Now more than ever, organizations are becoming increasingly more concern with man-in-the-middle attacks. The Windows 10 Creators Update introduces Enterprise Certificate Pinning that enables IT Professionals to create their own key-pinning rules for their internal (enterprise) domain names. With this technology, you can create and deploy pinning rules for your internal Active Directory domain names so secure http communicate to internal endpoints are blocked if there is a perceived man-in-the-middle attack.
To learn about the feature and how to deploy it. Check out