System Center 2025 brings updates like TLS 1.3 encryption, UEFI-based VM defaults, and enhanced hybrid cloud management with Azure Arc.
Microsoft System Center 2025, the company´s suite to manage IT infrastructure, is now generally available alongside Windows Server 2025. It introduces a host of new features designed to streamline IT management and strengthen security measures.
As the latest update in Microsoft’s Long-Term Servicing Channel (LTSC), the release is positioned to support organizations in managing diverse environments and hybrid cloud structures with greater efficiency.
From System Center 2019 to System Center 2022 and now 2025, each version has evolved to address the growing needs of IT environments. The 2019 release laid the groundwork for hybrid cloud management, while 2022 expanded Linux compatibility and improved backup features. The current 2025 update brings substantial security enhancements and comprehensive support for managing diverse environments, from on-premises to cloud-integrated systems.
Enhanced Security Standards
Microsoft System Center 2025 brings significant improvements in data security with the integration of TLS 1.3, a modern encryption protocol that enhances the safety of data transfers and ensures secure communication between system components.
Moving away from older authentication methods like NTLM and Credential Security Support Provider (CredSSP), the use of TLS 1.3 reflects Microsoft’s focus on updated, encrypted connections. This change bolsters the platform’s reliability for critical data operations.
Data Protection with Azure Key Vault
A noteworthy update in Data Protection Manager 2025 includes the option to store passphrases securely through Azure Key Vault, a cloud-based service designed for managing and safeguarding cryptographic keys and sensitive data. This enhancement allows IT teams to leverage Azure’s robust cloud infrastructure for improved security in data protection workflows.
Updated Support for OLE DB and System Center Orchestrator
Both DPM and System Center Orchestrator 2025 now support OLE DB version 19, addressing previously identified security flaws such as the CVE-2024-37334 RCE vulnerability. RCE, or remote code execution, is a type of vulnerability that could potentially allow attackers to execute unauthorized code on a system, highlighting the importance of the updated OLE DB support. Additionally, SCO now integrates with .NET 8, aligning with the latest long-term support releases for stable and secure software operation.
Broader Infrastructure Management and Linux Compatibility
System Center 2025 continues to expand its capabilities for IT infrastructure management, featuring support for Azure Stack HCI 23H2, a hyper-converged solution that merges on-premises data center functions with cloud services. This ensures that administrators can manage resources flexibly across varied environments. Compatibility with an array of Linux distributions—including Ubuntu 24.04, RHEL 9, and Debian 13—positions this release as a versatile option for heterogeneous IT setups.
One major improvement is that Virtual Machine Manager 2025 defaults new VMs to Generation 2, which utilize Unified Extensible Firmware Interface (UEFI) rather than BIOS, providing better security and quicker boot times. UEFI’s structure allows for more advanced firmware interactions and enhanced system security, addressing limitations found in older Generation 1 VMs.
Automation and Self-Service Management with Azure Arc
Enhanced automation features and integration with Azure Arc empower organizations to control various VM tasks, such as power cycling, scaling, and resizing, while enforcing access restrictions through Azure Role-Based Access Control (RBAC). This addition not only simplifies workflow management but also allows teams to execute operations with custom permissions. The Azure Arc support serves as a bridge for hybrid management, connecting on-premises resources with cloud capabilities for cohesive oversight (Microsoft Tech Community).
The new DPM version supports SharePoint Subscription Edition and introduces selective disk exclusion for Hyper-V backups, giving IT administrators the flexibility to manage data protection processes more precisely. These enhancements enable better planning for data recovery and reduce resource strain during backup operations.
Phasing Out Older Features
In line with modernization efforts, Microsoft has discontinued the Azure Profiles feature in System Center Virtual Machine Manager (SCVMM) and System Center Service Provider Foundation (SPF), shifting their functions to Azure Arc-enabled SCVMM. This move is aimed at simplifying feature sets and aligning operations under more current management tools.