Do not allow passwords to be saved

Information

Controls whether a user can save passwords using Remote Desktop Connection.

If you enable this setting the credential saving checkbox in Remote Desktop Connection will be disabled and users will no longer be able to save passwords. When a user opens an RDP file using Remote Desktop Connection and saves his settings any password that previously existed in the RDP file will be deleted.

If you disable this setting or leave it not configured the user will be able to save passwords using Remote Desktop Connection

Solution

Policy Path: Windows Components\Remote Desktop Services\Remote Desktop Connection Client
Policy Setting Name: Do not allow passwords to be saved

See Also

https://blogs.technet.microsoft.com/secguide/2016/10/17/security-baseline-for-windows-10-v1607-anniversary-edition-and-windows-server-2016/

Item Details

Category: IDENTIFICATION AND AUTHENTICATION

References: 800-53|IA-5(13), CSCv6|16.4

Plugin: Windows

Control ID: 53272c805e8d79b28a3a0e169a5ab2c73f787ee835e538034e6ebf841a65f9b0