Computer: Lenovo Ideapad S340-15API
Model: 81nc
Processor: AMD Ryzen 5 3500U with Radeon Vega Mobile Gfx 2.10 GHz
Installed RAM: 8,00 GB (5,94 GB usable)
System type: 64-bit operating system, x64-based processor
Edition: Windows 11 Home
Version: 22H2
Installed on: 2023-03-21
OS build: 22621.1635
Experience: Windows Feature Experience Pack 1000.22641.1000.0
On 2023-03-17 I got the Microsoft Defender icon with a Warning triangle in my task bar, telling me "Local Security Authority protection is off. Your device may be vulnerable". However, the option to turn it on was grayed out, so I believe I turned it on manually through regedit if I recall correctly.
Shortly after that date, on 2023-03-21, I completely re-installed Windows with Microsoft's own media creation tool. My current configuration is given above.
Today, the same problem arose, i.e. the Microsoft Defender icon with a Warning triangle, telling me "Local Security Authority protection is off. Your device may be vulnerable". It then prompted me to go to Device Security settings to turn it on. However, this time the actual feature named 'Local Security Authority Protection' doesn't even exist under Security features, either in my Local user account nor my Admin account.
As you can se on the screenshot taken in darkmode, from Microsoft's own help forum, 'Local Security Authority Protection' should be security feature number two between 'Memory integrity' and 'Microsoft Vulnerability Driver Blocklist', but it is completely missing as seen on my own screenshot taken in lightmode.
When I tried searching for "Local Security Authority protection option is missing" I didn't get any results with the same issue, but rather I got results about the same warning. I ended up following this guide on how to turn the option on through regedit.
The guide said to put a '1' in the value data of RunAsPPL, which I did. However, other guides said that it should always be a '2', so I don't actually know what is correct here.
Changing RunAsPPL to a '1' and rebooting did nothing about getting back 'Local Security Authority Protection' and the warning did not disappear. However, when I followed another guide saying to also create RunAsPPLBoot and setting them both, i.e. RunsAsPPL & RunAsPPLBoot to a '2' and then reboot, it did make the warning go away. I still don't have 'Local Security Authority Protection' in my settings though.
That is why I turned to Superuser to see if anyone knows why this option does not exist for me.