CNG Key Isolation (KeyIso) startup type, default configuration, and information
Registry Name:
KeyIso
Display Name:
CNG Key Isolation
Description:
The CNG key isolation service is hosted in the LSA process. The service provides key process isolation to private keys and associated cryptographic operations as required by the Common Criteria. The service stores and uses long-lived keys in a secure process complying with Common Criteria requirements.
Default Status:
Running
Default Startup Type:
Manual (Trigger Start)
Learn more about the different startup types of Windows services in Microsoft Windows.
Image Path:
C:\WINDOWS\system32\lsass.exe
DLL File Path:
C:\WINDOWS\system32\keyiso.dll
Dependencies:
The service depends on the following system components to function properly:
System components that depend on this service to function properly:
Log On As:
LocalSystem
Additional Information:
None at this time
Windows Service Startup Type:
In Microsoft Windows, Windows services can be configured with different startup types that determine how and when they are started:
- Automatic: The service starts automatically when Windows boots.
- Automatic (Delayed Start): The service starts automatically after the system has finished booting and initial services have started, helping improve startup performance.
- Manual: The service does not start automatically. It must be started by a user or another process when needed.
- Manual (Trigger Start): The service starts manually or in response to specific system events (triggers), such as device insertion or network changes.
- Disabled: The service is prevented from starting, even if required by the system or an application.