After May 2018 security update: RDP "An authentication error occurred" "This could be due to CredSSP encryption oracle remediation".


[Client] i.e. On a Windows 10

When an IT Admin was trying to RDP to a Windows Server, they were getting the following error:

image


image

image


image


May 2018 'security update' is installed.

[CAUSE]

Starting in the May 2018 Security update we are enforcing the March 2018 CVE-2018-0886.


CredSSP updates for CVE-2018-0886

http://support.microsoft.com/en-us/help/4093492/credssp-updates-for-cve-2018-0866-march-13-2018


My colleagues Paul and Graeme go more in-depth here:

CredSSP, RDP and Raven

https://blogs.technet.microsoft.com/askpfeplat/2018/05/07/credssp-rdp-and-raven/


[Server where RDP to is failing]

image

image

image

May 2018 'security update' is not installed. Matter of fact, this hasn't been patched since May of 2017.


image

image

Deleted the gpo in the registry

Restarted WU service

image


The WSUS/SCCM admin needs to check why some of the Servers are not getting the security updates.


Thanks,

Yong [Somewhere in NorCal for the week]


Comments (0)

Skip to main content