Set RD Gateway authentication method

Specifies the authentication method that clients must use when attempting to connect to an RD Session Host server through an RD Gateway server. You can enforce this policy setting or you can allow users to overwrite this policy setting. By default, when you enable this policy setting, it is enforced. When this policy setting is enforced, users cannot override this setting, even if they select the "Use these RD Gateway server settings" option on the client.

To allow users to overwrite this policy setting, select the "Allow users to change this setting" check box. When you do this, users can specify an alternate authentication method by configuring settings on the client, using an RDP file, or using an HTML script. If users do not specify an alternate authentication method, the authentication method that you specify in this policy setting is used by default.

If you disable or do not configure this policy setting, the authentication method that is specified by the user is used, if one is specified. If an authentication method is not specified, the NTLM protocol that is enabled on the client or a smart card can be used for authentication.

Supported on: At least Windows Server 2003 operating systems with SP1 or Windows XP Professional with SP2

Allow users to change this setting
Registry HiveHKEY_CURRENT_USER
Registry PathSOFTWARE\Policies\Microsoft\Windows NT\Terminal Services
Value NameAllowExplicitLogonMethod
Value TypeREG_DWORD
Default Value
True Value1
False Value
Set RD Gateway authentication method


  1. Ask for credentials, use NTLM protocol
    Registry HiveHKEY_CURRENT_USER
    Registry PathSOFTWARE\Policies\Microsoft\Windows NT\Terminal Services
    Value NameLogonMethod
    Value TypeREG_DWORD
    Value2
  2. Ask for credentials, use Basic protocol
    Registry HiveHKEY_CURRENT_USER
    Registry PathSOFTWARE\Policies\Microsoft\Windows NT\Terminal Services
    Value NameLogonMethod
    Value TypeREG_DWORD
    Value1
  3. Use locally logged-on credentials
    Registry HiveHKEY_CURRENT_USER
    Registry PathSOFTWARE\Policies\Microsoft\Windows NT\Terminal Services
    Value NameLogonMethod
    Value TypeREG_DWORD
    Value4
  4. Use smart-card
    Registry HiveHKEY_CURRENT_USER
    Registry PathSOFTWARE\Policies\Microsoft\Windows NT\Terminal Services
    Value NameLogonMethod
    Value TypeREG_DWORD
    Value3


terminalserver.admx

Administrative Templates (Computers)

Administrative Templates (Users)