Note
Access to this page requires authorization. You can try signing in or changing directories.
Access to this page requires authorization. You can try changing directories.
Assume Windows Server 2019 (or an earlier version) is running with hardware that supports Secured-core servers.
The System Guard Secure Launch functionality isn't supported in Windows Server 2019 and earlier versions. If this feature is enabled either through the Firmware protection switch in the Windows Security app UI or through a manual edit of the corresponding registry key, the startup can fail.
To recover from the startup failure, go to the Unified Extensible Firmware Interface (UEFI) settings and disable Dynamic Root of Trust for Measurement (DRTM).
Contact your hardware manufacturer for instructions on how to disable DRTM. The relevant settings are labeled differently for different silicon platforms.