FIX: The computer must be trusted for delegation and the current user account must be configured to allow delegation

Posted by Jarrod | Nov 12, 2022 | Fix | 5 |

After adding a domain user to a computer over a VPN, I encountered this error. When I logged in as them and tried to connect the VPN, I received the error message “The computer must be trusted for delegation and the current user account must be configured to allow delegation”. I assume this was because they hadn’t authenticated to the domain with their account on this computer yet.

**Be careful when using Registry Editor as you can corrupt your system.

Press start and enter regedit.exe, press enter to open Registry Editor.
Go to HKEY_LOCAL_MACHINE\Software\Microsoft\Cryptography\Protect\Providers\df9d8cd0-1501-11d1-8c7a-00c04fc297eb
Right click and select new -> DWORD (32-bit) Value
Name the DWORD “ProtectionPolicy”
Right click and select Modify…
Enter 1 as the value data and press OK to save.
Try again now and check if it is working. This may not work for every situation but did work for me.

About The Author

Jarrod

Hello, I’m Jarrod. On Jarrod's Tech I upload any tips and fixes that I come across while working in the IT industry. I also post Tutorials and Projects that I complete, these focus on Raspberry Pi and Synology NAS. I currently work as a Network Engineer and Systems Administrator.

5 Comments

Talha on September 16, 2024 at 8:57 pm

This helped. Thanks for sharing.
Reply
James Preston on July 1, 2025 at 6:46 pm

Jarrod, you are a g. This worked perfectly after troublehshooting pointlessly on the DC. Thank you very much.
Reply
- adminjarrod on July 25, 2025 at 8:04 pm
  
  Thanks James, Glad I could help.
  Reply
sjakurt on October 11, 2025 at 1:35 am

Wow. Fantastic. I was adding domain users via VPN. Getting the cursed TPM error when logging into M365 apps. Could not for the life of me figure it out. Finally hit the local credentials manager that triggered this very error. Much to my surprise this fixed the credentials manager error and the M365 TPM error! Coffee incoming!
Reply
- adminjarrod on November 2, 2025 at 2:12 pm
  
  Thanks sjakurt! I really appreciate it and glad i could help 🙂
  Reply

Leave a reply Cancel reply

ABOUT THIS SITE

Hello, I’m Jarrod. On Jarrod’s Tech I upload any tips and fixes that I come across while working in the IT industry. I also post Tutorials and Projects that I complete, these focus on Raspberry Pi and Synology NAS.

My aim on this site is to share knowledge with others and help them solve issues. If you have an idea, let me know.

Thank You for your Support! I really appreciate it!

Thank you for visiting

Hi, I hope you find my site useful! I, like you are an enthusiast and do not make any income whatsoever from this site. It is my blog site. Everything I write is in my spare time and posted “as is” and without warranty. All posts are correct at the time of writing, I do my best to keep my site current but cannot continually check every post. If you find something that no longer works, let me know via comment or email and I will happily do my best to update it. Systems, packages, software and repositories are constantly changing and I cannot keep up with every change or update.

M	T	W	T	F	S	S
						1
2	3	4	5	6	7	8
9	10	11	12	13	14	15
16	17	18	19	20	21	22
23	24	25	26	27	28	29
30	31