Contact PDC on logon failure

Defines whether a domain controller (DC) should attempt to verify with the PDC the password provided by a client if the DC failed to validate the password.

Contacting the PDC is useful in case the client's password was recently changed and did not propagate to the DC yet. Users may want to disable this feature if the PDC is located over a slow WAN connection.

To enable this feature, click Enabled.

To disable this feature, click Disabled.

Supported on: At least Windows Server 2003 operating systems or Windows XP Professional

Registry HiveHKEY_LOCAL_MACHINE
Registry PathSoftware\Policies\Microsoft\Netlogon\Parameters
Value NameAvoidPdcOnWan
Value TypeREG_DWORD
Enabled Value0
Disabled Value1

netlogon.admx

Administrative Templates (Computers)

Administrative Templates (Users)