This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(128, 8%, 22%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EA%3C/text%3E%3C/svg%3E)
Dear Microsoft Support Team,
I am trying to disable NLA and I have it disabled from:
local group policie/administrative template/Windows Components/Remote Desktop Services/Remote Desktop Session Host/Security
But when I go to Control Panel/System and Security/System/Remote settings/System Properties/Remote/Remote Desktop
I can't uncheck the Allow connections only from computers running Remote Desktop with NLA because it is blocked.
Thank you for your time and support. I look forward to your prompt response.
Best regards,
Locked Question. This question was migrated from the Microsoft Support Community. You can vote on whether it's helpful, but you can't add comments or replies or follow the question. To protect privacy, user profiles for migrated questions are anonymized.
Hi Daysi
This machine is de domain controller.
I did this Allow connections only from Remote Desktop computers with NLA in both local group policy and domain group policy to affect both the local computer and the domain.
Run rsop.msc to view the enabled policies. And it does not appear
I also ran a GPReport with these results.
Best Regards
Alberto
Hello Albertosd77,
Thank you for your reply.
Please change "Require user authentication for remote connection by using NLA" to "Not Configured" via Domain GPO, and run command “gpupdate /force” on this machine.
Best Regards,
Daisy Zhou
Hi Daisy
Thank you for your reply
I currently have "Not Configured" from both the local computer and the domain GPO.
"Require user authentication for remote connection by using NLA"
Local
GPO in beta policy
in the gp report it does not appear because there are only the enabled and disabled ones and if it is not configured it does not appear. As it is currently
Previously it was disable and appeared like this.
Thank your for your help.
Alberto
Hello Albertosd77,
Good day!
So you have configured in different GPO before (such as ISD AD Domain Controllers Beta Findings and Beta policy), maybe any other GPO?
There must be one setting control it. I suggest you can double check the setting "Require user authentication for remote connection by using NLA" by viewing settings within GPO "ISD AD Domain Controllers Beta Findings and Beta policy" **and maybe other GPO on your DC.**Best Regards,
Daisy Zhou
Hello Daisy
I have checked the computer GPOs and they are set to not configured.
In the GP report it does not appear because only the enabled and disabled are there and if it is not configured it does not appear. As it is currently
I ran rsop.msc to see the enabled policies. And it does not appear.
Regards
Alberto
