settings.

 

Manual Min

 

9. Then, you will notice two types of connectivity options. These are – “IPv4” and “IPv6” settings.

10. Toggle the particular connectivity settings your adapter is using.

 

Ipv4 Min

 

[

If you want to check which network type your adapter is using, follow these steps –

1. Press the Windows key+R keys together.

2. Then, type “ncpa.cpl” and hit Enter.

 

Ncpa

 

3. When the Network Connections window opens up, you will see your network adapter.

4. Just double-click on the adapter to access it.

 

Ethernet Dc Min

 

5. You will see the ‘IPv4’ and ‘IPv6’ connectivity options. Check which connection is connected to the “Internet“.

 

Check Ipv4 Min

 

You can also see the connectivity option, following way –

Settings > Network & Internet > Ethernet (or WiFi) > Status 

 

]

11. Now, set the ‘Preferred DNS‘ settings to “8.8.8.8“.

12. Then, set the ‘Preferred DNS encryption’ settings to “Encrypted only (DNS over HTTPS)“.

 

Encrypted Only Min

 

13. Set the ‘Preferred DNS’ setting to this –

8.8.8.4

14. Finally, click on “Save” to save this modification.

 

Alternate Save Min

 

Close the Settings window.

That’s it! This way, you can easily set up the DoH protocol on your network.

*NOTE

There are three types of DNS Encryption settings Windows 11 supports. These are –

1. Unencrypted only – This is the default encryption DNS follows.

2. Encrypted only (DNS over HTTPS) – This option uses the DNS over HTTPS servers only. It will restrict your access to all the unencrypted HTTPS.

3. Encrypted preferred, unencrypted allowed – It prefers the DoH protocol, but it allows the unencrypted connections if there is no DoH DNS available.

 

 

DoH for the GPO in Windows 11

If you want to apply this modification to a domain with other users, you can do this following way –

1. Open the Windows key+R keys together.

2.  In that terminal, type this simple code and then hit Enter.

gpedit.msc

 

1gpedit 1



 

This will open up the Local Group Policy Editor. 

3. Once you see that the  Local Group Policy Editor window has appeared on your screen, go here-

Computer Configuration > Administrative Templates > Network > DNS Client

 

Policy Expand Min

 

4. Then, on the right-hand side, double click on the “Configure DNS over HTTPS (DoH) name resolution” to modify it.

 

Dns Dc Min

 

5. Next, set the policy settings to “Enabled“.

6. Finally, click on “Apply” and “OK” to save the settings.

 

Enabled Min

 

Close the Local Group Policy Settings.

This will be applied to all the computers in the same domain.