Topic: Windows 10 domain clients unable to save passwords in Internet Explorer

[dvdsmith]

I recently joined a number of stations with a fresh Windows 10 install to a 9.1 server. All seemed fine until my users began complaining about the inability to save password for certain websites in Internet Explorer. So, I pull up Control Panel > Credential Manager only to return an error 0x80090345. I also found it only happened to domain accounts, with or without admin rights. So far it only seems to affect clean installs and not those upgraded from 7 to 10.

Further research determined it is definitely Samba related and this seems to be the consistent fix:

Open the registry editor (regedit.exe), navigate to HKEY_LOCAL_MACHINE\Software\Microsoft\Cryptography\Protect\Providers\df9d8cd0-1501-11d1-8c7a-00c04fc297eb and add a new DWORD subkey ProtectionPolicy with the value 1

This same fix is also referred to here to resolve a Windows 10 + Samba + Outlook 2013 issue.
https://forums.contribs.org/index.php/topic,52535.msg270093.html#msg270093

I understand this has been fixed in Samba 4.2. is there any point in a bug report on this issue? Is there a better recommended fix for this that I missed?

Update: It also affects Win 7-10 upgraded systems joined to the 9.1 server's domain. Those joined to an SME Server 8.2 prior to upgrade are not having this issue.

[Stefano]

Thank you for your reporting
Anyway, I suggest you not to use internet explorer

[dvdsmith]

Thank you for your reporting
Anyway, I suggest you not to use internet explorer

I recommend that as I can, but there are sites specific to our business that are IE only. Not really an option.

[Stefano]

In 2016? WTH?

[dvdsmith]

Seriously, yes. Multi-billion dollar international corporations no less. And I work for a company that does business with them, so we have to use the portals they provide to do said business. Just be glad I no longer have to support a site that requires both Sun Java and Microsoft JVM. THAT was a nightmare.

[Stefano]

I agree