Go to HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\DeviceGuard.Īdd a new DWORD value named EnableVirtualizationBasedSecurity and set its value to 0.Īdd another new DWORD value named RequirePlatformSecurityFeatures and set that to 0. You can turn it off with registry changes, a GPO, Intune, or whatever you're using to manage your systems (if anything). So for now the "throw the baby out with the bathwater" workaround is to turn off Credential Guard altogether. As much as I hate "throw the baby out with the bathwater" solutions (examples being disabling the Windows Firewall whenever there's a firewall issue instead of taking the time to find the right ports and allow them through it), right now that's about all we have until we have a better understanding of Credential Guard and whether exceptions or a whitelist can be made for certain applications (like RDP).
0 kommentar(er)
