Hello everyone,

If you a fan of updating systems, you probably have (or will have) issue with RDP connecting to some (or many) servers. Error is pretty stressful, because everything was fine before update …

With the release of the March 2018 Security bulletin, there was a fix that specifically addressed a CredSSP, “Remote Code Execution” vulnerability (CVE-2018-0886) which could impact RDP connections. If client and server are both patched, you can continue to using RDP without any issue. But, if one of them is not patched, you will be in trouble.

 

 

Luckily, solution exist and you need to change GPO / Local GPO settings. Of course, you need to be aware that changing of these setting will decrease your security and CredSSP will be vulnerable.

You need to configure Encryption Oracle Remediation under GPO Computer Configuration > Administrative Templates > System > Credentials Delegation.

 

 

More information about interoperability matrix, you can find on official Microsoft page.

Cheers!

Leave a Reply

Your email address will not be published. Required fields are marked *