deepblue/windows-itpro-docs
1
0
Fork 0
mirror of https://github.com/MicrosoftDocs/windows-itpro-docs.git synced 2025-05-13 22:07:22 +00:00
Code Issues Actions 2 Packages Projects Releases Wiki Activity

updates

Browse Source
This commit is contained in:
Paolo Matarazzo 2024-10-14 09:12:31 -04:00
parent 6552aadca9
commit 9738205190
2 changed files with 8 additions and 4 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
windows/security/book/conclusion.md
View File

@ -43,11 +43,11 @@ Enhanced:
|November 2021 |Link updates and formatting.|
|February 2022 |Revisions to Hardware root-of-trust, Virus and threat protection, and Windows Hello for Business content.|
|April 2022| Added Upcoming features section.|
| September 2022| Updates with Windows 11 2022 Update features and enhancements.|
|September 2022| Updates with Windows 11, version 22H2, features and enhancements.|
|April 2023| Minor edits and updates to edition availability.|
|September 2023| Updates with Windows 11 2023 Update features and enhancements.|
|September 2023| Updates with Windows 11, version 23H2, features and enhancements.|
|May 2024| Move form PDF format to web format.|
|November 2024| Updates with Windows 11 2024 Update features and enhancements.|
|November 2024| Updates with Windows 11, version 24H2, features and enhancements.|
## Endnotes

6
windows/security/book/identity-protection-advanced-credential-protection.md
View File

@ -15,7 +15,11 @@ In addition to adopting passwordless sign-in, organizations can strengthen secur
Windows has several critical processes to verify a user's identity. Verification processes include Local Security Authority (LSA), which is responsible for authenticating users, and verifying Windows sign-ins. LSA handles tokens and credentials that are used for single sign-on to a Microsoft account and Entra ID account.
To help keep these credentials safe, starting in Windows 11, version 24H2, LSA protection is enabled by default on all devices (MSA, Entra joined, hybrid, and local). For new installs, it's enabled immediately, and for upgrades, it's enabled after an evaluation period. By loading only trusted, signed code, LSA provides significant protection against credential theft. LSA protection supports configuration using group policy and other device management solutions.
By loading only trusted, signed code, LSA provides significant protection against credential theft. LSA protection supports configuration using group policy and other device management solutions.
[!INCLUDE [new-24h2](includes/new-24h2.md)]
To help keep these credentials safe, LSA protection is enabled by default on all devices (MSA, Entra joined, hybrid, and local). For new installs, it's enabled immediately, and for upgrades, it's enabled after an evaluation period.
Users have the ability to manage the LSA protection state in the Windows Security application under **Device Security** > **Core Isolation** > **Local Security Authority protection**.