IfCachedLogonsCount (HKLM\SOFTWARE\Microsoft\WindowsNT\CurrentVersion\Winlogon)has a value other than0, what information is stored locally on the server? Does Microsoft recommend to set thisregistry key to Zero for security purposes?Thanks in advanced,Eric Sabo

CachedLogonsCount setshow many user account entries the OS saves in the logon cache on the local computer. Windows saves the user account data that is used to log on to the computer so the data can be used if the user's domain controller is unavailable. If you set the value of this entry to 0, Windows does not save any user account data in the logon cache which means that if the domain controller is unavailable, the user will be unable to login to the machine with his domain credentials.The risk associated if this setting has a value of greater than 0 is somebody may try to brute-force the password of the user when the machine is offline. OTOH, if the value is set to 0, you may end up with users being unable to login when the machine is offline or when a DC is down or having a problem and unable to authenticate the users.If you are looking at this purely on a security standpoint, setting it to 0 is necessary to reduce risks of system break-in. However, if you are looking at it from a service delivery perspective, a 0 value may cause service disruption when the DC is down.Regards,Salvador Manaois III MCSE MCSA CEH MCITP | Enterprise/Server Admin Bytes & Badz : http://badzmanaois.blogspot.com

Thanks so much for this information. It has been very helpful.