defguard icon indicating copy to clipboard operation
defguard copied to clipboard
verified publisher icon DefGuard

block windows 10 from connecting after Windows End of Support?

Open travatine opened this issue 3 months ago • 4 comments

Is your feature request related to a problem? Please describe. Windows 10 is reaching end of support on approximately 14th October 2025. It would be great if defguard could be configured to block windows 10 ( or older versions) from being able to connect to defguard server.

Describe the solution you'd like The windows version of defguard checks the os level , and if configured on defguard server, tells user to upgrade to windows 11 .

Describe alternatives you've considered Windows group policy can enforce restrictions similar to this, but not when the windows systems are not connected to a domain/ intune.

Additional context This would assist greatly in ensuring users with "byod" comply with corporate policy & ensure the endpoints are of a minimum of level.

travatine avatar Sep 19 '25 09:09 travatine

To clarify, this would be optional/ opt-in, the default behaviour would be to allow any client os version

travatine avatar Sep 19 '25 09:09 travatine

Currently we don't plan such functionality.

moubctez avatar Sep 19 '25 12:09 moubctez

Other enterprise VPN offer this function, for example, fortivpn : https://docs.fortinet.com/document/fortigate/7.4.7/administration-guide/32970

travatine avatar Sep 19 '25 13:09 travatine

@moubctez I think we need to think about this feature. Related issue https://github.com/DefGuard/client/issues/584

teon avatar Sep 19 '25 16:09 teon