Trying to connect from Windows 7 to a Remote Windows 2008 Server via Remote Desktop Connection
I always used to be asked for credentials during logon – even though i saved my credentials
This error would creep up
Your system administrator does not allow the use of saved credentials to logon to the remote computer computername/ipadress because its identity is not fully verified. Please enter new credentials. The logon attempt failed
There is no-trust-relationship when connecting 2 computers from different domains. Windows uses NTLM in this case and the default domain machine policy does not allow use of saved credentials.
By default, Windows allows users to save their passwords for RDP connections. To do it, a user must enter the name of the RDP computer, the username and check the box “Allow me to save credentials” in the RDP client window.
These credentials are stored in an encrypted form in the Credential Manager of Windows by using the Data Protection API. The “pbData” field contains the information in an encrypted form. However the master key for decryption is stored in the lsass and can be retrieved by executing the following Mimikatz module.
Also, passwords are stored in a different way in Windows 7, which is in a vault. To access these stored credentials, or to store a credential yourself, you can go to the User Accounts snap-in in Control Panel, then select the Manage your credentials option on the left panel, as shown in Figure 1.
Try these Below Steps:
Do the same thing for the following policies:
Allow Delegating Saved Credentials
Allow Delegating Default Credentials with NTLM-only Server Authentication
Allow Delegating Default Credentials
Make sure that "Deny Delegating Saved Credentials" is not enabled or does not contain “TERMSRV/*” in the list
Close all windows
Open a command prompt and use “gpupdate /force” command to apply the policy directly.
If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!
Donate Us With