Product Documentation

Prevent Receiver for Windows from caching passwords

Nov 04, 2014

By default, Receiver for Windows stores users' passwords when they log on to StoreFront stores. To prevent Receiver for Windows, but not Receiver for Windows Enterprise, from caching users' passwords, you edit the files for the authentication service.

Important: In multiple server deployments, use only one server at a time to make changes to the configuration of the server group. Ensure that the Citrix StoreFront management console is not running on any of the other servers in the deployment. Once complete, propagate your configuration changes to the server group so that the other servers in the deployment are updated.
  1. Use a text editor to open the inetpub\wwwroot\Citrix\Authentication\App_Data\Templates\UsernamePassword.tfrm file.
  2. Locate the following line in the file.
    @SaveCredential(id: @GetTextValue("saveCredentialsId"), labelKey: "ExplicitFormsCommon:SaveCredentialsLabel", initiallyChecked: ControlValue("SaveCredentials"))
  3. Comment the statement as shown below.
    <!-- @SaveCredential(id: @GetTextValue("saveCredentialsId"), labelKey: "ExplicitFormsCommon:SaveCredentialsLabel", initiallyChecked: ControlValue("SaveCredentials")) -->

    Receiver for Windows users must enter their passwords every time they log on to stores that use this authentication service. This setting does not apply to Receiver for Windows Enterprise.


Using Registry Editor incorrectly can cause serious problems that can require you to reinstall the operating system. Citrix cannot guarantee that problems resulting from incorrect use of Registry Editor can be solved. Use Registry Editor at your own risk. Make sure you back up the registry before you edit it.

By default, Receiver for Windows automatically populated the last username entered. To supress population of the username field, edit the registry on the user device:

  1. Create a REG_SZ value HKLM\SOFTWARE\Citrix\AuthManager\RememberUsername.
  2. Set its value “false”.