Windows Server vNext Insider Preview build 29531 introduces ReFS boot, allowing you to install and start Windows Server from a Resilient File System (ReFS)-formatted boot volume for the first time. This feature brings integrity-level metadata checksums, online corruption repair, block cloning, and 35-petabyte volume scalability to the OS boot partition — capabilities that NTFS cannot match. ReFS boot requires UEFI firmware and a minimum of 2 GB for the WinRE partition. Learn how to enable Windows ReFS boot during Windows Server installation.

Source

Microsoft released version 2602 of the Security Baseline for Windows Server 2025, approximately eight months after the previous version 2506. The update adds 10 new Group Policy settings and removes one, focusing on NTLM auditing, printer security, and authentication hardening. Most of the new policies were already included in the Windows 11 Security Baselines since 2022 and are now being backported to the server edition. The baseline is available as part of the Microsoft Security Compliance Toolkit 1.0.

Source

DNS over HTTPS (DoH) is a protocol that encrypts Domain Name System (DNS) queries and transmits them over HTTPS. This security enhancement prevents eavesdropping and manipulation of DNS traffic, addressing fundamental vulnerabilities in traditional DNS infrastructure that operates in plaintext. The DoH architecture consists of two components: the client, which initiates encrypted DNS queries, and the resolver (or server), which processes them. Windows has supported DoH on the client side since Windows 11. While Windows 10 includes the underlying client support in later builds (Insider Preview 19628 and later), it does not expose this functionality in the Settings app and requires manual Registry configuration, making it effectively unsupported for most users.

Source

Microsoft announced a comprehensive roadmap to phase out the legacy NTLM (New Technology LAN Manager) authentication protocol in favor of more secure Kerberos-based alternatives. The company plans to disable NTLM by default in the next major Windows Server release and associated Windows client versions, marking a significant step toward enhancing Windows security after more than three decades of NTLM usage.

Source

Organizations running modern data centers increasingly need flexible storage architectures that balance performance, resiliency, and investment protection. With Windows Server 2022 and Windows Server 2025, Microsoft now enables true S2D and SAN coexistence—allowing Storage Spaces Direct (S2D) to operate alongside traditional SAN storage within the same failover clustering environment. This mixed-storage approach lets IT teams optimize workloads such as Hyper-V, SQL Server, and file services by combining high-performance local storage with existing enterprise SAN infrastructure, all while maintaining full cluster support and operational consistency.

Source

Microsoft a révélé un bug pouvant entraîner des échecs de connexion RemoteApp sur Windows 11 et Windows Server 2025, avec les mises à jour de décembre 2025.

Le post Windows 11 : les mises à jour de décembre 2025 cassent les connexions RemoteApp a été publié sur IT-Connect.

Microsoft has released native Non-Volatile Memory Express (NVMe) support for Windows Server 2025, delivering performance improvements of up to 80 percent in IOPS and delivering a 45 percent savings in CPU cycles per I/O compared to Windows Server 2022.

Source

This guide walks you through the process of installing the WSUS (Windows Server Update Services) role and migrating your configuration and data to Windows Server 2025. You'll perform a clean setup to ensure a stable, efficient patch management environment on the latest Windows Server release. Follow these steps to safely move WSUS settings, groups, and approvals, and prepare your system for long-term support.

Source