I am trying to find out a solution about the "save setting", in fact I would like to keep the username and clear the password at any time after an extend session or a disconnect session.
When I set true or False about allow-save: ,it keeps both or clear both fields
When I tried sso-cached-credential , the username field is not my solution because I have domain/SAMaccountname and I need the UPN.
@eloiseau What you're seeing is expected. Allow-save - false will be delete both. and sso-cached-credential - true will pass the creds used to login to the windows profile.
Hello and thanks about the reply,
The answer is not what I expected because I wanted to have a solution at least to keep the username.
If I keep the save password setting , do we you have a solution with a GPO to force the reset of an HKLM key everyday or after a reboot ?
because the save password is not secure (CISO comment) and otherwise I have some compliant that users had to reenter the username/password every day and at each extend session (4 hours).
@eloiseau Unfortunately, we cannot modify or control the saved credentials through the registry settings as that would pose serious security risk. Saved creds would be encrypted using the cryptoAPI libraries.