deepblue/windows-itpro-docs
1
0
Fork 0
mirror of https://github.com/MicrosoftDocs/windows-itpro-docs.git synced 2025-06-19 12:23:37 +00:00
Code Issues Actions 3 Packages Projects Releases Wiki Activity
Files
b5101b1fbd75f538e7af22d78524ea3b5335c587
windows-itpro-docs/windows/security/identity-protection/index.md
Paolo Matarazzo 205aee36f3 updates
2023-05-31 09:21:56 -04:00

3.9 KiB
Raw Blame History

title, description, ms.topic, ms.date
title description ms.topic ms.date
Identity and access management Learn more about identity and access protection technologies in Windows. article 05/31/2023

Identity and access management

Learn more about identity and access management technologies in Windows.

[!INCLUDE virtual-smart-card-deprecation-notice]

Section Description
Windows Hello for Business Windows Hello replaces passwords with strong two-factor authentication on client devices. The authentication consists of a type of user credential that is tied to a device and a biometric or PIN.
Windows Local Administrator Password Solution (LAPS) Windows Local Administrator Password Solution (Windows LAPS) is a Windows feature that automatically manages and backs up the password of a local administrator account on your Azure Active Directory-joined or Windows Server Active Directory-joined devices.
Technical support policy for lost or forgotten passwords Outlines the ways in which Microsoft can help you reset a lost or forgotten password, and provides links to instructions for doing so.
Access control Describes access control in Windows, which is the process of authorizing users, groups, and computers to access objects on the network or computer. Key concepts that make up access control are permissions, ownership of objects, inheritance of permissions, user rights, and object auditing.
Protect derived domain credentials with Credential Guard Credential Guard uses Virtualization-based security (VBS) to isolate secrets so that only privileged system software can access them. Unauthorized access to the secrets can lead to credential theft attacks, such as pass the hash or pass the ticket. Credential Guard helps prevent such attacks by protecting NTLM password hashes and Kerberos Ticket Granting Tickets.
Protect Remote Desktop credentials with Remote Credential Guard Remote Credential Guard helps you protect your credentials over a Remote Desktop connection by redirecting the Kerberos requests back to the device that's requesting the connection.
User Account Control Provides information about User Account Control (UAC), which helps prevent malware from damaging a PC and helps organizations deploy a better-managed desktop. UAC can help block the automatic installation of unauthorized apps and prevent inadvertent changes to system settings.
Smart Cards Provides a collection of references articles about smart cards, which are tamper-resistant portable storage devices that can enhance the security of tasks such as authenticating clients, signing code, securing e-mail, and signing in with a Windows domain account.
Windows Credential Theft Mitigation Guide Abstract Learn more about credential theft mitigation in Windows.
Virtual Smart Cards Provides information about deploying and managing virtual smart cards. Virtual smart cards use the Trusted Platform Module (TPM) chip that is available on computers in many organizations, rather than requiring the use of a separate physical smart card and reader.
Microsoft Defender SmartScreen Microsoft Defender SmartScreen protects against phishing or malware websites and applications, and the downloading of potentially malicious files. Learn more: Microsoft Defender SmartScreen overview