Build 22621 "Standard hardware security not supported" In Device Security


Recommended Posts

Yesterday I noticed that Core Isolation and and core security information are missing from Device security.

 

Updated 5 PCs, all 5 PCs are fully windows 11 compatible with TPM2.0, Secure boot and everything... and all 5 that I upgraded so far, have the same exact issue.

Windows Security says I don't have standard hardware security, while MS info shows that its running.

 

I found similar issues in feedback hub, but those complaints where from 22200 (21H2) build from long time ago, there are few people complaining about the new 22621 too.

 

 

image.png.fd69916ed5d0c4623913bad1de539445.png

 

 

TPM info

image.png.6b99a7d54b55023fbba19caf65f2ddf8.png

 

 

MSinfo shows the security tools are running 

image.thumb.png.4f5d48172003e23287211715b98d697c.png

  On 27/05/2022 at 14:01, adrynalyne said:

Core Isolation is dependent on hardware VT, not TPM. Check the bios settings. 

Expand  

 

Hardware virtualization is running...

 

image.thumb.png.c536ab6381ab40658ee7e2d9abf1d414.png

 

and hardware virtualization on or not.. the device security tab in windows security should show security processor aka the TPM.

Windows 11 21H2 for comparison...

image.png.72e575cc3a10a68892f438cccb555edb.png

 

in Windows 11 22H2, it shows neither.

  On 27/05/2022 at 14:07, nekrosoft13 said:

 

Hardware virtualization is running...

 

image.thumb.png.c536ab6381ab40658ee7e2d9abf1d414.png

 

and hardware virtualization on or not.. the device security tab in windows security should show security processor aka the TPM.

Windows 11 21H2 for comparison...

image.png.72e575cc3a10a68892f438cccb555edb.png

 

in Windows 11 22H2, it shows neither.

Expand  

Do you have Hypervisor Platform installed? I’m going off memory; I’m not at my computer yet.  

So... what you're trying to get back, is what I have pictured?

 

Possible that you, like the others ran into an interesting bug as it were.. where every app you use to check shows you're running all the necessary requirements and Windows just isn't cooperating with it. Wouldn't be the first time. 

 

Funny enough.. when I recently upgraded my video card, or any time I upgrade hardware... I run Hardware-Info or HWInfo64 to double check specs and features. It showed me, that somehow.. AMD-V and Secure Boot was in the "red", in other words.. they are there but not enabled. Apparently got turned off when I updated the BIOS... and Windows never even blinked. Nothing reminded me that the security features for 11 were turned off. Made zero sense.

 

So... I go by third party apps to double check system protection items as well as making sure, like you did.. to double check with other machines that run similar hardware.

 

 

Untitled.jpg

all u have to do is have 1 unsuported feature and it will say that

 

Standard hardware security not supported

This means that your device does not meet at least one of the requirements of standard hardware security.

 

my pc is also windows 11 compat and that also says the same thing

  On 27/05/2022 at 15:11, DKAngel said:

all u have to do is have 1 unsuported feature and it will say that

 

Standard hardware security not supported

This means that your device does not meet at least one of the requirements of standard hardware security.

 

my pc is also windows 11 compat and that also says the same thing

Expand  

 

it was fine in 21H2. all 5 PCs that I upgraded where fine in 21H2.

 

Now all 5 in 22H2 are not.

 

 

according to Microsoft https://support.microsoft.com/en-us/windows/device-protection-in-windows-security-afa11526-de57-b1c5-599f-3a4c6a61c5e2#hardwarescore

 

Your device meets the requirements for standard hardware security

This means your device supports memory integrity and core isolation and also has:

TPM 2.0 (also referred to as your security processor)        CHECK

Secure boot enabled                                                                CHECK

DEP                                                                                              CHECK

UEFI MAT                                                                                     CHECK

 

I rolled back to 22000, and everything is restored, same PC, not only do I meet the standard hardware security, I meet the enhanced hardware security

 

image.thumb.png.4d49b7619262c4e58528169fb58b9812.png

 

There is definitely  a bug in 22621 (final) 22H2 build.

 

 

  On 27/05/2022 at 16:15, slaughterhus said:

there is a bug report about this on feedback hub

Expand  

I saw it... but that bug report was from 10+ months ago for 22000 build in early days...

Microsoft responded that it should be fixed in 22000.100, I guess they broke the same thing again.

 

Now few people added comments that same is happening on 22621

  • Like 2

Sounds like a bug related to something in your hardware set up.. seeing as others, like myself, aren't having that issue with 22621.

 

Fire up that report, add it to the MS list... let's see if they fix it here soon enough. I mean, we still have what, five months before it's released to the public?

  • 2 weeks later...
  On 08/06/2022 at 02:09, ahmedshujah123 said:

Same problem bro. Will it get fixed or should I rollback too and can I roll back without any data loss? Thank you for bringing this up couldn't find anything about it anywhere.

Expand  

If you roll back, you won't loose any files but any programs that you installed or upgraded since the install of 22621 will probably be gone.

  On 10/06/2022 at 12:53, itomirai said:

It seemed that there are two problems with Windows Security on 22621 for anyone "upgrading", device security not supported and the mising of App and Browser Control section, hope this will be fixed soon tbh

Expand  

just the windows security section of settings got screwed up, according to msinfo all the security options were still running, you just lost info and control of it.

Hello, I am new here, I have come to this post looking for information about this problem, my laptop meets all the requirements, including enhanced security, and I also have this problem after installing 22h2, I have already sent a report to Microsoft, I It happens exactly the same as nekrosoft13, greetings from Spain.

Captura de pantalla 2022-06-12 000234.png

  On 10/06/2022 at 15:21, nekrosoft13 said:

If you roll back, you won't loose any files but any programs that you installed or upgraded since the install of 22621 will probably be gone.

just the windows security section of settings got screwed up, according to msinfo all the security options were still running, you just lost info and control of it

Expand  

Thank you so much bro. I'll just let it run they'll probably fix it when the stable version drops.

  On 11/06/2022 at 22:05, RHP said:

Hello, I am new here, I have come to this post looking for information about this problem, my laptop meets all the requirements, including enhanced security, and I also have this problem after installing 22h2, I have already sent a report to Microsoft, I It happens exactly the same as nekrosoft13, greetings from Spain.

Captura de pantalla 2022-06-12 000234.png

Expand  

We have posted the news so Microsoft should be aware of the issue by now. I believe they will re-fix the issue soon. 🙂

so it seems no update for 22621 today?

 

nvm, they did release one https://msbuilds.rg-adguard.net/GetInfo?id=1203f71f-b8a9-4bf2-a4ee-390f5cb8b207

 

Any idea if this fixes this misreporting?

Edited by nekrosoft13
  On 15/06/2022 at 00:04, itomirai said:

I'm on 22621.160 (Beta) and the problem is still there for sure. There is also 22621.105 for Release Preview so it would be nice if someone check that version.

unknown.png

Expand  

I'm on the release preview. The problem persists for now. It's not fixed yet anywhere that means bummer.

  • Like 1

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
  • Recently Browsing   0 members

    • No registered users viewing this page.
  • Posts

    • The viewing figures in season 2 plummeted after 1 of the main characters died in season 2 episode 1. I think hbo is regretting listening to him so they got rid of him.
    • Google Workspace now lets you use custom AI Gems directly in Docs, Gmail, and more by Paul Hill Google Workspace users can now access Gems from the side panel of Google Docs, Slides, Sheets, Drive, and Gmail. Previously, Gems could only be accessed from the Gemini app directly. For anyone not familiar with Gems, they’re a more advanced feature in Gemini where you can make your own chatbots, powered by Gemini, with custom instructions. If you’re interested in learning more about them, check out my editorial from April, where I argue custom AI bots are the best thing about generative AI and how to create your own bots. The decision to make Gems available across Google Workspace has the potential to significantly speed up people’s workflows if they’ve started using Gems already. If you’ve never made a Gem, Google has several pre-made ones including a Brainstormer, Writing editor, Coding partner, and Learning guide. Google Workspace users can leverage Gems in an almost infinite number of ways. For example, imagine if you’re a teacher in whatever country and you have to make lesson plans for your class that must follow a certain structure, you can use natural language to program a gem to expect certain inputs from you (such as grade, subject, topic etc) and get an output that follows the required guidelines. If you’re a journalist, you could create a gem to quickly strip out the key bits of news from a press release or if you’re a student you can create a bot to break down complicated subjects into something easier to understand. The possibilities are nearly endless and now the Gems you make are even more accessible. Google mentioned that Gems can be accessed via the side panel of all supported Workspace applications and can be used across Workspace capabilities including @ mentioning, accessing files and folders, and more. If you need to create a Gem, you’ll still need to do that on the Gemini website. To get started with Gemini in Google Workspace, just click the “Ask Gemini” (spark button) in the top-right corner. Google said that the Gems feature rollout is an extended rollout which means it might take more than 15 days to get the feature. Admins out there do not need to do anything and there are no specific admin controls in the side panel for Gems or Gemini.
    • Microsoft changes hit Teams Android devices: Disable Entra ID policy to restore sign-in by Paul Hill As part of its Secure Future Initiative, Microsoft has deployed a new Entra ID Conditional Access policy targeting Device Code Flow authentication. Unfortunately, it has led some Microsoft Teams-certified Android devices (Teams Rooms on Android, Teams Phones, Teams Panels, and Teams Displays) to be logged out and signing back in can be a bit fiddly so guidance has been shared. Microsoft said that it shared previous guidance which explained how to exclude Android devices, but it seems some admins didn’t catch this as many devices were not excluded and have been signed out. It’s important to realize that this is not a bug, it’s a security feature. However, the move could have been better communicated. To sign the devices back in, you can do so manually. However, if the devices are remote you’ll need to follow these steps: By disabling the “Block device code flow” policy in step 1, it will change everything back to how it was before Microsoft decided to enable it to boost security. This will allow you to get those affected Android devices logged back in again. Also pay special attention to step 2 which says you might need to reboot your device three times. Once you have your Android devices logged in again, it’s probably a good idea to follow Microsoft’s previous guidance and add these to an exclusion list before re-enabling the “Block device code flow” policy. Microsoft recommends only allowing DCF where it’s absolutely necessary and then blocking it elsewhere. The best thing to do is to add your Teams Android device to the exclusion list - this will allow these devices to operate normally, while boosting overall security. If you’re an admin and have been impacted by this, be sure to take proactive measures to avoid disruptions in the future.
    • Can someone help me with writing a batchfile using notepad to tell me to start a vpn plz? I would greatly appreciate any help  
  • Recent Achievements

    • Reacting Well
      SteveJaye earned a badge
      Reacting Well
    • One Month Later
      MadMung0 earned a badge
      One Month Later
    • One Month Later
      Uranus_enjoyer earned a badge
      One Month Later
    • Week One Done
      Philsl earned a badge
      Week One Done
    • Week One Done
      Jaclidio hoy earned a badge
      Week One Done
  • Popular Contributors

    1. 1
      +primortal
      436
    2. 2
      ATLien_0
      158
    3. 3
      +FloatingFatMan
      147
    4. 4
      Nick H.
      65
    5. 5
      +thexfile
      62
  • Tell a friend

    Love Neowin? Tell a friend!