How To Fix “Account Restrictions Are Preventing This User From Signing in”

When a user with Windows Server 2012 or later is unable to establish a Remote Desktop connection to a target system, the error message “Account Restrictions Are Preventing This User From Signing in” is displayed.

If your Windows Group Policy prevents your computer from communicating with distant systems, you may encounter this error. However, many people incorrectly assume that the issue is frequently due to expired passwords or blank passwords, even though this isn’t always the case.

Security administrators and other parties make heavy use of Remote Desktop Connections, and this trend is expected to continue. Since every application has flaws waiting to be discovered, it is reasonable to assume that there will be some. However, the following solutions should help you pinpoint the source of the problem.

Account Restrictions Are Preventing This User From Signing in

Method 1: Removing Windows Group Policy

Aforementioned security measures ensure that the credentials provided to the RD client are kept secret. However, in some cases, this policy does seem to result in the aforementioned error notice.

This means that disabling it is necessary in order to get rid of the error message and make the connection. In order to accomplish this, please follow these steps:

Step 1: You can access the Run dialogue box by pressing the Windows Key + R combination.

Step 2: Simply enter “gpedit.msc” in the search bar and press the Enter key.

Step 3: In the Local Group Policy Editor window, click the following directory:

Computer Configuration > Administrative Templates > System > Credentials Delegation

Step 4: Look for the policy named “Restrict delegation of credentials to the remote servers” on the right side of the page.

Step 5: Just double-click it to make changes. Disable it by selecting that option, clicking Apply, and then clicking OK.

Step 6: Check whether that resolves the problem.

Method 2: Establishing a Password System

The absence of a password for the current user account may also trigger the error message. Set up a password and check to see if that resolves the problem. If that’s the case, you’ll need to log in with a password every time.

On the other hand, you can avoid this by disabling a Windows Group Policy if you so choose. What you should do is this:

Step 1: As demonstrated above, launch the Local Group Policy Editor.

Step 2: Then, once you’ve cracked it open, head to this spot:

Computer Configuration > Windows Settings > Security Settings > Local Policies > Security Options

Step 3: Look for a policy labelled “Accounts: Limit local account use of blank passwords to console logon only” on the right side of the page.

Step 4: You may disable it by double-clicking on it and selecting “Edit.”

Step 5: Achieve this by selecting Apply and then clicking OK.


The following are some of the most common causes of this error message:

Group Policy in Windows: Some of the things your computer does are dictated by policies built into Windows. Sometimes the message appears because of a Windows Group Policy that forbids the Remote Desktop Client from sharing authentication information with the remote host. Turning off the policy appears to correct the problem.

If the user account you’re attempting to use to make a remote connection from doesn’t have a password, you may also see this error notice. A password or the removal of this policy altogether will be necessary in such a situation.