Jesus Vigo evaluated the latest features of Windows 10 (20H2) because they are relevant to IT professionals and can take full advantage of the latest version of Microsoft’s flagship operating system.
Released in October 2020, the latest update from Microsoft Windows 10 Operating systems have just begun to be deployed on a large scale worldwide.Whether it is due to the global pandemic, compliance testing, or just out of prudence, the slowness is eventually accelerating, and more devices are beginning to transition to update Version 20H2.
see: Windows 10: List of voice commands for speech recognition and dictation (free PDF) (Technical Republic)
Starting with this version, Microsoft chose to change the name from the version number based on the year and month model to the name of the year and half year model. It is clear at a glance, so the update time can be clearly indicated. Support for the update will not change, because Microsoft said that starting from the release date of the Enterprise Edition and Education Edition, it will provide 30 months of service support.
The deployment of this update will continue to be available to all instances through Windows Update. Enterprise environments that manage their devices through SCCM or MDT can continue to create packages to deploy updates to devices in an automated or self-service mode in a scripted manner.
The following are some of the new features brought by the Windows 10 20H2 update.
When Autopilot was first introduced in the 2004 update, it received many enhancements in the management and reporting of supported devices. Regardless of whether co-management is considered when deploying tasks, Autopilot can help administrators provide a standardized desktop environment for packing and setting from equipment vendors to end users, and use tasks, policies, and reports to ensure that each device is fully compliant Anticipate and provide users with an environment where they need to work faster.
This feature is integrated with Configuration Manager to provide insight into the state of device management within the organization. Cloud-connected services are used to identify the status of a specific set of applications, so that administrators can quickly and efficiently configure applications in a unified manner throughout the enterprise, and remediate applications that do not meet benchmark standards.
see: How to safely donate an old Windows 10 PC (Technical Republic)
MDM strategy enhancement
Administrators with experience in managing infrastructure using Group Policy (GP) can now Mobile device management (MDM) Equivalent functions have been enabled to use the “local users and groups” MDM policy to control the devices managed by MDM. This strategy is very similar to the GP counterpart strategy. It allows the baseline template to be applied to a device group or finely applied to a specific device, thereby helping to manage the security and compliance of the endpoint.
Microsoft Defender Application Guard for Office
Microsoft’s Defender Application Guard technology allows optional service-enabled devices to use the built-in Hypervisor to create a virtualized environment or VM to isolate data and applications and prevent them from interacting with the system or otherwise allowing malicious code to run outside the container Range. Microsoft has taken the first step to include Office documents and data in containers to prevent untrusted data (such as macros) from running unconstrained on the system and injecting malicious code into devices.
Chromium-based Microsoft Edge
Microsoft has further modernized the Edge browser by rebuilding it on the open source Chromium code base. In addition to this switch, the new Edge browser also works with other Microsoft products (such as Office 365 and Microsoft Endpoint Security Standards) to ensure that data remains secure and accessible across all Microsoft platforms and services. In addition, the new Edge also provides compatibility with Internet Explorer applications and websites, thereby providing Internet Explorer 11 and Edge Legacy support with a transition period from current use to end of life.
see: How to uninstall Edge browser in Windows 10 using PowerShell (Technical Republic)
This is another technology that existed before the 20H2 update, but by adding support for virtualization-based security, it has been further enhanced and become more secure. By adding another layer of security to isolate secure data, this further protects the biometric sensors used in authentication.
Sandboxing technology is not a new feature of Windows 10, but the new features in the latest update provide greater flexibility and extended features for users who use the sandbox to test applications, software or just provide a safe, isolated environment to improve productivity. Keep data and resources containerized, shielding key tasks and system-level processes.
see: Microsoft’s new security chip takes PC protection to a higher level (Technical Republic)
Without some additions to the basic shell, any changes to the operating system are incomplete. Fortunately, no major changes have been made to the operating system, but some well-thought-out aesthetic methods have entered 20H2. It is worth noting that the notifications have been modified to provide better readability, and the Alt + Tab keyboard shortcuts to switch between open windows have been added to switch between tabs opened in Edge Support to achieve user-friendly changes. Unfortunately, for some IT professionals, an unfriendly change is the removal of the “System” setting in the “Control Panel”. Although the “System” panel has been migrated to the “Settings”> “About” page, which is the only change to the “Control Panel” so far, this change is a step forward, as people believe that eventually there will be more The “Control Panel” settings are migrated to the “Settings” application.
Windows virtual desktop
This service runs with Microsoft Azure and allows users to connect securely to a complete desktop environment in the cloud. By allowing management through Microsoft Endpoint Manager, administrators can safely and easily manage cloud-hosted VMs (including post-registration policies and application configuration), thereby providing users with another way to stay productive.
to request modification Contact us at Here or [email protected]