Unable to Connect RDP “this could be due to credssp encryption oracle remediation”
Encryption Oracle Remediation error! Why?
This is because of security vulnerability CVE-2018-0886 | CredSSP Remote Code Execution Vulnerability .
On May 8th Microsoft released update which changes Encryption Oracle Remediation default behavior setting from Vulnerable to Mitigated option.
That means that: “client applications that use CredSSP will not be able to fall back to insecure versions“.
Now, if you try to connect to a machine which does not have this update (maybe machine was suspended) it will have Encryption Oracle Remediation set to Vulnerable which means that:
“client applications that use CredSSP will expose remote servers to attacks by supporting fallback to insecure versions“.
1. Go to RUN type gpedit.msc
2. and browse to Computer Configuration / Administrative Templates /
System / Credentials Delegation in the left pane:
3. Change the Encryption Oracle Remediation policy to Enabled, and Protection Level to Vulnerable:
4. Problem fixed. – Unable to Connect RDP to Virtual Machine: CredSSP Encryption Oracle Remediation