Re: preconfig setting

eloiseau · ‎03-11-2021

Hi,

I am trying to find out a solution about the "save setting", in fact I would like to keep the username and clear the password at any time after an extend session or a disconnect session.

When I set true or False about allow-save: ,it keeps both or clear both fields

When I tried sso-cached-credential , the username field is not my solution because I have domain/SAMaccountname and I need the UPN.

Thanks

[email protected] · ‎03-14-2021

@eloiseau What you're seeing is expected. Allow-save - false will be delete both. and sso-cached-credential - true will pass the creds used to login to the windows profile.

Pulse Connect Secure Certified Expert

eloiseau · ‎03-15-2021

Hello and thanks about the reply,

The answer is not what I expected because I wanted to have a solution at least to keep the username.

If I keep the save password setting , do we you have a solution with a GPO to force the reset of an HKLM key everyday or after a reboot ?

because the save password is not secure (CISO comment) and otherwise I have some compliant that users had to reenter the username/password every day and at each extend session (4 hours).

Regards

[email protected] · ‎03-16-2021

@eloiseau Unfortunately, we cannot modify or control the saved credentials through the registry settings as that would pose serious security risk. Saved creds would be encrypted using the cryptoAPI libraries.

Pulse Connect Secure Certified Expert