Restrict delegation of credentials to remote servers

When running in restricted mode participating apps do not expose credentials to remote computers (regardless of the delegation method). Restricted mode may limit access to resources located on other servers or networks beyond the target computer because credentials are not delegated. Participating apps:Remote Desktop ClientIf you enable this policy setting restricted mode is enforced and participating apps will not delegate credentials to remote computers. If you disable or do not configure this policy setting restricted mode is not enforced and participating apps can delegate credentials to remote computers. Note: To disable most credential delegation it may be sufficient to deny delegation in Credential Security Support Provider (CredSSP) by modifying Administrative template settings (located at Computer Configuration -> Administrative Templates -> System -> Credentials Delegation).

Sends all intranet traffic over to Internet Explorer

Sends all intranet traffic over to Internet Explorer

Allows you to configure the Enterprise Site list

Allows you to configure the Enterprise Site list

Configure how Microsoft Edge treats cookies

Configure how Microsoft Edge treats cookies

Allows you to configure SmartScreen

Restrict delegation of credentials to remote servers

More From Author

Sends all intranet traffic over to Internet Explorer

Sends all intranet traffic over to Internet Explorer

Allows you to configure the Enterprise Site list

2Comments

Allow delegating fresh credentials with NTLM-only server authentication

Remove Logoff

You May Also Like:

Sends all intranet traffic over to Internet Explorer

Sends all intranet traffic over to Internet Explorer

Allows you to configure the Enterprise Site list

Allows you to configure the Enterprise Site list

Configure how Microsoft Edge treats cookies

Configure how Microsoft Edge treats cookies

Allows you to configure SmartScreen

Allows you to configure SmartScreen