Disallow Negotiate authentication This policy setting allows you to manage whether the Windows Remote Management (WinRM) service will not accept Negotiate authentication from a remote client. If you enable this policy setting, the WinRM service will not accept Negotiate authentication from a remote client. If you disable or do not configure this policy setting, the WinRM service will accept Negotiate authentication from a remote client.

(1) GPO: Computer Configuration\Administrative Templates\Windows Components\Windows Remote Management (WinRM)\WinRM Service!Disallow Negotiate authentication (2) REG: HKEY_LOCAL_MACHINE\Software\Policies\Microsoft\Windows\WinRM\Service!AllowNegotiate