Forum Discussion
Solved
Credential Guard
Hello, Kindly need to know if i enable credential guard with or without lock from intune to all users it will cause business disruption? Regards,
- Hi ,
To get complete feature of Credential Guard, you have to enable the below :
1) Secure boot
2) Trusted Platform Module (TPM) min. version 1.2 and above
3) Virtualization based security
There wont be any major impacts on the devices when you enable these options, but on a safer side I would recommend you to test with both existing (already registered) and new device.
Let me know how it goes..
Thanks !
Okay thanks
for those:
Secure Platform Security Level
Virtualization Based Protection of Code Integrity ( Require UEFI Memory Attributes Table)
Credential Guard Configuration
Secure Launch Configuration
I can enable them on devices and if some of them doesnt have the requirement what will happen?
for those:
Secure Platform Security Level
Virtualization Based Protection of Code Integrity ( Require UEFI Memory Attributes Table)
Credential Guard Configuration
Secure Launch Configuration
I can enable them on devices and if some of them doesnt have the requirement what will happen?
Virtualization Based Protection of Code Integrity - Kernel mode memory protections are enforced when this option is enabled.
Credential Guard - Make sure this is enabled before the device onboarding is completed or joined to a domain.
I would suggest you to enable this settings on test machine and observe the behaviour before you enable it on the user devices.
Credential Guard - Make sure this is enabled before the device onboarding is completed or joined to a domain.
I would suggest you to enable this settings on test machine and observe the behaviour before you enable it on the user devices.
Hello Krishnakumar_M,
If i enable the credential guard without the virtual based protection it will work?
Regards,
- Hi ,
To get complete feature of Credential Guard, you have to enable the below :
1) Secure boot
2) Trusted Platform Module (TPM) min. version 1.2 and above
3) Virtualization based security
There wont be any major impacts on the devices when you enable these options, but on a safer side I would recommend you to test with both existing (already registered) and new device.
Let me know how it goes..
Thanks !- Hello,
Kindly need to know that if i enable credential guard with UEFI lock how i disable it when needed if im supporting clients remotely?
Regards,