When trying to use saved credentials in Remote Desktop Connection you might receive this message:
Your credentials did not work
Your system administrator does not allow the use of saved credentials to log on to the remote computer terminal.server.com because its identity is not fully verified. Please enter new credentials.
(screenshot)
To be able to use saved credentials in this situation you need to do the following:
1. Open Group Policy Editor via cmd -> gpedit.msc (screenshot)
2. Navigate to Local Computer Policy\Computer Configuration\Administrative Templates\System\Credentials Delegation\
3.Open Setting Allow Delegating Saved Credentials with NTLM-only Server Authentication, set it to Enabled click on button Show... and in Show Contents window add Value TERMSRV/terminal.server.com. Close all windows by pressing OK. (screenshot)
4. Run cmd and enter gpupdate command to update your policy. (screenshot)
Now you should be able to use your saved credentials.
note:
these steps were performed on Windows 7 beta, but probably it will stay the same in final release and my guess is, it is the same in Vista (too lazy to check).
Perfect answer to my problem. Thanks! The only thing the post dones't say is that you do this on the computer you're connecting from, not the one you're connecting to.
ReplyDeleteThnx :)
ReplyDeleteYES!! Thank you.
ReplyDeletethank you. I had this issue when trying to connect to a Windows 2008 Server, but no more!
ReplyDeleteThank you, it worked brilliantly.
ReplyDeleteFor those looking to save all credentials to all servers, without specifying each one individually, can give the following:
TERMSRV/*
Excellent, especially with the TERMSRV/* value.
ReplyDeleteThanks to all!
I am going to save a day of my life with this solution! Thanks!!!
ReplyDeleteThank yout a lot! Great!
ReplyDeleteHi, I did it the way you mentioned. But when I click I get the meesage "Computer can't connect to remote comp because RDCB couldn0t valide the settings in RDP file". Do you have an idea? Thanks!!
ReplyDeleteto answer if this is has to be done from the client or from the server (Just a guess):if you check the GPEDIT picture on the top right corner you see a link with "Send Feedback", I think I have seen this on a Vista Beta Computer so I think it's done from the client computer ;-)
ReplyDeleteThanks very much.
ReplyDeletety, this was driving me crazy :D
ReplyDeleteperfect, many thanks - yep this must be done on the server you're connecting from (not to!)
ReplyDeletedude, saved my life :P
ReplyDeletethanks
Thanks for the information.
ReplyDeleteI followed the instructions, but it still does not work. The client machine is a Win7 Ultimate. The server is WS2008 R2.
Thanks a lot...worked perfectly in Windows 7.
ReplyDeleteScrew Microsoft. Use "Terminals" app
ReplyDeletehttp://terminals.codeplex.com
Just a correction: If You are in domain enviroment it is better to do this on your domain server using group policy editor.
ReplyDeleteIf You make this settings in default domain policy then You made it for all domain computers. If You want to allow this just for selected users it is better to create a new policy and "filter" users and/or computers.
This is great, thank you! One add'l tip. I am using a laptop that is often connected to my network at work. I was trying to make this change for use at home and it was not working. I had to VPN to my work network to get it to update gp successfully.
ReplyDeleteThanks! That helped!
ReplyDeleteBy the way, one might get stuck when trying to *remove* an item from the list of added servers. (The dialog is not very smart and does not include a "delete" button nor does allow leaving an empty field.)
Only way how I could make it work was to switch the state back to "Not configured", which cleared the list. (Which probably isn't very convenient if you have a longer list there...)
I discovered you can delete items by selecting the row and pressing the [DEL] key.
ReplyDeleteWhen you add server.domain.tld to the Group Policy but then connect to 192.168.x.y it doesn't work. Logical but I didn't realize the RDP file was connecting on IP instead of FQDN until I inspected it.
ReplyDeleteAwesome, you just made my day! Thank you.
ReplyDeleteI have problem is like saving credential in RDP console is working. But is not working while taking RDP for windows server 2008 Servers.
ReplyDeletesave credential are check marked still its asking credential for every time its having only from windows server 2008. But Windows Server 2003 version is working.
Thank you, worked perfectly!
ReplyDeleteThank you Sir,
ReplyDeleteWorked...
cool, thanks, worked perfectly ;)
ReplyDeleteDidn't change a thing...
ReplyDeleteI had this on a 2008 R2 TS, where I wanted to save creds for a connection to another 2008 R2 TS from there. Doesn't work.
When connecting to 2008 TS it works fine, allready before the issue.
Seems to me it is a problem on the connected TS instead of the starting place..
Thanks a lot!
ReplyDeleteThanks a lot for the information. it worked for me on Win 7
ReplyDeleteHi, i believе that i noticed ƴou visitwd my web site ѕo і cɑmе
ReplyDeleteto return thе choose?.ӏ'm tгying tо to fіnd thіngs to
improve my site!I guess its goo еnough to make usee of а feew оf youг ideas!!
Feel fre to visit my homepaage - Clash Of clans hack android
Thanks dude, it worked fine!
ReplyDeleteI tested it on Windows 8.1
Hello guys,
ReplyDeleteI am using windows 10, and I want to connect to a remote but I'm keep getting a message.
Your system administrator does not allow you to connect to this remote computer. For assistance contact your system administrator or technical support
This is the exact same issue I am encountering. I am at the point of wiping, and re-installing Windows, as I know the issue is specific to this one computer and is not my AD login.
DeleteDoes not work on Windows 2008
ReplyDelete