System cryptography: Force strong key protection for user keys stored on the computer

Applies To: Windows Server 2003, Windows Server 2003 R2, Windows Server 2003 with SP1, Windows Server 2003 with SP2

System Cryptography: Force strong key protection for user keys stored on the computer

Description

This security setting determines if users' private keys require a password to be used.

The options are:

  • User input is not required when new keys are stored and used

  • User is prompted when the key is first used

  • User must enter a password each time they use a key

    For more information, see Public Key Infrastructure.

Default: Not defined.

Configuring this security setting

You can configure this security setting by opening the appropriate policy and expanding the console tree as such: Computer Configuration\Windows Settings\Security Settings\Local Policies\Security Options\

For specific instructions about how to configure security policy settings, see Edit security settings on a Group Policy object.

For more information, see: