What’s new in 2203
This release includes the following new features and addresses issues to improve the user experience:
Allow users to self-elevate certain applications
This release introduces self-elevation for the privilege elevation feature. With self-elevation, you can automate privilege elevation for certain users without the need to provide the exact executables beforehand. Those users can request self-elevation for any applicable file simply by right-clicking the file and then selecting Run with administrator privileges in the context menu. After that, a prompt appears, requesting that they provide a reason for the elevation. The reason is for auditing purposes. If the criteria are met, the elevation is applied, and the files run successfully with administrator privileges. In addition, self-elevation gives you flexibility to choose the best solution for your needs. You can create allow lists for files you permit users to self-elevate or block lists for files you want to prevent users from self-elevating. For more information, see Self-elevation.
Configure user processes as triggers for external tasks
This release includes enhancements to the external task feature. The feature now provides you with two additional options to control when to run external tasks:
- Run when processes start. Controls whether to run the external task when specified processes start.
- Run when processes end. Controls whether to run the external task when specified processes end.
Using the two options, you can define external tasks to supply resources only when certain processes are running and to revoke those resources when the processes end. Using processes as triggers for external tasks lets you manage your user environments more precisely compared with processing external tasks on logon or logoff.
For more information, see External Tasks.
Profile container insights
Starting with this release, you can monitor profile containers for Profile Management and FSLogix. The feature provides insights into the basic usage data of the profile containers, the status of sessions using the profile containers, the issues detected, and more. Use the feature to stay on top of space usage for profile containers and to identify problems that prevent profile containers from working. For more information, see Profile Container Insights.
The administration console user interface has changed:
In Security, there is a new node, Self-elevation. The node contains a tab that lets you automate privilege elevation for users.
In Monitoring, there is a new node, Profile Container Insights. The node contains two tabs. The Summary tab includes two pie charts, providing a summary that shows the status of profile containers. The Profile Container Status tab displays a list of status records for profile containers.