Hello Eve Community users,
i am facing a problem in eve-ng community edition in which i am not able to power on eve-ng virtual machine on vmware workstation and it gives an error
VMware Workstation does not support nested
virtualization on this host.
Module 'HV power on failed,
Failed to start the virtual machine.
My pc configurations are intel core i5 14500 + 16GB Ram + MSI PRO B760M-A WiFi + Windows 11 Enterprise
What i have done so far is
1. checked virtualization is enabled in Bios. Updated bios to latest version.
2. Checked and disabled all services related to hyper-v from control panel using script. pasted below
@echo off
bcdedit /set hypervisorlaunchtype off
DISM /Online /Disable-Feature:Microsoft-Hyper-V-All
DISM /Online /Disable-Feature:VirtualMachinePlatform
DISM /Online /Disable-Feature:WindowsHypervisorPlatform
DISM /Online /Disable-Feature:WindowsSandbox
reg add "HKLM\SYSTEM\CurrentControlSet\Control\DeviceGuard" /v EnableVirtualizationBasedSecurity /t REG_DWORD /d 0 /f
reg add "HKLM\SYSTEM\CurrentControlSet\Control\Lsa" /v LsaCfgFlags /t REG_DWORD /d 0 /f
echo Restarting in 10 seconds...
timeout /t 10
shutdown /r /t 0
3. Core isolation from windows security is disabled.
4. can see in systeminfo that virtualization based security is "Running" but could not find which service is making it run.
if anyone knows how to solve this will be a great help. i am unable to learn without eve-ng right now.
Thanks in advance
PST
Vmware Workstation does not support nested virtualization on this host.
Moderator: mike
-
psteharia
- Posts: 4
- Joined: Sat Nov 16, 2019 12:29 pm
Vmware Workstation does not support nested virtualization on this host.
You do not have the required permissions to view the files attached to this post.
-
Uldis (UD)
- Posts: 5182
- Joined: Wed Mar 15, 2017 4:44 pm
- Location: London
- Contact:
Re: Vmware Workstation does not support nested virtualization on this host.
It is because you read nothing
https://www.eve-ng.net/wp-content/uploa ... zation.pdf
and no wonder that your CPU does not supporting nested virtualization at all...
i5 intel CPU is super low HW for eve use
https://www.eve-ng.net/wp-content/uploa ... zation.pdf
and no wonder that your CPU does not supporting nested virtualization at all...
i5 intel CPU is super low HW for eve use
-
psteharia
- Posts: 4
- Joined: Sat Nov 16, 2019 12:29 pm
Re: Vmware Workstation does not support nested virtualization on this host.
Hi Uldis (UD),
Thanks for your reply and providing document link.
Keypoints which i have noticed that
1. Intel core i5 14500 processor supports virtualization features as per intel link https://www.intel.com/content/www/us/en ... tions.html
2. Core Isolation >> Memory Integrity is Turned Off.
3. All Hyper V related services are not working (double checked) from "Turn windows features on & off"
4. bcdedit /set hypervisorlaunchtype off -already done this output of bcdedit /enum /v is below
[C:\] # bcdedit /enum /v
Windows Boot Manager
--------------------
identifier {9dea862c-5cdd-4e70-acc1-f32b344d4795}
device partition=\Device\HarddiskVolume1
path \EFI\Microsoft\Boot\bootmgfw.efi
description Windows Boot Manager
locale en-US
inherit {7ea2e1ac-2e61-4728-aaa3-896d9d0a9f0e}
default {b8f9de06-a933-11ef-8cb9-f49f4e3e4dcf}
resumeobject {b8f9de05-a933-11ef-8cb9-f49f4e3e4dcf}
displayorder {b8f9de06-a933-11ef-8cb9-f49f4e3e4dcf}
toolsdisplayorder {b2721d73-1db4-4c62-bf78-c548a880142d}
timeout 30
Windows Boot Loader
-------------------
identifier {b8f9de06-a933-11ef-8cb9-f49f4e3e4dcf}
device partition=C:
path \WINDOWS\system32\winload.efi
description Windows 11
locale en-US
inherit {6efb52bf-1766-41db-a6b3-0ee5eff72bd7}
recoverysequence {b8f9de07-a933-11ef-8cb9-f49f4e3e4dcf}
displaymessageoverride Recovery
recoveryenabled Yes
isolatedcontext Yes
allowedinmemorysettings 0x15000075
osdevice partition=C:
systemroot \WINDOWS
resumeobject {b8f9de05-a933-11ef-8cb9-f49f4e3e4dcf}
nx OptIn
bootmenupolicy Standard
hypervisorlaunchtype Off
5. Registry Keys not found in registry editor. There are no keys as Device Guard & Windows Hello under Scenarios. (attached)
6. Restarted pc several times after doing these settings but sill Virtualization based security is running under msinfo32 /system
my pc is attached to domain controller but as i checked in my local group policy editor settings are same as required to disable virtualization, but registry keys are not found as per attached document.
one more thing, i have tested dgrediness tool script with -disable switch. it works and allows me to run nested virtualization and eve-ng works fine only until i restart my pc. after restarting i can't use my eve-ng vm with nested virtualization anymore (Same error as mentioned in subject comes again.)
Thanks for your reply and providing document link.
Keypoints which i have noticed that
1. Intel core i5 14500 processor supports virtualization features as per intel link https://www.intel.com/content/www/us/en ... tions.html
2. Core Isolation >> Memory Integrity is Turned Off.
3. All Hyper V related services are not working (double checked) from "Turn windows features on & off"
4. bcdedit /set hypervisorlaunchtype off -already done this output of bcdedit /enum /v is below
[C:\] # bcdedit /enum /v
Windows Boot Manager
--------------------
identifier {9dea862c-5cdd-4e70-acc1-f32b344d4795}
device partition=\Device\HarddiskVolume1
path \EFI\Microsoft\Boot\bootmgfw.efi
description Windows Boot Manager
locale en-US
inherit {7ea2e1ac-2e61-4728-aaa3-896d9d0a9f0e}
default {b8f9de06-a933-11ef-8cb9-f49f4e3e4dcf}
resumeobject {b8f9de05-a933-11ef-8cb9-f49f4e3e4dcf}
displayorder {b8f9de06-a933-11ef-8cb9-f49f4e3e4dcf}
toolsdisplayorder {b2721d73-1db4-4c62-bf78-c548a880142d}
timeout 30
Windows Boot Loader
-------------------
identifier {b8f9de06-a933-11ef-8cb9-f49f4e3e4dcf}
device partition=C:
path \WINDOWS\system32\winload.efi
description Windows 11
locale en-US
inherit {6efb52bf-1766-41db-a6b3-0ee5eff72bd7}
recoverysequence {b8f9de07-a933-11ef-8cb9-f49f4e3e4dcf}
displaymessageoverride Recovery
recoveryenabled Yes
isolatedcontext Yes
allowedinmemorysettings 0x15000075
osdevice partition=C:
systemroot \WINDOWS
resumeobject {b8f9de05-a933-11ef-8cb9-f49f4e3e4dcf}
nx OptIn
bootmenupolicy Standard
hypervisorlaunchtype Off
5. Registry Keys not found in registry editor. There are no keys as Device Guard & Windows Hello under Scenarios. (attached)
6. Restarted pc several times after doing these settings but sill Virtualization based security is running under msinfo32 /system
my pc is attached to domain controller but as i checked in my local group policy editor settings are same as required to disable virtualization, but registry keys are not found as per attached document.
one more thing, i have tested dgrediness tool script with -disable switch. it works and allows me to run nested virtualization and eve-ng works fine only until i restart my pc. after restarting i can't use my eve-ng vm with nested virtualization anymore (Same error as mentioned in subject comes again.)
You do not have the required permissions to view the files attached to this post.
-
rusty725
- Posts: 370
- Joined: Thu Mar 29, 2018 4:19 pm
Re: Vmware Workstation does not support nested virtualization on this host.
you should check step 5 maybe you overlooked it.
-
psteharia
- Posts: 4
- Joined: Sat Nov 16, 2019 12:29 pm
Re: Vmware Workstation does not support nested virtualization on this host.
i double checked about registry keys and took screenshot aroung 12o'noon, after that i created keys manually and set values to 0
even after that Virtualization based security is Still Running.
even after that Virtualization based security is Still Running.
You do not have the required permissions to view the files attached to this post.
-
psteharia
- Posts: 4
- Joined: Sat Nov 16, 2019 12:29 pm
Re: Vmware Workstation does not support nested virtualization on this host.
have you checked about what changes did dgrediness script applies to system which works only one time until i reboot my system. that time my eve-ng vm works fine but until i restart my pc.