This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(121.6, 30%, 21%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ERR%3C/text%3E%3C/svg%3E)
Hi,
I have Memory Integrity and Microsoft Defender Credential Guard enabled on my Windows 11, but I am unable to set the System Guard enabled even having a compatible hardware Tpm 2.0. So far, I have a few clues where the problem might lie, and I am hoping someone can assist me with that. So here are a few audited events:
Kernel Boot:
- System
[ Name] Microsoft-Windows-Kernel-Boot
- Provider
[ Guid] {15ca44ff-4d7a-4baa-bba5-0998955e531e} EventID 220 Version 0 Level 4 Task 76 Opcode 25 Keywords 0x2000000000000000[ SystemTime] 2022-04-10T12:43:35.1046864Z EventRecordID 322 Correlation
- TimeCreated
[ ProcessID] 4
- Execution
[ ThreadID] 8 Channel Microsoft-Windows-Kernel-Boot/Operational Computer CompName[ UserID] S-1-5-18
- Security
- EventData TxtStatus 3
Device Guard:
Device Guard successfully processed the Group Policy: Virtualization Based Security = Enabled, Secure Boot = On, DMA Protection = On, Virtualization Based Code Integrity = Enabled, Credential Guard = Enabled, Reboot required = No, Status = 0x0.
Here clearly shows that DMA Protection is on, but when I open msinfo32, here's what I get:
Any help is greatly appreciated,
Thanks
According to this thread: https://groups.google.com/g/openxt/c/GT4hqy1pZsU?pli=1 , it looks like my CPU doesn't support "strong assurances TXT"
I don't think there is any workaround to this problem, but I will wait for a reply anyways, since this might be unrelated.
Thanks