Initialize HGS using Admin-trusted attestation
Applies to: Windows Server 2022, Windows Server 2019, Windows Server 2016
Important
Admin-trusted attestation (AD mode) is deprecated beginning with Windows Server 2019. For environments where TPM attestation is not possible, configure host key attestation. Host key attestation provides similar assurance to AD mode and is simpler to set up.
These steps vary depending on whether you are initializing HGS in a new forest or an existing bastion forest:
Feedback
https://aka.ms/ContentUserFeedback.
Coming soon: Throughout 2024 we will be phasing out GitHub Issues as the feedback mechanism for content and replacing it with a new feedback system. For more information see:Submit and view feedback for