What's new in Windows 11 IoT Enterprise, version 23H2
Overview
Windows 11 IoT Enterprise, version 23H2 is a feature update for Windows 11 IoT Enterprise. Windows 11 IoT Enterprise, version 23H2 includes all updates to Windows 11 IoT Enterprise, version 22H2 plus some new and updated features. This article lists the new and updated features valuable for IoT scenarios.
Windows 11 IoT Enterprise follows the Modern Lifecycle Policy.
| Release | Version | Availability | End of Servicing |
|---|---|---|---|
| Windows 11 IoT Enterprise, version 23H2 | 22631 | 2023-10-31 | 2026-11-10 |
For more information, see Windows 11 IoT Enterprise support lifecycle.
Availability
Windows 11 IoT Enterprise, version 23H2 is available through Windows Update, Windows Server Update Services (including Configuration Manager), and the OEM Software Order Center.
To learn more about the status of the update rollout, known issues, and new information, see Windows release health.
What's new
Accessibility
| Feature | Description |
|---|---|
| Braille displays | The compatibility of braille displays was expanded. Braille displays work seamlessly and reliably across multiple screen readers, improving the end user experience. We also added support for new braille displays and new braille input and output languages in Narrator. For more information, see Accessibility information for IT professionals. |
| Narrator improvements | Scripting functionality was added to Narrator. Narrator includes more natural voices. |
Management
| Feature | Description |
|---|---|
| Declared configuration protocol | Declared configuration protocol is a new protocol for device configuration management that's based on a desired state model and uses OMA-DM SyncML protocol. It allows the server to provide the device with a collection of settings for a specific scenario, and the device to handle the configuration request and maintain its state. For more information, see What is the declared configuration protocol. |
| Control File Explorer Home Recommended section | Recommended section added to File Explorer Home for users signed into Windows with an Azure Active Directory account. CSP:./Device/Vendor/MSFT/Policy/Config/FileExplorer/DisableGraphRecentItems Group Policy: Computer Configuration\Administrative Templates\Windows Components\File Explorer\Turn off files from Office.com in Quick Access View |
| Control File Explorer Home: Recommended section | Recommended section added to File Explorer Home for users signed into Windows with an Azure Active Directory account. CSP:./Device/Vendor/MSFT/Policy/Config/FileExplorer/DisableGraphRecentItems Group Policy: Computer Configuration\Administrative Templates\Windows Components\File Explorer\Turn off files from Office.com in Quick Access View |
| Control Taskbar Search Button | Policies to customize Windows 11 taskbar buttons were added to provide you with more control over the taskbar search experience across your organization. |
| Control Start Menu Recommended section | The Recommended section of the Start Menu displays personalized website recommendations. CSP: ./Device/Vendor/MSFT/Policy/Config/Start/HideRecoPersonalizedSites Group Policy: Computer Configuration\Administrative Templates\Start Menu and Taskbar\Remove Personalized Website Recommendations from the Recommended section in the Start Menu |
| Temporary enterprise feature control | Controls were added to temporarily disable certain features that were introduced during monthly cumulative updates for managed Windows 11, version 22H2 devices. For more information, see Temporary enterprise feature control. |
| Copilot in Windows | Copilot in Windows provides centralized generative AI assistance to your users right from the Windows desktop. For more information, see Manage Copilot in Windows and September 2023 - KB5030310 |
Security
| Feature | Description |
|---|---|
| Passkeys in Windows | Windows provides a native experience for passkey management. You can use the Settings app to view and manage passkeys saved for apps or websites. For more information, see Support for passkeys in Windows. |
| Windows passwordless experience | Windows passwordless experience is a security policy that promotes a user experience without passwords on Microsoft Entra joined devices. When the policy is enabled, certain Windows authentication scenarios don't offer users the option to use a password, helping organizations and preparing users to gradually move away from passwords. For more information, see Windows passwordless experience. |
| Web sign-in for Windows | You can enable a web-based sign-in experience on Microsoft Entra joined devices, unlocking new sign-in options and capabilities. For more information, see Web sign-in for Windows. |
| Federated sign-in | Federated sign-in is a great way to simplify the sign-in process for your users: instead of having to remember a username and password defined in Microsoft Entra ID, they can sign-in using their existing credentials from the IdP. For more information, see Configure federated sign-in for Windows devices. |
| Windows Hello for Business authentication improvement | Peripheral face and fingerprint sensors can be used for Windows Hello for Business authentication on devices where Enhanced Sign-in Security (Secure Biometrics) has been enabled at the factory. Previously this functionality was blocked. For more information, see Common questions about Windows Hello for Business. |
| LAPS native integration | Use Windows Local Administrator Password Solution (LAPS) to regularly rotate and manage local administrator account passwords. For more information, see Local Administrator Password Solution (LAPS) |
User Experience
| Feature | Description |
|---|---|
| Multi-app kiosk | You can configure a multi-app kiosk, which displays a customized start menu of allowed apps. For more information, see Set up a multi-app kiosk on Windows 11 devices. |
| Taskbar: Button Policies | Policies to customize Windows 11 taskbar buttons were added to provide you with more control over the taskbar search experience across your organization. |
| Taskbar: overflow menu | The taskbar offers an entry point to a menu that shows all of your overflowed apps in one spot. |
| Taskbar: Optimize for touch | Taskbar touch optimization is available for devices that can be used as a tablet. Once enabled, the user can switch between a collapsed taskbar, saving screen space, and an expanded taskbar, optimized for touch. The taskbar changes to this optimized version when you disconnect or fold back the keyboard on a 2-in-1 device. To enable or disable this feature on a tablet capable device, go to Settings > Personalization > Taskbar > Taskbar behaviors. See also February 28, 2023 - KB5022913 |
| Copilot in Windows | Copilot in Windows provides centralized generative AI assistance to your users right from the Windows desktop. For more information, see Manage Copilot in Windows and September 2023 - KB5030310 |
| Start Menu: Recommended section | The Recommended section of the Start Menu displays personalized website recommendations. CSP: ./Device/Vendor/MSFT/Policy/Config/Start/HideRecoPersonalizedSites Group Policy: Computer Configuration\Administrative Templates\Start Menu and Taskbar\Remove Personalized Website Recommendations from the Recommended section in the Start Menu |
| File Explorer Tabs | File Explorer includes tabs to help you organize your File Explorer sessions. |
| File Explorer Home: Recommended section | Recommended section added to File Explorer Home for users signed into Windows with an Azure Active Directory account. CSP:./Device/Vendor/MSFT/Policy/Config/FileExplorer/DisableGraphRecentItems Group Policy: Computer Configuration\Administrative Templates\Windows Components\File Explorer\Turn off files from Office.com in Quick Access View |
| Task Manager enhancements | Process filtering, theme settings, and the ability to opt out of efficiency mode notification were added to Task Manager. |
| Windows Ink as input | Windows Ink allows users to handwrite directly onto most editable fields |
| Uninstall Win32 app | Selecting Uninstall for a Win32 app from the right-click menu uses the Installed Apps page in Settings rather than Programs and Features under the Control Panel. See also September 2023 - KB5030310 |
| Microsoft Teams | Chat is being removed from the Microsoft Teams in-box app. Teams is removed from the taskbar for enterprise editions of Windows 11, version 23H2 or later. To identify the appx package: Get-AppxPackage -Name MicrosoftTeams |
| Dev Home | Dev Home is a new app that provides a central location for developers to start building, testing, and deploying Windows apps. For more information, see Dev Home. To identify the appx package: Get-AppxPackage -Name Microsoft.Windows.DevHome See also September 2023 - KB5030310 |
| Dev Drive | Dev Drive is a new form of storage volume available to improve performance for key developer workloads. For more information, see Set up a Dev Drive on Windows 11 and September 2023 - KB5030310. |
| Suggested actions | Copied text in certain formats, such as phone numbers or dates, offer suggested actions such as calling the number or adding the event to your calendar. |
Related articles
- Windows Experience Blog: How to get the Windows 11 2023 Update
- Windows IT Pro Blog: What’s new for IT pros in Windows 11, version 23H2
- What's new in Windows 11, version 23H2
- Windows Consumer: What's new in recent Windows updates
- Windows 11 requirements
- Plan for Windows 11
- Prepare for Windows 11
- Windows release health
- Windows 11 release information