When you need to manage lots of servers (Local or Cloud) via remote desktop manager console, it must be annoying when your remote connection manager keeps on asking your credentials before log-in even you saved it.
Here is the solution that I figure out when these things start becoming frustrating for me.
1. Go to the Local Group Policy Editor as:
- Start -> Run -> gpedit.msc
2. From Local Computer Policy, go to the following location:
- Computer Configuration -> Administrative Templates -> System -> Credentials Delegation.
3. Enable the following settings and add the server as” TERMSRV/*” without a quotation by clicking the option “Show..” from add servers to the list as shown in the below screenshots:
- Allow delegating default credentials with NTLM-only server authentication.
- Allow delegating default credentials.
- Allow delegating saved credentials.
- Allow delegating saved credentials with NTLM-only server authentication.
4. Now all you need to update/refresh the policy, which you can do by type “gpupdate/force” from a command prompt (open in administrator mode) as:
Now you can be able to get rid of any servers asking credentials from your RDP connection.
10 thoughts on “How to resolve “Your system administrator does not allow the use of saved credentials to log on the remote computer.””
Good one Udi!
Thank you so much 🙂
It is working fine now with follow the tips provided above. Thanks.
Thank you !
Are you sure TERMSRV/* is correct? Shouldn’t it be TERMSRV\* ? With a backslash?
In the Example for each setting, it shows TERMSRV/* not TERMSRV\*
Not working on 2016 Server!
This does not work
**What worked for me** – None of the above solutions worked. – my Issue was that the client certificate could not be verified.. I reviewed the remote SSL cert and found it was a Godaddy cert.. I then went into my firewall settings and Whitelisted godaddy.com. – Badda-Bing!!! my issue with this has been solved.
For Me mack this only
Allow delegating saved credentials.
Allow delegating saved credentials with NTLM-only server authentication.