Goto
Computer Configuration | Policies | Windows Settings | Security Settings | Local Policies | Security Options: Network access: Do not allow storage of credentials or .NET Passports for network authentication - set it to Disabled.
As explained in GMPC:
Network access: Do not allow storage of credentials or .NET Passports for network authentication
This security setting determines whether Stored User Names and Passwords saves passwords, credentials, or .NET Passports for later use when it gains domain authentication.
If it is enabled, this setting prevents the Stored User Names and Passwords from storing passwords and credentials.
Note: When configuring this security setting, changes will not take effect until you restart Windows.
For more information about Stored User Names and Passwords, see Stored User Names and Passwords.
Default: Disabled.
This security setting determines whether Stored User Names and Passwords saves passwords, credentials, or .NET Passports for later use when it gains domain authentication.
If it is enabled, this setting prevents the Stored User Names and Passwords from storing passwords and credentials.
Note: When configuring this security setting, changes will not take effect until you restart Windows.
For more information about Stored User Names and Passwords, see Stored User Names and Passwords.
Default: Disabled.
Equivalent registry hack: HKLM\System\CurrentControlSet\Control\Lsa\disablecreds
Value type: REG_DWORD
Value: 0 = allow domain credentials to be stored
No comments:
Post a Comment