Question

Which technology does Credential Guard use to block access to the tickets stored within the LSA?

A) Virtualization-based Security (VBS)
B) Remote Desktop Protocol (RDP)
C) Active Directory Federation Services (AD FS)
D) Hypertext Transfer Protocol Secure (HTTPS)

Answer 1

Credential Guard uses Virtualization-based Security (VBS) to block access to the tickets stored within the LSA.

Step-by-step explanation:

The technology used by Credential Guard to block access to the tickets stored within the LSA is Virtualization-based Security (VBS).

VBS is a feature introduced in Windows 10 that provides enhanced security by isolating certain processes and data in a virtualized environment. With Credential Guard, the tickets stored within the Local Security Authority (LSA) process are protected using virtualization-based security, preventing unauthorized access and safeguarding sensitive information.

By leveraging hardware virtualization features, such as Intel VT-x or AMD-V, Credential Guard creates a secure enclave, called the Virtual Trust Level (VTL), to store and protect sensitive information, such as Kerberos tickets.