troubleshooting Question

GPO to edit registry

Avatar of murkytuna
murkytunaFlag for United States of America asked on
Windows Server 2008Active DirectoryWindows 7
3 Comments1 Solution1269 ViewsLast Modified:
Hi.  Please let me know how to create a GPO on Windows server 2008 to edit the registry to get rid of the following vulnerability that was found by an Altiris vulnerability scan:

Microsoft Windows SMB Registry : Winlogon Cached Password Weakness

 Synopsis :

 User credentials are stored in memory.

 Description :

 The registry key HKLM\Software\Microsoft\Windows
 NT\CurrentVersion\Winlogon\CachedLogonsCount is non-null. It means
 that the remote host locally caches the passwords of the users when
 they log in, in order to continue to allow the users to log in in the
 case of the failure of the PDC.

 Solution :

 use regedt32 and set the value of this key to 0
Scott Silva
Network Administrator

Our community of experts have been thoroughly vetted for their expertise and industry experience.

Log in to continue reading
Become an EE member today7-DAY FREE TRIAL
Members can start a 7-Day Free trial then enjoy unlimited access to the platform for $9.99/mo
View membership options
Unlock 1 Answer and 3 Comments.
Learn why we charge membership fees
We get it - no one likes a content blocker. Take one extra minute and find out why we block content.
See how we're fighting big data
The Value of Experts Exchange in My Daily IT Life

Experts Exchange (EE) has become my company's go-to resource to get answers. I've used EE to make decisions, solve problems and even save customers. OutagesIO has been a challenging project and... Keep reading >>


Owner of Outages.IO
Phoenix, Arizona, United States
Member Since 2016
Join a full scale community that combines the best parts of other tools into one platform.
Unlock 1 Answer and 3 Comments.
View membership options
“All of life is about relationships, and EE has made a virtual community a real community. It lifts everyone's boat.”
William Peck

Member since 2004