Always prompt for password upon connection

Supported OS tags: Windows10, Windows10RT, Windows11, Windows7, Windows8, Windows81, WindowsRT, WindowsRT81, WindowsServer2003, WindowsServer2008, WindowsServer2012, WindowsServer2012R2, WindowsServer2016, WindowsVista, WindowsXP

This policy setting specifies whether Remote Desktop Services always prompts the client for a password upon connection. You can use this setting to enforce a password prompt for users logging on to Remote Desktop Services, even if they already provided the password in the Remote Desktop Connection client. By default, Remote Desktop Services allows users to automatically log on by entering a password in the Remote Desktop Connection client. If you enable this policy setting, users cannot automatically log on to Remote Desktop Services by supplying their passwords in the Remote Desktop Connection client. They are prompted for a password to log on. If you disable this policy setting, users can always log on to Remote Desktop Services automatically by supplying their passwords in the Remote Desktop Connection client. If you do not configure this policy setting, automatic logon is not specified at the Group Policy level.

This policy has no additional user input fields.

• Computer
  Disconnect remote session on lock for legacy authentication

  Windows 11 22H2 SERVER
• Computer
  Disconnect remote session on lock for Microsoft identity platform authentication

  Windows 11 22H2 SERVER
• Computer
  Do not allow local administrators to customize permissions

  At least Windows Server 2003
• Computer
  Enable Microsoft Entra ID Authentication Enforcement

  At least Windows 11 Version 24H2
• Computer
  Require secure RPC communication

  At least Windows Server 2003
• Computer
  Require use of specific security layer for remote (RDP) connections

  At least Windows Vista
• Computer
  Require user authentication for remote connections by using Network Level Authentication

  At least Windows Vista