Microsoft Ignite: Windows 11 Gets Administrator Protection and Hotpatch Features

LISTEN ON:

This Week in IT at Ignite, Microsoft announces big changes coming to Windows security, including a new Administrator Protection feature, hotpatching, and changes to help prevent and recover Windows when software updates go wrong.

Thanks to Semperis for sponsoring this episode of This Week in IT!

Semperis Logo Black Horizontal

Episode overview

Microsoft announced significant updates to Windows security at its Ignite conference, including a new administrator protection feature, hot patching, and improvements to Windows recovery.

  • Administrator Protection feature: Microsoft introduced a new Administrator Protection feature that enhances security by requiring re-authentication using Windows Hello for administrative tasks, ensuring actions are performed in a separate profile to prevent malware infections.
  • Hot Patch: Hot patching, which allows security updates without requiring a reboot, is coming to Windows 11 Enterprise Edition, though it will only be available for Intune-managed devices.
  • Windows Resiliency Initiative: In response to issues like the CrowdStrike incident, Microsoft announced the Windows Resiliency Initiative, which includes tools like Quick Machine Recovery to remotely fix unbootable machines.
  • Enhanced Antivirus Integration: Microsoft is developing a new framework to allow third-party antivirus solutions to operate without hooking into the Windows kernel, aiming for standardized adoption.
  • Support for Rust Code: Microsoft continues to expand the use of Rust code in Windows, particularly in the kernel, to enhance memory safety and security.
  • Configuration Options: The new Administrator Protection feature can be configured using local settings, Group Policy, or MDM solutions, making it accessible to a wide range of users.