Windows:DisableDomainCreds 和 CachedLogonsCount 之间的区别
Windows: Difference between DisableDomainCreds and CachedLogonsCount
以下设置如何,位于计算机配置 >> Windows 设置 >> 安全设置 >> 本地策略 >> 安全选项,相关:
- 交互式登录:要缓存的先前登录次数(如果域控制器不可用)
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\CachedLogonsCount
determines whether a user can log on to a Windows domain by using cached account information
- 网络访问:不允许存储用于网络身份验证的密码和凭据
HKEY_LOCAL_MACHINE\System\CurrentControlSet\Control\Lsa\DisableDomainCreds
determines whether Credential Manager saves passwords and credentials for later use when it gains domain authentication
CachedLogonsCount 只是一个更细粒度的策略, DisableDomainCreds 与将 CachedLogonsCount 设置为 0 相同吗?
以下设置如何,位于计算机配置 >> Windows 设置 >> 安全设置 >> 本地策略 >> 安全选项,相关:
- 交互式登录:要缓存的先前登录次数(如果域控制器不可用)
HKEY_LOCAL_MACHINE\Software\Microsoft\Windows NT\CurrentVersion\Winlogon\CachedLogonsCount
determines whether a user can log on to a Windows domain by using cached account information
- 网络访问:不允许存储用于网络身份验证的密码和凭据
HKEY_LOCAL_MACHINE\System\CurrentControlSet\Control\Lsa\DisableDomainCreds
determines whether Credential Manager saves passwords and credentials for later use when it gains domain authentication
CachedLogonsCount 只是一个更细粒度的策略, DisableDomainCreds 与将 CachedLogonsCount 设置为 0 相同吗?