Microsoft announced that they’ll only provide WHQL signing for drivers that are compiled with the
/CETCOMPAT flag after September 24, 2021. The
/CETCOMPAT flag is available only on Visual Studio 2019, and on Windows 7 / Windows Server 2008 R2 and later. This change causes the kernel drivers within ENS Exploit Prevention to no longer be compatible with legacy Microsoft Windows operating systems.
Due to this change, McAfee Enterprise can no longer provide driver signing on the following operating systems:
- Windows Server 2008 (SP1 and SP2)
- Windows Server 2003
- Windows Vista
- Windows XP
NOTE: This change doesn't affect Windows Server 2008 R2, Windows 7 SP1, and later operating system versions. These versions will continue to receive ENS Exploit Prevention content through their respective standard and extended support periods, where applicable.
This change will begin with the October 2021 ENS Exploit Prevention content update. This change doesn’t affect the functionality of ENS Exploit Prevention with existing content. Systems running any of the impacted operating system versions can no longer receive new ENS Exploit Prevention content updates. Future attempts to update ENS Exploit Prevention content on the impacted operating system versions results in a failure to update due to the incompatible operating system.
