<div>
Should be under local policy and security settings 
 
k<a href="http://www.windowstricks.in/2015/12/domain-account-unable-to-log-in-with-cached-credentials-on-windows-10.html" rel="ugc">http://www.windowstricks.in/2015/12/domain-account-unable-to-log-in-with-cached-credentials-on-windows-10.html</a>
</div>

Should be under local policy and security settings

khttp://www.windowstricks.in/2015/12/domain-account-unable-to-log-in-with-cached-credentials-on-windows-10.html [http://www.windowstricks.in/2015/12/domain-account-unable-to-log-in-with-cached-credentials-on-windows-10.html]

<div>
<div class="content wysiwyg-content">
Hi. &nbsp;Please let me know how to create a GPO on Windows server 2008 to edit the registry to get rid of the following vulnerability that was found by an Altiris vulnerability scan: 
 
Microsoft Windows SMB Registry : Winlogon Cached Password Weakness 
 
&nbsp;Synopsis : 
 
&nbsp;User credentials are stored in memory. 
 
&nbsp;Description : 
 
&nbsp;The registry key HKLM\Software\Microsoft\Windows 
&nbsp;NT\CurrentVersion\Winlogon\CachedLogonsCount is non-null. It means 
&nbsp;that the remote host locally caches the passwords of the users when 
&nbsp;they log in, in order to continue to allow the users to log in in the 
&nbsp;case of the failure of the PDC. 
 
&nbsp;Solution : 
 
&nbsp;use regedt32 and set the value of this key to 0 
 
<a href="http://www.tenable.com/plugins/index.php?view=single&id=11457" rel="ugc">http://www.tenable.com/plugins/index.php?view=single&id=11457</a>
</div>
</div>

Hi.  Please let me know how to create a GPO on Windows server 2008 to edit the registry to get rid of the following vulnerability that was found by an Altiris vulnerability scan:

Microsoft Windows SMB Registry : Winlogon Cached Password Weakness

 Synopsis :

 User credentials are stored in memory.

 Description :

 The registry key HKLM\Software\Microsoft\Windows
 NT\CurrentVersion\Winlogon\CachedLogonsCount is non-null. It means
 that the remote host locally caches the passwords of the users when
 they log in, in order to continue to allow the users to log in in the
 case of the failure of the PDC.

 Solution :

 use regedt32 and set the value of this key to 0

http://www.tenable.com/plugins/index.php?view=single&id=11457

GPO to edit registry

Windows Server 2008 and Windows Server 2008 R2, based on the Microsoft Vista codebase, is the last 32-bit server operating system released by Microsoft. It has a number of versions, including including Foundation, Standard, Enterprise, Datacenter, Web, HPC Server, Itanium and Storage; new features included server core installation and Hyper-V.

Windows Server 2008

Active Directory (AD) is a Microsoft brand for identity-related capabilities. In the on-premises world, Windows Server AD provides a set of identity capabilities and services, and is hugely popular (88% of Fortune 1000 and 95% of enterprises use AD). This topic includes all things Active Directory including DNS, Group Policy, DFS, troubleshooting, ADFS, and all other topics under the Microsoft AD and identity umbrella.

Active Directory

Windows 7 is an operating system from Microsoft. Features include multi-touch support, a redesigned Windows Shell with a new taskbar, referred to as the Superbar, a home networking system called HomeGroup, and performance improvements.