When Windows Remote Desktop Connection is displayed, an authentication error has occurred and the identity provided to the function is invalid

Source: Internet
Author: User
Tags knowledge base windows remote desktop cve

Excerpt from: https://www.landui.com/help/show-7787

The first time I saw this mistake, I was ignorant. Access to the address of a look, found that the general meaning is not safe, Microsoft to update

The Credential Security Support Provider Protocol (CredSSP) is an authentication provider that handles authentication requests from other applications.

A remote code execution vulnerability exists in the unpatched version of CredSSP. An attacker who successfully exploited this vulnerability could relay user credentials on the target system to execute code. Any application that relies on CredSSP for authentication can be vulnerable to such attacks.

The security update fixes the vulnerability by correcting the way that CredSSP validates requests during the authentication process.

The initial release of March 13, 2018 updated the CredSSP authentication protocol and the Remote Desktop client for all affected platforms.

Mitigation measures include installing updates on all eligible client and server operating systems, and then using the included Group Policy setting or registry-based equivalent to manage settings options on client and server computers. We recommend that the Administrator apply the policy and set it to force updated client or mitigation as soon as possible on both the client and server computers. These changes will require restarting the affected system.

Pay close attention to Group Policy or registry setting pairs that cause "block" interaction between the client and server in the compatibility table later in this article.

April 17, 2018

The Remote Desktop Client (RDP) update in KB 4093120 will enhance the error message that occurs when an updated client cannot connect to a server that has not been updated.

May 8, 2018

Change the default setting from vulnerable to mitigated.

The associated Microsoft Knowledge Base number is listed in cve-2018-0886.


So I think of the solution is to change the client, first let me on the server in slowly solve the other

Take Win10 as an example, make your own work with other versions, run Gpedit.msc to open the local Group Policy Editor

Open the interface as

Expand Computer Configuration, Administrative Templates, System, and credential assignment settings name: The registry value for encrypted Oracle remediation is 2

Then make a remote connection and discover that the remote is successful. Then slowly adjust it as needed.

Official Document Location support.microsoft.com/zh-cn/help/4093492/credssp-updates-for-cve-2018-0886-march-13-2018

When Windows Remote Desktop Connection is displayed, an authentication error has occurred and the identity provided to the function is invalid

Contact Us

The content source of this page is from Internet, which doesn't represent Alibaba Cloud's opinion; products and services mentioned on that page don't have any relationship with Alibaba Cloud. If the content of the page makes you feel confusing, please write us an email, we will handle the problem within 5 days after receiving your email.

If you find any instances of plagiarism from the community, please send an email to: info-contact@alibabacloud.com and provide relevant evidence. A staff member will contact you within 5 working days.

A Free Trial That Lets You Build Big!

Start building with 50+ products and up to 12 months usage for Elastic Compute Service

  • Sales Support

    1 on 1 presale consultation

  • After-Sales Support

    24/7 Technical Support 6 Free Tickets per Quarter Faster Response

  • Alibaba Cloud offers highly flexible support services tailored to meet your exact needs.