none
RDC to Windows server not working after Windows 10 1803 Cumulative update KB4103721 installation

    Question

  • Hi,

    My system restarted automatically when I came back after break and found that Windows 10 v1803 Cumulative update KB4103721 was successfully installed in my machine. When I tried to RDC to one of the server it showed error "An authentication error has occurred" "This could be due to CredSSP encryption oracle remediation".

    I browsed for the error and found few links which recommends to apply the said patch KB4103721. That patch had caused me the issue, earlier it worked fine without any issues.

    Remote Desktop App seems to be working.

    Could anyone please help me in finding a resolution for the same.

    Regards,

    Aswin

    Wednesday, May 09, 2018 1:41 PM

Answers

  • had same issue today, RDC and connections to VMs via VMMSSP both broke. 

    Fix (workaround) is below

    found this https://support.microsoft.com/en-us/help/4103721/windows-10-update-kb4103721

    • Addresses an issue that may cause an error when connecting to a Remote Desktop server. For more information, see CredSSP updates for CVE-2018-0886.

    directed to here https://support.microsoft.com/en-us/help/4093492/credssp-updates-for-cve-2018-0886-march-13-2018

    • An update to change the default setting from Vulnerable to Mitigated.

    the update changed

    Policy path: "Computer Configuration -> Administrative Templates -> System -> Credentials Delegation"

    Setting name: "Encryption Oracle Remediation"

    I enabled the local policy and set it back to Vulnerable 

    Both RDC and VMs via VMMSSP are working

    • Edited by APL IT Wednesday, May 09, 2018 8:47 PM
    • Proposed as answer by I60r Thursday, May 10, 2018 8:18 AM
    • Marked as answer by Aswin Jay Friday, May 11, 2018 7:58 AM
    Wednesday, May 09, 2018 8:34 PM

All replies

  • Having the same issue here. We are a little worried this may become wide spread with our RDP users. Any updates?
    Wednesday, May 09, 2018 5:37 PM
  • Our organization has noticed the same thing. CredSSP error is occurring after 1803 was pushed down. We have machine that didnt get the update yet and RDP still works. We are convinced it is the update. Other machines have the update (windows 10 home) so all we can do is prolong the restart (7 days at a time), and hope the machines don't BSOD or otherwise freeze up!!

    HELP PLEASE

    This could put us out of business!

    All of our clients require RDP access!!!

    Wednesday, May 09, 2018 5:52 PM
  • had same issue today, RDC and connections to VMs via VMMSSP both broke. 

    Fix (workaround) is below

    found this https://support.microsoft.com/en-us/help/4103721/windows-10-update-kb4103721

    • Addresses an issue that may cause an error when connecting to a Remote Desktop server. For more information, see CredSSP updates for CVE-2018-0886.

    directed to here https://support.microsoft.com/en-us/help/4093492/credssp-updates-for-cve-2018-0886-march-13-2018

    • An update to change the default setting from Vulnerable to Mitigated.

    the update changed

    Policy path: "Computer Configuration -> Administrative Templates -> System -> Credentials Delegation"

    Setting name: "Encryption Oracle Remediation"

    I enabled the local policy and set it back to Vulnerable 

    Both RDC and VMs via VMMSSP are working

    • Edited by APL IT Wednesday, May 09, 2018 8:47 PM
    • Proposed as answer by I60r Thursday, May 10, 2018 8:18 AM
    • Marked as answer by Aswin Jay Friday, May 11, 2018 7:58 AM
    Wednesday, May 09, 2018 8:34 PM
  • Thanks, that worked for me.
    Thursday, May 10, 2018 7:23 AM
  • Hi,

    Please click “Mark as answer” if any of above reply is helpful. It would make this reply to the top and easier to be found for other people who has the similar problem.

    Best Regards,
    Eve Wang

    Please remember to mark the replies as answers if they help.
    If you have feedback for TechNet Subscriber Support, contact tnmff@microsoft.com.

    Thursday, May 10, 2018 9:05 AM
    Moderator
  • Thanks It was Helpfull
    Thursday, May 10, 2018 5:02 PM
  • I found this article and it resolved the issue for me.  I was connecting to a Windows 8.1 machine from a Windows 10 machine after doing MS updates.  Registry edit, no reboot, worked immediately: 

    https://southjerseytechies.net/blog/remote-desktop-credssp-encryption-oracle-remediation/


    Thursday, May 10, 2018 10:08 PM
  • had same issue today, RDC and connections to VMs via VMMSSP both broke. 

    Fix (workaround) is below

    found this https://support.microsoft.com/en-us/help/4103721/windows-10-update-kb4103721

    • Addresses an issue that may cause an error when connecting to a Remote Desktop server. For more information, see CredSSP updates for CVE-2018-0886.

    directed to here https://support.microsoft.com/en-us/help/4093492/credssp-updates-for-cve-2018-0886-march-13-2018

    • An update to change the default setting from Vulnerable to Mitigated.

    the update changed

    Policy path: "Computer Configuration -> Administrative Templates -> System -> Credentials Delegation"

    Setting name: "Encryption Oracle Remediation"

    I enabled the local policy and set it back to Vulnerable 

    Both RDC and VMs via VMMSSP are working

    YYYEEEEESSSSS.... Thank you sooooo much. Worked instantly.
    Friday, May 11, 2018 12:00 AM
  • it worked for me,

    thanks very much

    Friday, May 11, 2018 2:55 AM
  • This worked for me! Thank you for sharing.
    Friday, May 11, 2018 12:34 PM
  • that fix did not work for me. Just rechecked it to make sure I followed the steps. My win 10 computer can see the target computer via file explorer (and can access files on it), but remote desktop, which I use all the time, will no longer work. Thanks for the update, Microsoft
    Monday, May 14, 2018 11:59 PM
  • checked that after following the earlier steps and indeed the CredSSP has been created with the correct parameters, but RD still does not work
    Tuesday, May 15, 2018 12:02 AM
  • Thank you

    Works fine for me to.


    Roendi

    Tuesday, May 15, 2018 7:48 AM
  • This works, however after this fix is applied users are experiencing extreme lag, and some controls in our apps specifically drop downs are not working.

    Anyone know if Microsoft plans to fix this issue with another windows update?? 

    Tuesday, May 15, 2018 12:02 PM
  • Thank you for this workaround. It certainly helped get back up and running, but I'm a little concerned leaving this set to Vulnerable. Is there a more secure long-term fix for this?

    Tuesday, May 15, 2018 2:36 PM
  • I had to roll back my windows update. Thanks, Microsoft
    Tuesday, May 15, 2018 11:22 PM
  • @prodl please refer https://blogs.technet.microsoft.com/mckittrick/unable-to-rdp-to-virtual-machine-credssp-encryption-oracle-remediation/
    Wednesday, May 16, 2018 11:55 AM
  • Thank you. Coincidental timing of this sucked as we were troubleshooting a WAN connection, a VPN tunnel then RDC stops working. Thanks again. Sean
    Thursday, May 17, 2018 1:49 AM
  • instead of change Encryption Oracle Remediation settings you can also disable network level authentication in Remote Desktop System Properties or install all 2018-05 updates on both client and server.
    Thursday, May 17, 2018 12:32 PM
  • We have had the same issue for the past week, although we are connecting to a 2008 R2 server.  I had read that both the client and server needed to be on the most recent versions of windows.  I finally realized our server had an optional update, KB4103713, available for downloading, dated 5/18/2018.

    After installing KB4103713,  my remote desktop connection is again working!!  If only I had known this sooner...

    Marla

    Wednesday, May 23, 2018 3:00 AM