From eaac5b25f02a07f9950dff50d8dea40f561aaf93 Mon Sep 17 00:00:00 2001
From: Matheesha <matheesha.weerasinghe@microsoft.com>
Date: Wed, 30 Oct 2024 17:37:48 +0000
Subject: [PATCH] Update settings-and-configuration.md

Added details for the InteractiveLogonFirst (REG_DWORD) value. This controls UAC's behaviour for using cached logon details (potentially stale) over doing a logon over the wire to confirm if account can be used for elevation. Useful for Entra ID joined devices administered by others.
---
 .../user-account-control/settings-and-configuration.md           | 1 +
 1 file changed, 1 insertion(+)

diff --git a/windows/security/application-security/application-control/user-account-control/settings-and-configuration.md b/windows/security/application-security/application-control/user-account-control/settings-and-configuration.md
index 8c81845b7b..68d64ea7fe 100644
--- a/windows/security/application-security/application-control/user-account-control/settings-and-configuration.md
+++ b/windows/security/application-security/application-control/user-account-control/settings-and-configuration.md
@@ -96,6 +96,7 @@ The registry keys are found under the key: `HKLM:\SOFTWARE\Microsoft\Windows\Cur
 | Run all administrators in Admin Approval Mode | `EnableLUA` | 0 = Disabled<br>1 (Default) = Enabled |
 | Switch to the secure desktop when prompting for elevation| `PromptOnSecureDesktop` | 0 = Disabled<br>1 (Default) = Enabled |
 | Virtualize file and registry write failures to per-user locations | `EnableVirtualization` | 0 = Disabled<br>1 (Default) = Enabled |
+| Prioritise network logons over cached logons | `InteractiveLogonFirst` | 0 (Default) = Disabled<br>1 = Enabled |
 
 [WIN-1]: /windows/client-management/mdm/policy-csp-localpoliciessecurityoptions
 [MEM-1]: /mem/intune/configuration/custom-settings-windows-10