Network security: Allow Local System to use computer identity for NTLM

Network security: Allow Local System to use computer identity for NTLM

This policy setting allows Local System services that use Negotiate to use the computer identity when reverting to NTLM authentication.

If you enable this policy setting, services running as Local System that use Negotiate will use the computer identity. This might cause some authentication requests between Windows operating systems to fail and log an error.

If you do not configure this policy setting, services running as Local System that use Negotiate when reverting to NTLM authentication will authenticate anonymously. This was the behavior in previous versions of Windows.

This policy is supported on at least Windows 7 or Windows Server 2008 R2.

Policy path: 

Computer Configuration\Windows Settings\Local Policies\Security Options

Supported on: 

At least Windows 7, Windows Server 2008 R2

Registry settings: 

MACHINE\System\CurrentControlSet\Control\Lsa\UseMachineId

Reboot required: 

No

Related content