Disable the lsass exe on your Windows Server 2008 R2 or Windows Server 2012 R2 system is not a good idea. Disabling the lsass exe will cause a number of problems including:
1. The inability to use the Server Manager GUI to manage the system.
2. The inability to use the RDP client to connect to the system.
3. The inability to use the PowerShell remoting command to manage the system.
4. The inability to use the Server Manager command-line tool to manage the system.
5. The inability to use the Server Manager add-on features.
6. The inability to use the Remote Desktop Services client to connect to the system.
Meet LSASS.exe: The Process You May Not Even Know Is Hanging Out On Your Computer
Disabling LSASS Could Pose a Security Risk
LSASS is responsible for security
If you disable LSASS, then the system will be less secure because it will be unable to perform certain tasks that are required for security. For example, LSASS is responsible for checking the integrity of user input, verifying the authenticity of security certificates, and performing other security-related tasks. If LSASS is disabled, then these tasks may not be performed properly, which could lead to security vulnerabilities.
Disabling LSASS could prevent your computer from starting up
LSASS is a critical system process
Why disable a process that is critical to security?
Disable LSASS could prevent your computer from starting up. LSASS is a critical system process that helps protect your computer against unauthorized access. If LSASS is disabled, unauthorized users could gain access to your computer.
If you disable the lsass exe, you won’t be able to log in to your system. This is because the lsass exe is a necessary component for logging in.