Windows Server 2012 - CNG Key Isolation (KeyIso) Service on Windows Server 2012

Categories:

Administration (160)

Adware Spyware (39)

Bluetooth (127)

DOS Commands (2)

Internet Connection (21)

Internet Explorer (222)

Media Center (14)

Media Player (135)

Mozilla Firefox (22)

Performance (204)

PHP (25)

Programming (36)

Silverlight (22)

Tips (144)

Tools (311)

Windows 10 (122)

Windows 7 (1477)

Windows 8 (1613)

Windows Phone (33)

Windows Server 2008 (165)

Windows Server 2012 (84)

Windows Vista (71)

Windows XP (23)

Tutorial Collections:

Windows 10 Administration

Windows 8 Security

Windows 8 Startup Programs

Windows 8 Installed Programs

Windows 8 Services

Windows 8 Processes

Windows 8 Scheduled Tasks

Windows 7 Administration

Windows 7 Security

Windows 7 Startup Programs

Windows 7 Installed Programs

Windows 7 Services

Windows 7 Processes

Windows 7 Scheduled Tasks

Windows Server 2012

Windows Server 2008

Windows Vista Administration

Windows Commands & Batch

Windows PowerShell

Other Resources:

Software QA Resources

Developer Resources

Windows Tutorials

Programming Tutorials

File Extensions

Security Certificates

Regular Expression

Link Directories

Interview Q & A

Biotech Resources

Cell Phone Resources

Travel Resources

Frequently Asked Questions

FYIcenter Forum

Home > Windows Server 2012

CNG Key Isolation (KeyIso) Service on Windows Server 2012

Q

What is the "CNG Key Isolation (KeyIso)" system service on Windows Server 2012? Can I disable "CNG Key Isolation"?

✍: FYIcenter.com

A

"CNG Key Isolation (KeyIso)" is a Windows Server 2012 service that provides key process isolation to private keys and associated cryptographic operations as required by the Common Criteria. The service stores and uses long-lived keys in a secure process complying with Common Criteria requirements. KeyIso (CNG Key Isolation)

CNG stands for "Cryptography Application Programming Interface - Next Generation". A "Key" is a cryptographic token, for example, one generated from a wireless networking passphrase. "Isolation" is to do with Public Key Cryptography. Inside the operating system, public keys have to be kept separate from private keys and that is what the service is for.

Detailed information on "CNG Key Isolation" service:

Service name: KeyIso
Display name: CNG Key Isolation
Execution command: 
   C:\Windows\system32\lsass.exe
Dependencies:
   Remote Procedure Call (RPC)
Impacts:
   Extensible Authentication Protocol

"CNG Key Isolation" service is provided by the lsass.exe program, see "lsass.exe Executable Program on Windows Server 2012" for details.

Disabling "CNG Key Isolation" service will cause issues on running Windows 2012 Server with wireless connections.

⇒List of Services on Windows Server 2012

⇒⇒Windows Server 2012 Tutorials

2016-09-30, 1453👍, 0💬

Popular Posts:

Transforming (Rewrit...

How to tell Apache server to transform (rewrite) URL? Assuming that you have your Apache server runn...

"Net.Msmq Listener A...

What is "Net.Msmq Listener Adapter" in my Windows 7 service list? And how is "Net.Msmq Listener Adap...

lsass.exe - Service ...

Can I disable Windows service "Protected Storage" to speedup my computer? Windows service "Protected...

Downloading and Inst...

How to download and install HiJackThis? If you want to download and install HiJackThis to your Windo...

Registering Windows ...

Can I register my computer later? I don't want to register my computer during the initial Windows 7 ...