How to fix error message "This module is blocked from loading into the local security authority

Question

I've been getting an error dialogue popup whenever I turn on my computer or perform a restart. the error message in form of "This module is blocked from loading into the Local Security Authority"

I discovered it was coming from a file called BvLsaEx.dll. But apparently, after a brief drilling, the file was found in the Bitvise SSH server that I use to work. Now, I'm afraid that if I eliminate that process, it might cause harm to the whole software, possibly crashing every tool I'm using. At the same time, I'm not comfortable starting up my system only to be welcomed with such a message.
Please, any guidance will be much appreciated.

Answer 1

Hello,

In recent Windows security updates (especially for Windows 10/11 and Windows Server builds), Microsoft hardened the Local Security Authority (LSA) protection. This means only verified, signed, and trusted modules are permitted to load into the LSA process. When Windows detects a DLL like BvLsaEx.dll that doesn’t meet these newer integrity standards — even if it’s from a legitimate vendor — it blocks it and displays that warning.

In your case, BvLsaEx.dll is a known module from Bitvise SSH Server, which extends authentication support. The error doesn’t necessarily mean it’s malicious — just that it’s not allowed to inject into LSA anymore under current security policies.

Here’s how you can handle it safely:

1. Update Bitvise SSH Server
   • Visit the official Bitvise SSH Server download page and install the latest version.
   • Newer builds have been updated to comply with Microsoft’s LSA Protection (Credential Guard) requirements.
   • After the update, restart your server and confirm whether the message persists.
2. If the latest version is already installed:
   • Open Event Viewer → Windows Logs → System, and look for events from LsaSrv or LSA Protection. Confirm the module being blocked is still BvLsaEx.dll.
   • If confirmed, check Bitvise documentation or contact their support — they may provide a digitally signed replacement DLL or registry-level workaround for compatibility.
3. Do not delete or manually remove the DLL.
   • Removing it might disable authentication-related components of Bitvise and cause your SSH services to fail.
4. Optional: If the system is purely internal and you’re confident in the source, you can temporarily disable “LSA Protection” for testing:
   • Open Windows Security → Device Security → Core Isolation Details → Local Security Authority Protection → turn it off → reboot.
   • Check if the error disappears. (Note: This is not recommended for production environments — only for diagnostic purposes.)

Once you update, this warning should stop appearing on startup. 😊

If this helps resolve your concern, please click “Accept Answer” so others facing the same issue can benefit as well.

Best regards,

VP

Answer 2

Hi jerrie,

Has your issue been solved? If it has, please accept the answer so that others can benefit too. If not, is there anything I can help you with? Please let me know.

Vivian

Answer 3

Assuming you have Bitvise SSH server installed, the solution to this question can be found here: Bitvise SSH Server Usage FAQ. Search for 'Q370'.

Note, depending on the solution you opt for you may still be notified that "This module is blocked from loading into the Local Security Authority". In such instances you can check the checkbox to prevent being notified again.