WinSecWiki > Security Settings > Local Policies > Security Options > Network Access > Do not allow storage of passwords and credentials for network authentication

Network access: Do not allow storage of passwords and credentials for network authentication

By default Windows offers to remember credentials used in mapping network drives when connecting to some web sites that require authentication and when connecting to Internet service with Windows Live (aka .NET Passport) accounts. Windows stores such credentials in secure registry storage that is ultimately protected by the user’s Windows password used for interactive logon to this computer. You can list stored credentials by going to Control Panel then User Accounts then User Accounts and selecting “Manage your network passwords”. This setting, when enabled, prevents Windows from allowing stored credentials.

Bottom line

Enable this setting on workstations if you wish to prevent users from having Windows store credentials.

Back to top

 

Additional Resources