Information
This entry appears as MSS: (DisableSavePassword) Prevent the dial-up password from being saved (recommended) in the SCE. By default, Windows will offer the option to save passwords for dial-up and VPN connections, which is not desirable on a server. You can add this registry value to the template file in the HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\LanmanServer\ Parameters\ subkey. An attacker who steals a mobile user's computer could automatically connect to the organization's network if the Save This Password check box is enabled for the dial-up entry.
Solution
To implement the recommended configuration state, set the following Group Policy setting to 1.
Computer Configuration\Windows Settings\Security Settings\Local Policies\Security Options\MSS- (DisableSavePassword) Prevent the dial-up password from being saved (recommended)
Impact- Users won't be able to automatically store their logon credentials for dial-up and VPN connections.