If you’re not careful and aware of the CredSSP updates for CVE-2018-0886 security vulnerability this month, you may find yourself with RDP connection problems.
Today’s security update addresses the vulnerability by correcting how CredSSP validates requests during the authentication process. And, in doing so, may cause RDP connection issues if you don’t address a couple recommendations.
- Both the server and the client need to be updated
- There are specific Group Policy settings that need to be applied
For the GPO settings, see: https://support.microsoft.com/en-us/help/4093492/credssp-updates-for-cve-2018-0886-march-13-2018
In a couple case, some are reporting that while Windows to Windows RDP connections work fine, Mac to Windows may not. And, that makes sense, considering the change is for Windows systems.
Additionally, according to the support article, today is just the initial step in correcting this vulnerability. Microsoft has planned additional updates for April 17, 2018 and
May 8, 2018.
Looking for an awesome, no-nonsense technical conference for IT Pros, Developers, and DevOps? IT/Dev Connections kicks off in Dallas, Texas in 2018!