<!-- WP QUADS Content Ad Plugin v. 2.0.92 -->
<div class="quads-location quads-ad2522 " id="quads-ad2522" style="float:none;margin:0px 3px 3px 3px;padding:0px 0px 0px 0px;" data-lazydelay="0">

</div>
<h2>Update: For the solution scroll to the end of the page.</h2>
<h2>Windows 10 Update :</h2>
<p>Yesterday and today Microsoft released KB4532695 and KB4528760 causes TPM 2.0 driver to stop functioning and causes BSOD with error &#8220;<b>Memory Management</b>&#8221; Issue.</p>
<!-- WP QUADS Content Ad Plugin v. 2.0.92 -->
<div class="quads-location quads-ad2524 " id="quads-ad2524" style="float:none;margin:0px 3px 3px 3px;padding:0px 0px 0px 0px;" data-lazydelay="0">

</div>

<!-- WP QUADS Content Ad Plugin v. 2.0.92 -->
<div class="quads-location quads-ad2530 " id="quads-ad2530" style="float:none;margin:0px 3px 3px 3px;padding:0px 0px 0px 0px;" data-lazydelay="0">

</div>

<!-- WP QUADS Content Ad Plugin v. 2.0.92 -->
<div class="quads-location quads-ad2531 " id="quads-ad2531" style="float:none;margin:0px 3px 3px 3px;padding:0px 0px 0px 0px;" data-lazydelay="0">

</div>

<p><a href="https://www.moh10ly.com/wp-content/uploads/2020/01/clip_image001-3.png"><img style="margin: 0px; display: inline; background-image: none;" title="clip_image001" src="https://www.moh10ly.com/wp-content/uploads/2020/01/clip_image001_thumb-3.png" alt="clip_image001" width="681" height="312" border="0" /></a> 

<!-- WP QUADS Content Ad Plugin v. 2.0.92 -->
<div class="quads-location quads-ad2528 " id="quads-ad2528" style="float:none;margin:0px 3px 3px 3px;padding:0px 0px 0px 0px;" data-lazydelay="0">

</div>
 
</p>
<p><a href="https://www.moh10ly.com/wp-content/uploads/2020/01/image-60.png"><img style="margin: 0px; display: inline; background-image: none;" title="image" src="https://www.moh10ly.com/wp-content/uploads/2020/01/image_thumb-60.png" alt="image" width="642" height="484" border="0" /></a></p>
<h2>Windows Hello Face Authentication</h2>
<p>In the first KB Microsoft says they have improved the accuracy of Windows Hello Face authentication however this would cause your PIN to be reset, TPM driver stop functioning and BitLocker to change in Pause state.</p>
<p><a href="https://support.microsoft.com/en-us/help/4532695/windows-10-update-kb4532695" target="_blank" rel="noopener noreferrer"><span style="color: #0000ff;">Check KB Article here</span></a></p>
<p><a href="https://www.moh10ly.com/wp-content/uploads/2020/01/clip_image0014-2.png"><img style="margin: 0px; display: inline; background-image: none;" title="clip_image001[4]" src="https://www.moh10ly.com/wp-content/uploads/2020/01/clip_image0014_thumb-2.png" alt="clip_image001[4]" width="384" height="560" border="0" /></a></p>
<p><a href="https://www.moh10ly.com/wp-content/uploads/2020/01/image-61.png"><img style="margin: 0px; display: inline; background-image: none;" title="image" src="https://www.moh10ly.com/wp-content/uploads/2020/01/image_thumb-61.png" alt="image" width="1028" height="453" border="0" /></a></p>
<p>The BSOD will generate an event ID 1001 stating the bugcheck code and saves a dump. ( I haven&#8217;t analyzed that yet).</p>
<p><a href="https://www.moh10ly.com/wp-content/uploads/2020/01/clip_image0016-1.png"><img style="margin: 0px; display: inline; background-image: none;" title="clip_image001[6]" src="https://www.moh10ly.com/wp-content/uploads/2020/01/clip_image0016_thumb-1.png" alt="clip_image001[6]" width="1028" height="353" border="0" /></a></p>
<p>After Uninstalling the updates it was a no go but at least the Memory Management BSOD stopped..</p>
<p>Interesting thing is that not just TPM stopped, now even Virtual Box says no Virtualization Capabilities supported on my Device which I had over 20 VMs on it and was working fine also before these updates.</p>
<p>The TPM is indeed firmware as it&#8217;s fixed on the board..</p>
<p>In the event viewer related to Device Manager (Trusted Platform Module 2.0) I see couple of errors sourced from Kernel-PnP and UserPnp</p>
<p><strong>KernelPnp error</strong></p>
<p><strong>Device ACPI\MSFT0101\1 had a problem starting.</strong></p>
<!-- WP QUADS Content Ad Plugin v. 2.0.92 -->
<div class="quads-location quads-ad2525 " id="quads-ad2525" style="float:none;margin:0px 3px 3px 3px;padding:0px 0px 0px 0px;" data-lazydelay="0">

</div>

<p>Driver Name: tpm.inf<br />
Class Guid: {d94ee5d8-d189-4994-83d2-f68d7d41b0e6}<br />
Service: TPM<br />
Lower Filters:<br />
Upper Filters:<br />
Problem: 0xA<br />
Problem Status: 0xC0000001</p>
<p>&#8212;-</p>
<p><strong>Device ACPI\MSFT0101\1 was configured.</strong></p>
<p>Driver Name: tpm.inf<br />
Class Guid: {d94ee5d8-d189-4994-83d2-f68d7d41b0e6}<br />
Driver Date: 06/21/2006<br />
Driver Version: 10.0.18362.267<br />
Driver Provider: Microsoft<br />
Driver Section: Tpm2BaseInstall<br />
Driver Rank: 0xFF0002<br />
Matching Device Id: *MSFT0101<br />
Outranked Drivers: tpm.inf:ACPI\MSFT0101:00FF0001<br />
Device Updated: true<br />
Parent Device: ACPI_HAL\PNP0C08\0</p>
<p>&#8212;-</p>
<p><strong>UserPnp (Informational event) happens after Kernel-Pnp fail</strong></p>
<p>Driver Management concluded the process to install driver tpm.inf_amd64_aaaa339206cb706e for Device Instance ID ACPI\MSFT0101\1 with the following status: 0x0.</p>
<h2>Solution:</h2>
<p>After two days of struggling I managed to find the solution.</p>
<p>Disable Device Guard from Group Policy and PowerShell.</p>
<ul>
<li>To disable from PowerShell you&#8217;ll need to download the Device Guard and Credential Guard hardware readiness tool which contains a script that would disable/enable Device Guard.</li>
<li>Use the following cmdlet .\DG_Readiness_Tool_v3.6.ps1 -Disable after extracting the the DG readiness tools from the link below</li>
</ul>
<p>https://www.microsoft.com/en-us/download/details.aspx?id=53337</p>
<p><img class="alignnone size-full wp-image-1788" src="https://www.moh10ly.com/wp-content/uploads/2020/01/disable_deviceguard_powershell.jpg" alt="" width="849" height="392" /></p>
<ul>
<li>From Run type gpedit.msc and launch Group Policy then navigate to Computer Configuration >; Administrative Templates >; System >; Device Guard and set &#8220;Turn On Virtualization Based Security&#8221; To Not Configured.</li>
</ul>
<p><img class="alignnone size-large wp-image-1787" src="https://www.moh10ly.com/wp-content/uploads/2020/01/GPO-1024x297.jpg" alt="" width="474" height="137" /></p>
<p>Once this is done, Restart your Computer and Press F3 to disable Device Gaurd twice. When restarting the Computer will restart again and you&#8217;ll see that your TPM is back to normal.</p>
<!-- WP QUADS Content Ad Plugin v. 2.0.92 -->
<div class="quads-location quads-ad2527 " id="quads-ad2527" style="float:none;margin:0px 3px 3px 3px;padding:0px 0px 0px 0px;" data-lazydelay="0">

</div>

<p><img class="alignnone size-full wp-image-1789" src="https://www.moh10ly.com/wp-content/uploads/2020/01/TPM.jpg" alt="" width="530" height="567" /></p>

<!-- WP QUADS Content Ad Plugin v. 2.0.92 -->
<div class="quads-location quads-ad2526 " id="quads-ad2526" style="float:none;margin:0px 3px 3px 3px;padding:0px 0px 0px 0px;" data-lazydelay="0">

</div>


Reset and manage your Active Directory users' Passwords Active Directory is one of the most…
Finding Exchange Database hidden mailboxes. Story:Maybe you have been in this situation before, trying to…
If you're using a Proxy server in your firewall or in your network and have…
Story:I got some clients that have reported some of their users being locked out and…
Delegate Permissions This is a code that I have wrote recently to check if an…
Story: I got a request from a client who constantly gets CVs and have to…