Policy
Configure RPC listener settings
Windows 11 25H2
Policy overview
Key metadata and intent for this policy.
Supported OS tags: Windows10, Windows10RT, Windows11, WindowsServer2016
This policy setting controls which protocols incoming RPC connections to the print spooler are allowed to use. By default, RPC over TCP is enabled and Negotiate is used for the authentication protocol. Protocols to allow for incoming RPC connections: -- "RPC over named pipes": Incoming RPC connections are only allowed over named pipes -- "RPC over TCP": Incoming RPC connections are only allowed over TCP (the default option) -- "RPC over named pipes and TCP": Incoming RPC connections will be allowed over TCP and named pipes Authentication protocol to use for incoming RPC connections: -- "Negotiate": Use the Negotiate authentication protocol (the default option) -- "Kerberos": Use the Kerberos authentication protocol If you disable or do not configure this policy setting, the above defaults will be used.
Registry values
How enabled and disabled states update the registry.
No explicit registry values are set for enabled or disabled states.
Policy elements
Inputs and configuration options exposed by this policy.
| Element | Type | Registry mapping | Constraints & behavior |
|---|---|---|---|
Protocols to allow for incoming RPC connections: ID RpcListenerProtocols_Enum | enum | HKLM\Software\Policies\Microsoft\Windows NT\Printers\RPC\RpcProtocols Type REG_DWORD | Options: RPC over named pipes (3), RPC over TCP (5), RPC over named pipes and TCP (7) |
Authentication protocol to use for incoming RPC connections: ID RpcAuthenticationProtocol_Enum | enum | HKLM\Software\Policies\Microsoft\Windows NT\Printers\RPC\ForceKerberosForRpc Type REG_DWORD | Options: Negotiate (0), Kerberos (1) |
Other policies in this category
Explore related policies at the same level.
- ComputerActivate Internet printingWindows 2000 only
- ComputerAdd Printer wizard - Network scan page (Managed network)At least Windows Vista
- ComputerAdd Printer wizard - Network scan page (Unmanaged network)At least Windows Vista
- ComputerAllow job name in event logsAt least Windows Server 2012, Windows 8 or Windows RT
- ComputerAllow Print Spooler to accept client connectionsAt least Windows Server 2003
- ComputerAllow printers to be publishedAt least Windows 2000
- ComputerAllow pruning of published printersAt least Windows 2000
- ComputerAlways rasterize content to be printed using a software rasterizerAt least Windows Server 2012, Windows 8 or Windows RT
- ComputerAlways render print jobs on the serverAt least Windows Vista
- ComputerAlways send job page count information for IPP printersAt least Windows Server 2016, Windows 10
- ComputerAutomatically publish new printers in Active DirectoryWindows Server 2003, Windows XP, and Windows 2000 only
- ComputerChange Microsoft XPS Document Writer (MXDW) default output format to the legacy Microsoft XPS format (*.xps)At least Windows Server 2012, Windows 8 or Windows RT