question

CT491 avatar image
0 Votes"
CT491 asked DSPatrick commented

NTLM authentication failed because the account was a member of the Protected User group

Hello all,

I'm setting up a new VPN in Azure that is connecting to a on-premise lab environment that is planned to replace the old VPN connection. While connected to the new IP range on the new VPN we are receiving this error while RDPing using elevated accounts that are part of the Protected Users group:

NTLM authentication failed because the account was a member of the Protected User group.
Event 100
Error Code: 0xC000006E

Noticed some alerts about certificates as well. NTLM and Kerberos aren't my specialty, so was looking for some help with this, is there somewhere we need to whitelist the new VPN IP range for NTLM / Kerberos to work correctly?

RDP works fine without error on the current VPN, but not the new one we are trying to implement.

windows-active-directory
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

1 Answer

DSPatrick avatar image
1 Vote"
DSPatrick answered DSPatrick commented
· 1
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

Just checking if there's any progress or updates?

--please don't forget to upvote and Accept as answer if the reply is helpful--



0 Votes 0 ·