![]() this doc has some redundant sentences (See the Reference section). ![]() Biometric sign-in, if it's a viable option for you. Please note that you can also consider Windows Hello e.g. Finally, with devices offering more keyboard-free logon experiences such as facial recognition, Ctrl+Alt+Del becomes an annoying interference. Third, if the adversary has gained administrative control of the computer, the “secure desktop” is no longer a protected space. Second, so many apps prompt the user for the same credentials on the user’s desktop that the credentials can easily be stolen there. First, it depends on a user that’s looking at a spoofed logon screen remembering that he or she hadn’t pressed Ctrl+Alt+Del before typing a password. This is not particularly strong protection. For others, organizations can continue enforcing settings, but we do not consider their enforcement to be necessary.Įnforcement of Ctrl+Alt+Del at logon to protect credentials from theft. the 122 settings that went from a configured value to “Not Configured.” For many of these settings, such as Windows Update settings, specific configuration is best left to the organization. ![]() The result is that we have removed 122 settings that had been enforced. to remove settings that do not address contemporary threats, and to remove the enforcement of Windows default settings that require administrative control to change and that are unlikely to be changed by an authorized administrator. This information that came from a closed issue might help, tagging since he pointed it out. If you are pertaining to the above, the suggested best practice is updated. Thank you for the clarification is advisable to set Disable CTRL+ALT+DEL requirement for logon to Not configured.
0 Comments
Leave a Reply. |