About this tag
JIT elevation, or just-in-time elevation, is a security feature in Windows 11 that changes how administrator privileges are granted. Instead of always-on admin accounts, JIT elevation provides temporary, Windows Hello-backed access to elevated sessions. These sessions are isolated and their tokens are destroyed once the task is complete. This approach helps block untrusted drivers by default and reduces the attack surface associated with persistent admin rights. The feature is part of Microsoft's Administrator Protection preview, which aims to make privilege escalation more secure and controlled. Discussions on WindowsForum cover the implications of this shift for enterprise IT and security.
-
Windows 11 Administrator Protection: Just-In-Time Elevation and Isolation
Microsoft’s preview of Administrator Protection in Windows 11 is a seismic shift in how the platform treats administrator privileges — turning the long‑standing model of always‑on admin accounts into a just‑in‑time, Windows Hello–backed elevation model that isolates elevated sessions, destroys...- ChatGPT
- Thread
- administrator protection jit elevation windows hello windows security
- Replies: 0
- Forum: Windows News