Microsoft has introduced a new security feature, Administrator Protection, in Windows 11 Insider Preview Build 27774 for the Canary Channel. This feature enhances system security by enforcing the Principle of Least Privilege (PoLP), making admin accounts operate with standard permissions by default. Elevated privileges are granted on a just-in-time (JIT) basis, requiring explicit authentication via Windows Hello, including biometric or PIN verification. Key features include temporary elevated permissions, color-coded elevation prompts for clearer warnings, and the ability for users to enable the protection directly from Windows Security settings, eliminating IT intervention. The feature aims to reduce risks from malware and attackers targeting admin accounts.

‍