Cached Client Credentials May Cause Unexpected User Prompts

I ran into this problem the other day. Here’s the cause and the solution in case you run into the same problem.image

Cause: If incorrect client credentials are cached on the client computer, clients making requests through ISA Server may be prompted for alternative credentials, even though the ISA Server COM property ReturnAuthRequiredIfAuthUserDenied is set to its default false value for outbound traffic.

Solution: Clear the cached credentials, as follows:

  1. Click Start, and then click Run.
  2. In the Run dialog box, type control keymgr.dll. Then click OK.
  3. In the Stored User Names and Passwords dialog box, select the entry that you want to remove, and then click Remove.
  4. Click Close to close the Stored User Names and Passwords dialog box.
  5. Restart the client computer.

For more information on the ReturnAuthRequiredIfAuthUserDenied COM property, see the ISA Server SDK documentation (



Thomas W Shinder, M.D., MCSE
Sr. Consultant / Technical Writer

Prowess Consulting

PROWESS CONSULTING | Microsoft Forefront Security Specialist
Email: [email protected]
MVP — Forefront Edge Security (ISA/TMG/IAG)

About The Author

Leave a Comment

Your email address will not be published. Required fields are marked *

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Scroll to Top