Secure Desktop 11 is a 32-bit application and is 64-bit aware. Secure Desktop 11 has been tested in Windows 10, Windows Server 2016, and Windows Server 2019. Legacy versions of Windows are available by purchasing Secure Desktop 10.
Secure Desktop 11 uses one XML file for configuration data, the same XML file as Secure Desktop 7, 8, and 10. Secure Desktop 11 does not overwrite previous versions of Secure Desktop.
The XML configuration file is automatically backed up. There is also a manual backup and restore. When using Secure Desktop 11, registry data written to by Secure Desktop is automatically backed up for documentation purposes.
Secure Desktop 11 provides several import mechanisms to bring in program data from Start Menu Shortcuts, Startup Group Shortcuts, Registry Startup, Desktop Shortcuts, Program Files, and My Computer.
Icon importing is accomplished very quickly using the Import button in the Icon Configuration. Set any additional details for an imported icon and manually browse for a program to launch.
A program can be re-started if it's been closed by the user. An application can be set to run a Single Instance Only of that application. Applications can be set to Run As Administrator, should they need Administrator access.
Secure Desktop 11 does not automatically start everything that the Explorer Shell starts. Services are always started, regardless of what shell is running. Still, any other program needs to be configured into Secure Desktop's Startup Tab (not visible to end-user). There are several advantages to this when Secure Desktop 11 is running as the shell:
Each icon, group tab, or toolbar button may be individually password protected. A keyboard shortcut can be assigned to bring Secure Desktop 11 to the top of the Z-order, which may also be password protected. Passwords can change dynamically, using the Supervisor feature, to append a calculated number to any Secure Desktop 11 password. This calculation is based on the computer system date in addition to a 5 digit PIN number.
Secure Desktop 11 is a toolbar window that spans the user's screen width and is placed at the top or the bottom. The shell can also be set to be at the top or the bottom of the Z-order. Icon mouse clicks can be set to single or double. The icon background color can be changed. Function keys for the icons can be on or off. The tab bar can be removed if only one tab is used. The status bar can be hidden. Mouse clicks for the Tray Icons can be disabled. System icons (Volume, Network, Power) can be displayed, although it is less secure due to starting unknown programs.
Audit data is stored in XML files in the RSS 2.0 format. Window titles and the current user name are stored in the XML files.
Secure Desktop can disable over 350 different keyboard shortcuts, tuned for the specific operating system in an independent hardware fashion. Please see the sidebar for the full list.
This Secure Desktop feature listens to the clipboard. If the contents change, Secure Desktop clears the clipboard.
View Audit data with sAudit. Show a wallpaper using sWall.
sExplore File Explorer. sCopy File. sNote Viewer. sRun Program. sControl Panel. sEject Device. Logon, Driving Hiding, and Auto Logoff registry settings.
The Window Wizard can manipulate a window or close a program during the Secure Desktop 11 shutdown. Windows are picked by title and/or menu items. Then acted on to hide the window, force it to min or max state, close the window, or disable menu items for windows with the older style.
New features include the ability to disable part of the user interface of the standard File Open, Browse and Save As Dialogs.
The File Open, Browse and Save As Dialogs are like mini versions of File Explorer. Secure Desktop can disable relevant mouse clicks and keyboard shortcuts while the dialog is on top, preventing unwanted file editing or manipulation. A similar feature is provided for the Print Dialog.
New features include the ability to immediately close programs with specific windows classes.
This includes programs used by administrators, the registry editor, Settings in Windows 10, console windows, file explorer, control panel, task manager, and the mobility center.
Most of our customers use Secure Desktop in a mission-critical setting such as manufacturing, the pharmaceutical industry, or for retail point of sale. When using Windows 10 in a mission-critical environment, Microsoft recommends using Windows 10 Enterprise Long-Term Servicing Channel (LTSC) Edition. This LTSC Edition does not support Universal Windows applications. Although Secure Desktop works on any Windows 10 Edition (except Windows 10 S), we recommend that our customers carefully research the various Editions to ensure a stable system. Windows 10 Enterprise LTSC Edition may be the best Edition of Windows 10 for your mission-critical setting.