The CNG key isolation service is hosted in the LSA process. The service provides key process isolation to private keys and associated cryptographic operations as required by the Common Criteria. The service stores and uses long-lived keys in a secure process complying with Common Criteria requirements.
This service is required for Wireless Networks as well as the following group of services:
WLAN AutoConfig, if set to Manual or Automatic, will not start automaticly if you use a hardware switch (such as those on laptops to turn on and off the wireless network card). If you require wireless connectivity on your computer, keep the listed services above on the default values. If you do not have a wireless card installed on the system, or do not require authentication on your wired network card, the group of services can safely be disabled.
Default Vista Home Basic: Manual
Default Vista Home Premium: Manual
Default Vista Business: Manual
Default Vista Ultimate: Manual
Safe Setting: Manual
Service Name (registry): KeyIso
Display Name: CNG Key Isolation
C:\Windows\system32\lsass.exe
Account: Local System Account
What service CNG Key Isolation needs to function properly:
What other service require CNG Key Isolation to function properly: