[Windows11][24H2] 萬惡VBS(virtualization-based security)預設強制開啟導致vmware無法使用VT-x
原本筆電9月出國前夕還快樂在vmware workstation跑著Ubnutu幹活
回來之後放了一陣子,期間沒注意到系統有沒有更新,總之11月底要用就跳出VT-x無法使用,所以不能做巢狀虛擬化的錯誤訊息
以為是HyperV搞的鬼,繞了一圈能關的都關了還是不行…
一氣之下洗掉系統重灌,結果還是不行…
透過msinfo32指令去看怎樣虛擬化都是開的
最後才發現24H2強開了VBS,這東西必須要關掉,不然怎樣都變成有一層Virtual Layer幹在Windows下…
後來我有回文整理了一切在聯想的論壇
方法就是把下面的腳本跑一跑,重開機過程會跳出問你是否確定要關了VBS,按三次F3就可以關掉了
然後核心隔離個人是有在特別關掉,win+r打ms32info開啟確認virtualization-based security 關掉就可以跑VM看看了~
—-自己轉載自己的留言—-
I just find the solution…
According vmware discussion thread
The problem is cause by Windows 11 24H2 update, the VBS is force enable….
So if you do fresh installed 24H2 new iso image, the problem just continue…
You have using tricky script to let VBS complete disable.
https://consumer.huawei.com/cn/support/content/zh-cn16012808/
If you have concern about script from china, you can input by your own:
@echo off
dism /Online /Disable-Feature:microsoft-hyper-v-all /NoRestart
dism /Online /Disable-Feature:IsolatedUserMode /NoRestart
dism /Online /Disable-Feature:Microsoft-Hyper-V-Hypervisor /NoRestart
dism /Online /Disable-Feature:Microsoft-Hyper-V-Online /NoRestart
dism /Online /Disable-Feature:HypervisorPlatform /NoRestart
mountvol X: /s
copy %WINDIR%\System32\SecConfig.efi X:\EFI\Microsoft\Boot\SecConfig.efi /Y
bcdedit /create {0cb3b571-2f2e-4343-a879-d86a476d7215} /d “DebugTool” /application osloader
bcdedit /set {0cb3b571-2f2e-4343-a879-d86a476d7215} path “\EFI\Microsoft\Boot\SecConfig.efi”
bcdedit /set {bootmgr} bootsequence {0cb3b571-2f2e-4343-a879-d86a476d7215}
bcdedit /set {0cb3b571-2f2e-4343-a879-d86a476d7215} loadoptions DISABLE-LSA-ISO,DISABLE-VBS
bcdedit /set {0cb3b571-2f2e-4343-a879-d86a476d7215} device partition=X:
mountvol X: /d
bcdedit /set hypervisorlaunchtype off
echo.
echo.
echo =======================================================
pause > nul
echo.
echo.
Save as bat file, and reboot, press f3 when prompt show up
也感謝以下參考,尤其是巴哈姆特的討論 😀
https://consumer.huawei.com/cn/support/content/zh-cn16012808/
Leave a comment 取消回覆
很抱歉,必須登入網站才能發佈留言。