This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(179.20000000000002, 57.00000000000001%, 27%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EAS%3C/text%3E%3C/svg%3E)
After upgrade Windows 11 22H2 I Can't use saved credential (Windows Defender Credential Guard does not allow using saved credentials).
Before it works.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(118.4, 21%, 21%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ERR%3C/text%3E%3C/svg%3E)
Same issue here!
Still this issue is present.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(41.6, 73%, 14%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EF%3C/text%3E%3C/svg%3E)
resolve with this
Go to HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\DeviceGuard.
Add a new DWORD value named EnableVirtualizationBasedSecurity and set its value to 0.
Add another new DWORD value named RequirePlatformSecurityFeatures and set that to 0.
Now go to HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa.
Add a new DWORD value named LsaCfgFlags and set it to 0.
Restart your computer.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(188.79999999999998, 47%, 28%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EDN%3C/text%3E%3C/svg%3E)
I have the same issue. My windows 11 22H2 is up to date.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(35.2, 22%, 13%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ELK%3C/text%3E%3C/svg%3E)
Thank you for the information.
Still would be nice to see the related official fix from Microsoft as well.
But why is this feature enabled in Win 11 Pro?
I'm using the Pro version and I have exactly the same behavior/issue
Br
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(233.6, 17%, 32%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EPM%3C/text%3E%3C/svg%3E)
This same problem win 11 pro ...
I'm using 11 Pro and have this same problem...
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(195.2, 42%, 28%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EB%3C/text%3E%3C/svg%3E)
I can’t save credentials for Remote Desktop. I was using streamdeck to automatically sign me in to two different rdp. Now it’s not working. I don’t want to change registry because that could cause other issues since I am not trained in this type of stuff . So what do I do? Switch to a different rdp provider? Or will windows be fixing this soon? I’m on win11 pro latest release .
It seems to be part of Microsoft's efforts to make Windows more secure by default. You can read about is here:
https://learn.microsoft.com/en-us/windows/security/identity-protection/credential-guard/credential-guard-how-it-works
Microsoft clarified how to turn it off in the case where it was turned on by the Windows 11 22H2 update (see above my recent post) with a simple group policy change.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(233.6, 54%, 32%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EA5%3C/text%3E%3C/svg%3E)
Saving generic windows credentials works great for rdc, but if i try to start any other tools like edge or ssms i can not use the saved windows credentials...
C:\Windows\System32\runas.exe /user:domain\user /savecred "C:\Program Files (x86)\Microsoft SQL Server Management Studio 19\Common7\IDE\Ssms.exe"
C:\Windows\System32\runas.exe /savecred /user:DOMIAN\USER "C:\Program Files (x86)\Microsoft\Edge\Application\msedge.exe"
is there any solution to that?
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(310.4, 50%, 40%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EBP%3C/text%3E%3C/svg%3E)
Works great in conjunction with fact that security teams are also making us use ridiculously long and complex password that take literally 2 minutes to type in.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(19.2, 92%, 11%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3ETW%3C/text%3E%3C/svg%3E)
AdamStefanowski,
Not sure if you've already figured this out, but there's a solution for SSMS. I used these instructions: https://dba.stackexchange.com/questions/66014/connect-to-sql-server-with-windows-authentication-in-a-different-domain
https://www.youtube.com/watch?v=WiVBPsqB9b4
UniServer:1433 (1433 is the default port, you may need a different port, especially if you are connecting to a named instance)MYDOMAIN\MYUSER)![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(67.2, 70%, 16%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EK%3C/text%3E%3C/svg%3E)
this fixed it! thanks.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(150.4, 19%, 24%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EMS%3C/text%3E%3C/svg%3E)
I wish I'd seen this thread sooner! It may seem like a small thing, but constantly typing in credentials can get really irritating. I’ve been looking for an answer to this for ages and even started using HelpWire as a free alternative to Windows Remote. Turns out, it’s all so simple
A cumullative update to 22H2 was released today.
After its installation, the system clearly interpreted the saved passwords differently. After deleting them and rewriting, everything returned to normal.
So, problem was in 22H2.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(192, 84%, 28%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EDS%3C/text%3E%3C/svg%3E)
What is the KB number of this update? I have seen the update.
Doc
What is the KB number of this update? I have not seen the update.
Doc
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(166.4, 20%, 26%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EDJ%3C/text%3E%3C/svg%3E)
Hi, could you please elaborate? i deleted my rdp shortcuts, also did edit in the rdp, but still it doesn't work...
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(236.8, 96%, 32%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EZ%3C/text%3E%3C/svg%3E)
I have the same issue!
Cant remember password... Always get login error!
I have to type it everytime I want to connect through RDP.
This is a Windows 11 22H2 bug!
Idon't know what was the KB number (it was cumullative update, so I don't know which part changed mstsc behavior).
But,
I was happy only 1 day:(
After turn off my PC at night, all the Microsoft demons was back.
Now, again, I have to write password all the time!
Due to the passwords to my client are difficult and I have to wite it many times, save etc., it is more dangerous that before.
So MIcrosoft give my back my credential policy!!!
KB5017389 seems to have corrected the problem.
https://support.microsoft.com/en-us/topic/september-30-2022-kb5017389-os-build-22621-608-preview-62f353a0-696a-49d8-a78f-a14910f30ae3
The only thing I see in the release notes is this:
All seems ok now.
Doc
For me its still the same, it asks for the credentials even though i use edit or delete the connection.
When asked if i anser yes to i want to remember and save the credentials.... it still asks for it...
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(240, 90%, 33%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EPC%3C/text%3E%3C/svg%3E)
Me to. The latest patch still won't save my password. This worked for me.
Go to HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\DeviceGuard.
Add a new DWORD value named EnableVirtualizationBasedSecurity and set its value to 0.
Add another new DWORD value named RequirePlatformSecurityFeatures and set that to 0.
Now go to HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa.
Add a new DWORD value named LsaCfgFlags and set it to 0.
perfect I followed your advice the first time he asked me for the password all the following he entered directly without typing the password
perfetto ho seguito il tuo consiglio la prima volta mi ha chiesto la password tutte le successive è entrrato direttamente senza digitare la password
perfect I followed your advice the first time he asked me for the password all the following he entered directly without typing the password
perfetto ho seguito il tuo consiglio la prima volta mi ha chiesto la password tutte le successive è entrrato direttamente senza digitare la password
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(268.8, 22%, 36%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EA%3C/text%3E%3C/svg%3E)
Today I installed next updates:
After several tries (Windows 11 didn't want save my choices:)) finally "using of saved credentials" works.
Just in case I restarted PC several times to check how permanently is this solution.
All works fine.
So, that's next prove that my problem was absolutely the result of Windows update 22H2.
In the meantime I tries change settings in gpedit.msc to check can they help me.
"Allow delegating default credentials with NTLM-only server authentication Enabled No
Allow delegating default credentials Enabled No
Allow delegating fresh credentials Enabled No
Allow delegating fresh credentials with NTLM-only server authentication Enabled No
Remote host allows delegation of non-exportable credentials Enabled No
Allow delegating saved credentials Enabled No
Allow delegating saved credentials with NTLM-only server authentication Enabled No
"
I don't have time now to check which of the settings may be related to my problem.
I leave it as it is while it works.
The link says "Starting with Windows 11 Enterprise 22H2, compatible systems have Windows Defender Credential Guard turned on by default. This changes the default state of the feature in Windows, though system administrators can still modify this enablement state. Windows Defender Credential Guard can still be manually enabled or disabled via the methods documented below.":
https://learn.microsoft.com/en-us/windows/security/identity-protection/credential-guard/credential-guard-manage
It seems this issue is not going to be "fixed". It is a purposeful change to improve security and you must turn it off if you don't like it.
These also looked interesting:
https://learn.microsoft.com/en-us/windows/security/identity-protection/remote-credential-guard
https://learn.microsoft.com/en-us/windows/security/identity-protection/credential-guard/credential-guard-how-it-works
Thanks for this important information.
Still it is really not user friendly from Microsoft to make such a surprise for its customers.
How come nobody hasn't foreseen such situation in regards to Remote Desktop usage?
This new changes essentially broke the "Save the credentials" option and made it literally useless.
They could at least provide some info messages beside this option or something like that.
Plus disabling this now-default setting was not made user friendly at all: all those group policy and registry manipulations...
Thie documentation was updated today. Looks to be clearer.
The documentation now says: "Windows Defender Credential Guard can be disabled via several methods explained below, depending on how the feature was enabled. For devices that had Windows Defender Credential Guard automatically enabled in the 22H2 update and did not have it enabled prior to the update, it is sufficient to disable via Group Policy."
The fact itself that in order to achieve the desired effect we still need
to perform multiple steps including changing/removing specific keys in the registry - all this definitely does not provide premium experience.
Why there is no dedicated UI control in Windows Security Center (Windows Defender), some toggle or something like that?
It's sad that Microsoft didn't care about that.
I am not even saying that users now need to google for the solution to this problem etc.
But thank you for the additional info.
guys this is the solution
I also have 11 pro 22h2 with this method I have definitely solved
no longer asks for the password
win+r then regedit
after
go to HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\DeviceGuard.
add a new DWORD value named EnableVirtualizationBasedSecurity and set its value to 0.
add another new DWORD value named RequirePlatformSecurityFeatures and set that to 0.
now go to HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa.
add a new DWORD value named LsaCfgFlags and set it to 0.
very simple