Your system administrator does not allow the use of saved credentials to log on to the remote computer


If you’re a system administrator working with remote desktop a lot within a somewhat restrictive domain environment, you may be frustrated by the following message:

There are a few tutorials on the net that say to remove this you just need to go into Group Policy and disable ‘Do not allow passwords to be saved’, unfortunately that isn’t what this error message is related to. Instead, we need to change another part of Group Policy.

Hit Win+R to bring up the ‘Run’ dialog, enter ‘gpedit.msc’ and hit OK.

Run dialog with gpedit.msc

Go down the tree into Computer Configuration -> Administrative Templates -> System -> Credentials Delegation.

Group Policy -> Credentials Delegation

Now, you need to allow Allow delegating saved credentials and Allow delegating saved credentials with NTLM-only server authentication. For each, you’ll also need to allow a set list of servers that are explicitely allowed to save credentials, you can enter IP Addresses, Server hostnames, AD Domain name wildcards, or just any old wildcard. Since I wanted to be able to store credentials for everything, I just used a plain wildcard, and you can too!

Allow Delegating Saved Credentials with Wildcard

There we go, you’ll now automatically connect to your servers!

( source – )

You can leave a response, or trackback from your own site.

Leave a Reply

You must be logged in to post a comment.

Powered by WordPress and Bootstrap4