Policy mismatch (Threat Defense for Active Directory) showing in IDC when applying TDAD policy
search cancel

Policy mismatch (Threat Defense for Active Directory) showing in IDC when applying TDAD policy

book

Article ID: 248889

calendar_today

Updated On:

Products

Endpoint Threat Defense for Active Directory

Issue/Introduction

Policy mismatch (Threat Defense for Active Directory) shows for some clients while other clients belonging to the same group can apply the policy with no issue.

Environment

Windows with Hypervisor enforced Code Integrity  enable.

Cause

Hypervisor enforced Code Integrity is enable and not supported for TDAD.

https://docs.microsoft.com/en-us/windows/security/threat-protection/device-guard/enable-virtualization-based-protection-of-code-integrity

 

Resolution

TDAD does not support Hypervisor enforced Code Integrity. 

Additional Information

CRE-11146 

Powered by Wolken Software