![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(172.8, 18%, 26%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EDK%3C/text%3E%3C/svg%3E)
28,661 questions
Hello,
This is because the user has a cached logon into that computer.
There are 2 options:
- The inmediate one, would be to delete the cached logons into that specific computer, thus disabling the offline logon of the user. For this, you will need to delete (backup first, just in case) the keys at HKEY_LOCAL_MACHINE\SECURITY\CACHE that start with NLS$<number> (NLS$Control should remain).
- To prevent this in the future, it will be required to propagate a GPO to prevent number of cached logons into the computers using the Policy "Interactive logon: Number of previous logons to cache" and setting the value to "0"
---------------------------------------------------------------------------------------------------------------------------------------------
--If the reply is helpful, please Upvote and Accept as answer--