Microsoft has unveiled a new build, version 26311, as part of the Windows Server Insider Program for Windows Server 2025. While this latest iteration does not introduce any new functionalities, it continues to build on the foundation laid by its predecessor, build 26304.
WDAC and Security Baseline Preview
The absence of new features in build 26311 has left some questions regarding its purpose. However, it is worth noting that the previous build made significant strides with the introduction of Windows Defender Application Control for Business (WDAC). This innovative feature enhances security for Windows Server 2025 by establishing a controlled environment where only authorized software can operate, effectively minimizing the attack surface.
WDAC operates as a software-based security layer, allowing administrators to apply a standard policy through PowerShell cmdlets. This integration is supported by Microsoft’s OSconfig security configuration platform, providing a streamlined approach to server security management.
Additionally, build 26311 includes the Windows Server 2025 Security Baseline Preview. This feature empowers administrators to configure security settings based on a recommended security posture, offering a tailored security baseline derived from over 350 preconfigured Windows security settings. A default policy is also available for installation via OSconfig and PowerShell cmdlets, simplifying the implementation process for server administrators.
The latest build is now accessible for download through various channels, although it may not be available in all regions. The build’s lifecycle extends until September 15, 2025, providing users with ample time to explore its capabilities.
Also read: Microsoft ends Windows Server Update Services
