Hello,
Here are some steps you may take to troubleshoot:
1、Ensure that your CPU supports hardware virtualization (Intel VT-x/AMD-V) and that it is enabled in the BIOS/UEFI settings.
Check that your computer has a TPM (Trusted Platform Module) version 2.0 and it is enabled in BIOS/UEFI, as VBS relies on TPM.
Your system firmware must support UEFI and Secure Boot; make sure Secure Boot is enabled.
2、Open the Group Policy Editor (gpedit.msc) and navigate to:
Computer Configuration -> Administrative Templates -> System -> Device Guard -> Turn On Virtualization Based Security
Ensure the settings are not conflicting, and that you’ve selected the appropriate options for Platform Security Level, Virtualization Based Protection of Code Integrity, and Credential Guard Configuration.
3、Update Windows and chipset and BIOS/UEFI firmware, from the manufacturer’s website to the latest versions that support these security features.
4、Recheck Registry Settings:
Open regedit and navigate to HKEY_LOCAL_MACHINE\System\CurrentControlSet\Control\DeviceGuard and also HKEY_LOCAL_MACHINE\System\CurrentControlSet\Control\Lsa.
Verify that the settings related to VBS are correctly configured as per Microsoft’s documentation.
5、Open PowerShell as an administrator and run the following command to check the status of Device Guard, including VBS:
Get-CimInstance –ClassName Win32_DeviceGuard –Namespace root\Microsoft\Windows\DeviceGuard
Best Regards,
Hania Lian
============================================
If the Answer is helpful, please click "Accept Answer" and upvote it.