Announcing Public Preview of Zero Trust DNS

Deployment instructions for testing Public Preview of Zero Trust DNS (ZTDNS) on Windows 11 Insider builds.

In today's evolving cybersecurity landscape, traditional perimeter defenses are no longer sufficient . As organizations embrace the Zero Trust security model, ensuring that devices only communica...

Updated Nov 11, 2025

Version 4.0

AditiPatange

Microsoft

Joined March 30, 2023

View Profile

Networking Blog

The Official Blog Site of the Windows Core Networking Team at Microsoft

WiredStan

Copper Contributor

Nov 08, 2025

ZTDNS is a fantastic idea, but the "Ensure all applications and services are configured to use the Windows DNS client" part will probably be a huge pain... Imagine how many apps out there (and not only legacy ones) rely on their own DNS clients. I don't know, maybe it's not a very good idea, but at least during the roll-out period, I'd add a notification mechanism that would let users know that a certain Windows process failed to complete DNS resolving. And that could be an interactive notification, like "click here to add this process to the exclusions".

Blog Post

Announcing Public Preview of Zero Trust DNS

Deployment instructions for testing Public Preview of Zero Trust DNS (ZTDNS) on Windows 11 Insider builds.