Allow certificates with no extended key usage certificate attribute

This policy setting lets you allow certificates without an Extended Key Usage (EKU) set to be used for logon. In versions of Windows prior to Windows Vista smart card certificates that are used for logon require an enhanced key usage (EKU) extension with a smart card logon object identifier. This policy setting can be used to modify that restriction. If you enable this policy setting certificates with the following attributes can also be used to log on with a smart card:- Certificates with no EKU- Certificates with an All Purpose EKU- Certificates with a Client Authentication EKUIf you disable or do not configure this policy setting only certificates that contain the smart card logon object identifier can be used to log on with a smart card.

Sends all intranet traffic over to Internet Explorer

Sends all intranet traffic over to Internet Explorer

Allows you to configure the Enterprise Site list

Allows you to configure the Enterprise Site list

Configure how Microsoft Edge treats cookies

Configure how Microsoft Edge treats cookies

Allows you to configure SmartScreen

Allow certificates with no extended key usage certificate attribute

More From Author

Sends all intranet traffic over to Internet Explorer

Sends all intranet traffic over to Internet Explorer

Allows you to configure the Enterprise Site list

2Comments

Restrict unpacking and installation of gadgets that are not digitally signed.

Allow signature keys valid for Logon

You May Also Like:

Sends all intranet traffic over to Internet Explorer

Sends all intranet traffic over to Internet Explorer

Allows you to configure the Enterprise Site list

Allows you to configure the Enterprise Site list

Configure how Microsoft Edge treats cookies

Configure how Microsoft Edge treats cookies

Allows you to configure SmartScreen

Allows you to configure SmartScreen