Share via

script to delete saved password for IE/Edge

penguin_enforcer 16 Reputation points
2022-02-02T19:37:23.803+00:00

Due to some compliance requirements, I am now required to disable the "save usernames & passwords" option for IE on all my systems. That part I have figured out via creating a GPO.

However, part of the compliance requirement also states that I must remove any existing passwords that have previously been saved. The GPO does not have that capability. Any passwords that a user has already saved will still be available to use, they just won't be able to save new ones.

I'm trying to find exactly where these usernames and/or passwords are saved so that I can write a script to permanently delete them. I've found conflicting information (or maybe just different information for different browser versions, but that's not really clarified in the articles I've found).

Some may be saved in the registry, some may be saved via vaultcli.dll , or perhaps somewhere in the users' %AppData% profile. In doing some testing with my own account, I have not been able to definitively locate exactly WHERE these credentials are written. I need to avoid relying on users to delete their own stuff (because we all know how that will end :) )

Any thoughts / references / links would be greatly appreciated. Thanks.

Microsoft Edge | Microsoft Edge development
0 comments

1 answer

Sort by: Most helpful
Most helpful Newest Oldest
  1. Anonymous
    2022-02-03T07:31:19.217+00:00

    Hi @AndiCausemaker-8021 ,

    According to your description, I did a related search on the issue and some simple tests.

    In Edge

    If the saved passwords you mentioned are under this path: edge://settings/passwords. You can navigate to this file path:

     C:\Users\<username>\AppData\Local\Microsoft\Edge\User Data\<Profile>

    <Profile> : you could navigate to edge://version in Edge and check your profile name. like this:

    170892-image.png
    And then find the file named Login Data, and delete it.

    In IE

    Try using vaultcmd.exe to find the path to web credentials. Simple example:

    170894-image.png
    Then use the vaultcmd /deletecreds command and check if it works. You could also refer to this related thread.

    Best regards,
    Xudong Peng

    If the answer is the right solution, please click "Accept Answer" and kindly upvote it. If you have extra questions about this answer, please click "Comment".
    Note: Please follow the steps in our documentation to enable e-mail notifications if you want to receive the related email notification for this thread.

Your answer

Answers can be marked as 'Accepted' by the question author and 'Recommended' by moderators, which helps users know the answer solved the author's problem.