Caching Domain Logon Credentials on Windows You can create separate GPOs in your domain to control the use of cached credentials for different devices and user categories (for example, using GPO Security filters, WMI filters, or deploying the CashedLogonsCount registry parameter using GPP Item level targeting)
Interactive logon: Number of previous logons - Question 2) Reset count: the cached logon count is reset each time you successfully logon to a domain controller Therefore, when you connect to the company domain, the system will update the cached logon information
Stop Worrying and Love the Outage, Vol III: Cached Logons By default, the number of cached logons setting is set to a value of 10, which is generally high enough for most organizations The security risk for this setting is based on use abuse of the cached credentials by bad actors
Interactive logon: Number of previous logons to cache (in case domain . . . This setting controls how many successful domain logons the computer remembers Also, Windows does not cache distinct credentials – just the last X number of logon attempts For a typical workstation used by one person, all 10 or so cached credentials will be for that same user
Cached domain logon information - Windows Server This article describes how cached domain logon information works and how to control cached logon information Original KB number: 172931 Summary Windows caches previous users' logon information locally so that they can log on if a logon server is unavailable during later logon attempts
How To Limit Cached Domain Credentials on Windows 10 It’s easier to do so through GPO Head over to the following location, Computer Configuration > Windows Settings > Security Settings > Local Policies > Security Options And set the Interactive Logon: Number of previous logons to cache to 1 for laptops and 0 for desktops