Latest build of Windows 11 insider preview Build 25314 deployed to Canary Channel Insiders will enable Local Security Authority (LSA) protection by default.

The LSA is critical to protect against theft of sensitive information or login credentials by blocking the injection of untrusted code into the LSA process and blocking process memory flushes.

By words Microsoft, LSA protects user credentials by preventing unsigned drivers and plug-ins from being loaded, ensuring that only authorized users can access critical information required for user authentication and system security.

The new parameter will be enabled only after the audit, which checks the system for incompatibility with LSA protection. If the company finds no incompatibilities, LSA protection will be automatically enabled in Windows 11.

Windows Insiders can check to see if LSA protection is enabled on their systems by going to Update & Security > Windows Security > Device Security > Core Isolation.

Testers can also use Windows event log to check if any LSA plug-ins and drivers have been blocked by opening Event Viewer and looking for Event IDs 3033 and 3063 under Microsoft-Windows-Codeintegrity/Operational.

As part of testing this build, Microsoft is also testing new and modern volume mixer Windows 11, which helps you adjust the volume on a per-app basis and switch between audio devices on the fly.