Windows Server 2012 - CNG Key Isolation (KeyIso) Service on Windows Server 2012

Categories:

Administration (160)

Adware Spyware (43)

Bluetooth (127)

DOS Commands (2)

Internet Connection (21)

Internet Explorer (224)

Media Center (14)

Media Player (135)

Mozilla Firefox (22)

Performance (204)

PHP (25)

Programming (36)

Silverlight (22)

Tips (144)

Tools (312)

Windows 10 (122)

Windows 7 (1378)

Windows 8 (1712)

Windows Phone (33)

Windows Server 2008 (165)

Windows Server 2012 (84)

Windows Server 2016 (23)

Windows Vista (71)

Windows XP (23)

Tutorial Collections:

Windows 10 Administration

Windows 8 Security

Windows 8 Startup Programs

Windows 8 Installed Programs

Windows 8 Services

Windows 8 Processes

Windows 8 Scheduled Tasks

Windows 7 Administration

Windows 7 Security

Windows 7 Startup Programs

Windows 7 Installed Programs

Windows 7 Services

Windows 7 Processes

Windows 7 Scheduled Tasks

Windows Server 2012

Windows Server 2008

Windows Vista Administration

Windows Commands & Batch

Windows PowerShell

Other Resources:

Software QA Resources

Developer Resources

Windows Tutorials

Programming Tutorials

File Extensions

Security Certificates

Regular Expression

Link Directories

Interview Q & A

Biotech Resources

Cell Phone Resources

Travel Resources

Frequently Asked Questions

FYIcenter Forum

Home > Windows Server 2012

CNG Key Isolation (KeyIso) Service on Windows Server 2012

Q

What is the "CNG Key Isolation (KeyIso)" system service on Windows Server 2012? Can I disable "CNG Key Isolation"?

✍: FYIcenter.com

A

"CNG Key Isolation (KeyIso)" is a Windows Server 2012 service that provides key process isolation to private keys and associated cryptographic operations as required by the Common Criteria. The service stores and uses long-lived keys in a secure process complying with Common Criteria requirements. KeyIso (CNG Key Isolation)

CNG stands for "Cryptography Application Programming Interface - Next Generation". A "Key" is a cryptographic token, for example, one generated from a wireless networking passphrase. "Isolation" is to do with Public Key Cryptography. Inside the operating system, public keys have to be kept separate from private keys and that is what the service is for.

Detailed information on "CNG Key Isolation" service:

Service name: KeyIso
Display name: CNG Key Isolation
Execution command: 
   C:\Windows\system32\lsass.exe
Dependencies:
   Remote Procedure Call (RPC)
Impacts:
   Extensible Authentication Protocol

"CNG Key Isolation" service is provided by the lsass.exe program, see "lsass.exe Executable Program on Windows Server 2012" for details.

Disabling "CNG Key Isolation" service will cause issues on running Windows 2012 Server with wireless connections.

⇒List of Services on Windows Server 2012

⇒⇒Windows Server 2012 Tutorials

2016-09-30, 1848👍, 0💬

Popular Posts:

Deleting Existing Se...

How to use sc.exe command to delete an existing service? If you want to delete a service created by ...

1XConfig.exe - Proce...

What is 1XConfig.exe process - Intel Wireless 8021XConfig Module? Process 1XConfig.exe is the 8021XC...

"UPnP Device Host - ...

What is "UPnP Device Host" in my Windows 7 service list? And how is "UPnP Device Host" service relat...

muweb.dll - DLL File...

What is muweb.dll - DLL File - Microsoft Update Web Control? muweb.dll is the Microsoft Update Web C...

Reviewing Internet E...

How to review Internet Explorer (IE) add-on or Browser Helper Object (BHO) tools on Windows XP with ...