How to Disable Credential Guard from Windows 10

Last Updated on 9 de Janeiro, 2021 by Vítor Fernandes

Credential Guard is a virtualization-based isolation technology for LSASS that prevents attackers from stealing credentials that could be used to bypass hash attacks. Credential Guard was introduced with Microsoft’s Windows 10 operating system.


Device Guard or Credential Guard are incompatible with VMware Workstation, starting from version 1607! You must disable this security system feature to use virtualize environment under Windows system.

Disable Credential Guard

reg add HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\DeviceGuard\Scenarios\HypervisorEnforcedCodeIntegrity /v Enabled /t REG_DWORD /d 0 & bcdedit /set hypervisorlaunchtype off

Enable Credential Guard (default setting)

reg delete HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\DeviceGuard\Scenarios /f & bcdedit /set hypervisorlaunchtype auto