Announcement - Remote Desktop Authentication Issue

Dear Clients,

 

*** Only clients host under Windows Operating System will be affected***

 

Announcement Details:  

The Microsoft Security patch issued on Tuesday, May 8th triggered the problem by setting and requiring remote connections at the highest level (CredSSP Updates for CVE-2018-0886)

 

Default setting has been changed from Vulnerable to Mitigated which cause any Windows terminal using CredSSP is not be able to use insecure versions.

 

Here is the sample error message when users tried to remote to machines:

 

What is Credential Security Support Provider protocol (CredSSP) ?  

It is an authentication provider that processes authentication requests for other applications.


What is CredSSP updates for CVE-2018-0886 ?

 

https://support.microsoft.com/en-my/help/4093492/credssp-updates-for-cve-2018-0886-march-13-2018


Suggestion:

We strongly recommend our clients update their Terminal + Server's Operating System on a regular basis with the latest security patches and update.

 

Temporary Solution:

Adjust the Remote Desktop settings on the host machine to a lower security level. 

1) From File Explorer, choose Computer, right-click and select Properties

2) Click Change Settings, and go to the Remote tab.

 

Windows 10 users:

Uncheck the option to “Allow connections only from computers running Remote Desktop with Network Level Authentication (recommended)”:

 


 

Alternatively, you can set this policy setting via the registry on your laptop/PC and a reboot.

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System\CredSSP\Parameters] “AllowEncryptionOracle”=dword:00000002

 

Windows 7 users:

Select the option to: "Allow connections from computers running any version of Remote Desktop (less secure)"


Those Windows Dedicated server/VPS client who cannot remote access after tryout the above solution may contact support team by submitting a ticket at https://support.exabytes.com.my/en/support/tickets/new and choose Technical Support (Dedicated Server / VPS / Cloud / Colocation)


Best Regards,


Support Team

......................................

Technical Support Department