Share via

Authentication error after logging into Remote Desktop with Remote Credential Guard

Seth 0 Reputation points
2024-05-17T12:58:59.57+00:00

I recently set up Remote Credential Guard so users could access a Remote Desktop Session Host without needing to enter their credentials (the whole redirecting Kerberos back to the local client etc), but now once my users get in and try running an application over the network, they get this error:
User's image

If they enter their domain credentials here, it authenticates successfully, so I'm not sure why it's having trouble doing it the first time on its own. The only difference here is that I set up Remote Credential Guard.

How I did it:

  • RD Session Host: Enabled "Computer Configuration > Policies > Administrative Templates > System > Credentials Delegation >"Remote host allows delegation of non-exportable credentials"
  • Workstations: Enabled "Computer Configuration > Policies > Administative Templates > System > Credentials Delegation > 'Restrict delegation of credentials to remote servers: Require Remote Credential Guard'"

Any help is greatly appreciated. :)

Windows Server
Windows Server
A family of Microsoft server operating systems that support enterprise-level management, data storage, applications, and communications.
12,340 questions
Remote Desktop
Remote Desktop
A Microsoft app that connects remotely to computers and to virtual apps and desktops.
4,307 questions
0 comments

1 answer

Sort by: Most helpful
Most helpful Newest Oldest
  1. Karlie Weng 15,281 Reputation points Microsoft Vendor
    2024-05-21T01:49:17.5766667+00:00

    Hello,

    Since you are using pre-authentication, this means that the authentication will occur between your client and the domain. If you disable NLA, authentication will take place between the terminal side and the domain. Therefore, you should check your network/domain services on your DC or client.

    If the Answer is helpful, please click "Accept Answer" and upvote it.

    0 comments