question

ItsKoda avatar image
0 Votes"
ItsKoda asked GERSEYENRIQUECABRALESSAAVEDRA-6372 published

RDP - CredSSP Encryption Oracle Remediation error

After I installed the Hyper-V Role onto my server I've receiving this error when trying to login with RDP, I have already tried changing Encryption Oracle Remediation to Vulnerable, it didn't fix the issue and I reverted it after discovering the security risks of it.

The only things I did before this issue became apparent was removing IIS & Installing Hyper-V.

![82097-image.png][1]


remote-desktop-serviceswindows-server-2019windows-server-hyper-v
image.png (14.1 KiB)
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

ItsKoda avatar image
0 Votes"
ItsKoda answered GERSEYENRIQUECABRALESSAAVEDRA-6372 published

I went 1 by 1 through the Security Options (Policies) that I changed to improve security and found that one of the policies I was told to change to "Deny All" which was "Network security: Restrict NTLM: Incoming NTLM traffic" I changed it to "Allow all" and updated the group policies and I can now connect through RDP.
Hopefully this won't be a risk to my DC.

· 1
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

Excelente me sirvió esta solución fui derecho y corregí el problema, ahora tengo el riesgo del Trafico NTLM entrante

0 Votes 0 ·
GettnBetter-8602 avatar image
1 Vote"
GettnBetter-8602 answered

This can be mitigated with a registry entry. I've found the primary reason for this is systems that are not up2date with Windows updates.

There are known workarounds: https://docs.microsoft.com/en-us/troubleshoot/azure/virtual-machines/credssp-encryption-oracle-remediation

5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.