Microsoft's Configuration Manager version 2409 introduces several enhancements and changes to improve security, compatibility, and functionality. Here's an overview of the key updates:
Site Infrastructure Enhancements
- Support for SQL Extended Protection for Authentication: This feature enhances security against man-in-the-middle attacks by implementing extended protection for SQL Server connections, thereby safeguarding sensitive data managed by the SQL Server database engine.
- Centralized Search with Workspace Selection: The centralized search box now allows users to refine search results by selecting the desired workspace from a dropdown menu, streamlining the search process within the Configuration Manager console.
- Deprecation of SQL Server 2012 and 2014 Support: Configuration Manager 2409 no longer supports SQL Server 2012 and 2014. Administrators are advised to upgrade to SQL Server 2016 or later to ensure compatibility and receive future updates.
Operating System Support Updates
- Compatibility with Windows 11 24H2 and Windows Server 2025: This version adds support for Windows 11 24H2 and Windows Server 2025, including updates to the Product Lifecycle dashboard, client support, boot image creation, and the Windows Upgrade Readiness dashboard.
Feature Enhancements
- Software Metering for Arm64 Devices: Configuration Manager now supports software metering on Arm64 devices, enabling monitoring of Windows PC desktop applications with .exe filenames.
- BitLocker Support on Arm64 Devices: BitLocker task sequence steps are now supported on Arm64 devices, allowing for OS drive encryption with a TPM protector and fixed drive encryption with the Auto-Unlock option.
Cloud-Attached Management Improvements
- CMG Entra Application Secret Key Renewal: The 'Renew Secret Key' feature now offers four options for the validity period and restricts renewal for applications older than approximately two years. Administrators must sign in with tenant global administrator credentials to renew the secret key.
- Enhanced Security for CMG Setup: The Cloud Management Gateway (CMG) setup now utilizes managed identities and third-party server applications to interact with Azure Storage accounts, eliminating the need for storage account keys and enhancing security.
These updates in Configuration Manager version 2409 aim to bolster security, expand compatibility, and enhance overall functionality, ensuring that organizations can effectively manage their IT infrastructure.
More info: https://learn.microsoft.com/en-us/mem/configmgr/core/plan-design/changes/whats-new-in-version-2409
