Disable Device Guard on Windows 11 24 H 2
Solvedkaneagle Posted messages 86263 Registration date Status Modérateur Last intervention -
Hello everyone.
I have a question to ask you.
I reformatted my PC a few days ago due to a file problem.
And I noticed that when I install my antivirus for example.
I get a message on my screen saying
So I clicked on learn more.
I looked into gpedit as I read on the internet.
Then computer configuration.
Next administrative templates.
Then System.
And there, I should normally find the Local Group Policy Editor folder.
Or the Device Guard folder.
But I don't have those two folders.
If anyone has the solution, I'm all ears.
Thank you in advance.
Have a nice afternoon everyone.
Best regards, Cédric
4 réponses
Hello,
when I reinstall the antivirus, the message appears again. Simple question: Why install an antivirus when Windows Defender is sufficient?
Hello
If your version of Windows 10 is a Home edition, that's normal. Without mentioning adding the Group Policy Editor to your version, I still see 2 ways to disable integrity check:
- Graphical method
- press Windows, start typing Secu..
- click on Windows Security
- Device security
- Core isolation details
- Turn off "Memory Integrity"
- Restart
- Non-graphical method
- press Windows, start typing Regedit...
- click on Registry Editor
- First, export it: "File", export
- Then we play.
- HKEY_LOCAL_MACHINE
- SYSTEM
- CurrentControlSet
- Control
- DeviceGuard
- Control
- CurrentControlSet
- SYSTEM
- Click on DeviceGuard, this will show on the right the registry keys associated with the DeviceGuard branch
- Add a DWORD key
- Right-click on the right
- New: DWORD 32-bit value
- EnableVirtualizationBasedSecurity to 0
- Restart.
- If it doesn't work with this method, add one of these 2 keys in the same place:
- RequirePlatformSecurityFeatures to 0
- Disables security features (like TPM or SecureBoot) that are required for the integrity check. Indirectly unlocks it.
- LsaCfgFlags to 0
- Disables Credential Guard and thus indirectly the integrity check.
- RequirePlatformSecurityFeatures to 0
- Final check in both cases
- Check the status of the integrity check after restarting with the following Powershell command:
if ((Get-CimInstance -Namespace "Root\Microsoft\Windows\DeviceGuard" -ClassName Win32_DeviceGuard).CodeIntegrityPolicyEnforcementStatus -eq 0) { "Memory integrity disabled" } else { "Memory integrity enabled" } Keep me posted!
The MAANGs don’t have oil but they have data!
Can you feel my Big Data?
Sacrifice a few freedoms for more security and you lose them ALL.
ALL YOUR DATABASE ARE BELONG TO US
Hello
Antivirus can sometimes write to forbidden areas of the operating system.
To try,
Open the registry editor and go to HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\DeviceGuard.
Change the value of EnableVirtualizationBasedSecurity to 0 to disable Device Guard.
However, on one hand, there was formatting and installation 24h2 before the antivirus showed up. The hardware is blocking with this recent protection.
And on the other hand, 24h2 takes up more space in certain system partitions.
Sometimes you cannot install 24h2 because of antivirus, and sometimes you cannot install antivirus because of 24h2.
And is Microsoft Defender impossible to get to work? Yes, the very recent one, Device Guard is indeed part of it along with everything in "security" in Windows, it's all connected.
If there is still a trace of antivirus on the PC, of course, Defender will not activate by itself.
Hello,
Yes, it must indeed be my antivirus that is causing this problem.
Because I installed software on my PC to watch videos like VLC and I didn't get that message.
And when I reinstall the antivirus, the message comes back again.
I don't know what to do to disable it easily.
I wish you a good evening.
Cédric
I wish you a good evening.
See you soon Cédric.