Have you got the error Local Security Authority Protection is off. Your device may be vulnerable in Windows 11 although you enable this feature? Fortunately, you are in the correct place and MiniTool will show you how to easily address this issue in 4 ways.
Local Security Authority Protection Is off Windows 11
Local Security Authority protection is a feature in Windows 11 and 10 that is very important in protecting user credentials since it can block unsigned drivers and plugins from access. Local Security Authority (LSA) protection helps verify users’ logon and password changes and create access tokens related to Microsoft accounts and Azure, etc. To keep the PC safe, it should be enabled.
What is Local Security Policy? How to open it in the latest Windows 11? This essay offers six workable and easy solutions.
However, some users have reported that the LSA feature runs into a problem. Although this feature is enabled (the toggle is on), a warning saying Local Security Authority Protection is off. Your device may be vulnerable appears. Perhaps you are also trapped in the same situation.
You may try to disable it, restart the machine, and then re-enable this feature but you are still notified that Local Security Authority Protection is off under Core isolation in Windows Security.
This issue is widespread. According to reports, this issue happens in Windows 11 KB5007651 update which is a mandatory security update coming with Windows 11 March 2023 Update. In addition to the update problem, some other reasons like corrupted system files, Windows Policy issues, etc. could also lead to the error.
Well then, how could you fix the Local Security Authority protection is off bug? Move to the next part to find several solutions.
How to Fix Windows 11 Local Security Authority Protection Is off
Edit Windows Registry
If you experience Local Security Authority protection not working in Windows 11, try to change the value of RunAsPPL and RunAsPPLBoot in the Windows Registry.
To avoid accidental system issues caused by incorrect changes to Registry, back up registry files first, and here is a related post for you - How to Back up Individual Registry Keys Windows 10/11 .
See how to fix Local Security Authority Protection is off. Your device may be vulnerable by changing Windows Registry in Windows 11:
Step 1: Type regedit into the search box and click Registry Editor to open this app.
Step 2: Navigate to this path: Computer\HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa .
Step 3: Double-click on the RunAsPPL in the right pane and change its Value data to 2 . Do the same for the RunAsPPLBoot item.
If RunAsPPL and RunAsPPLBoot are not listed in the right pane, right-click on the blank area and choose New > DWORD (32-bit) Value to create these two items. Then, set the value to 2 for them.