"Failed to install the hcmon driver" error when installing VMWare View or VMWare Workstation Client on a client machine running LES 4.5 or higher

Version 1
Created by HEAT_RyanMilczarek on Apr 25, 2011 3:43 AM. Last modified by HEAT_RyanMilczarek on May 26, 2017 6:50 AM.

    Details

    Applies to Lumension Endpoint Security 4.5+

    ISSUE

    By default, LES blocks the VMWare driver “hcmon” because it disconnects USB devices from the host machine and connects them to Virtual Machines. It does this in a manner that enables the Virtual Machine to bypass the protection provided by LES.

    The same error occurs when VMWARE attempts to install the HCMON driver on a non-LES endpoint running SADEC.

     

    Resolution

     

    Disable the “hcmon” blocking functionality by creating a registry value (DWORD type, Data 1) in HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SK\Parameters with the name EnableHCMON.


    WARNINGUse this solution at your own discretion as it exposes a security vulnerability.

    The recommended procedure to successfully install the VMware Client:

     

    1. Enable HCMON by creating a EnableHCMON registry value (DWORD type, Data 1) in HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SK\Parameters.
    2. Reboot the endpoint.
    3. Install VMWare View Client.
    4. Disable HCMON by removing the EnableHCMON registry value.
    5. Reboot the endpoint again.