Specify credential providers to exclude from the logon screen

Use this group policy to list specified credential providers to exclude from the login options on the Windows login screen when users access the machine remotely.

You must list the Class IDentifiers (CLSID) for the providers you would like to exclude. For example, to exclude the Windows Password Provider and the Smartcard Credential Provider on machines running Windows 8 or later and Windows Server 2012 or later, you would enter the following:

{60b78e88-ead8-445c-9cfd-0b87f74ea6cd},{8FD7E19C-3BF7-489B-A72C-846AB3678C96}

To find the CLISDs for installed credential providers, navigate to the following location in the HKEY_LOCAL_MACHINE registry:

SOFTWARE\Microsoft\Windows\CurrentVersion\Authentication\Credential Providers

If this policy is set to Disabled or Not configured, only the Windows Password credential provider will be disabled by default.