![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(300.8, 82%, 39%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EG%3C/text%3E%3C/svg%3E)
Windows Server
A family of Microsoft server operating systems that support enterprise-level management, data storage, applications, and communications.
13,726 questions
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(217.60000000000002, 17%, 31%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EZH%3C/text%3E%3C/svg%3E)
Hello,
The Group Policy Object (GPO) setting "Allow cached logon for smart card users" is not available in the default Group Policy Editor (GPE) because it is specific to smart card logon behavior. However, you can achieve similar functionality by configuring related settings or using alternative methods.
The setting you're looking for might not exist in newer versions of Windows or might have been moved. To confirm:
Open the Group Policy Management Editor. Navigate to: Computer Configuration > Administrative Templates > Windows Components > Smart Card. Look for any related settings, such as "Interactive logon: Number of previous logons to cache".
If the specific setting is unavailable, you can configure cached logons for all users, including smart card users, by adjusting the following GPO setting:
Navigate to: Computer Configuration > Windows Settings > Security Settings > Local Policies > Security Options.
Locate the policy: Interactive logon: Number of previous logons to cache (in case domain controller is not available)
Set this to a value greater than 0 (e.g., 10). This allows users to log in with cached credentials when the domain is unavailable.
Note:
Ensure that the domain controllers are reachable during normal operations so that credentials can be cached.
Caching credentials, including smart card logons, can pose a security risk. Evaluate the trade-offs before enabling this feature.
Ensure the GPO is applied to the correct Organizational Unit (OU) and that the systems have successfully updated their Group Policy (run gpupdate /force on the target systems).
I hope the information above is helpful.
Best regards
Zunhui
============================================
If the Answer is helpful, please click "Accept Answer" and upvote it.