CredSSP

Remote Desktop CredSSP | Encryption Oracle Remediation

By Jag - June 05, 2018

Credssp Encryption Oracle Remediation Remote Desktop Connection


Credential Security Support Provider protocol (CredSSP) is an authentication provider that processes authentication requests for other applications.

 A remote code execution vulnerability exists in unpatched versions of CredSSP. An attacker who successfully exploits this vulnerability could relay user credentials to execute code on the target system. Any application that depends on CredSSP for authentication may be vulnerable to this type of attack.

Credssp Encryption Oracle Remediation Remote Desktop Connection

Credssp Encryption Oracle Remediation Remote Desktop Connection



 CredSSP encryption oracle remediation error if you have applications or services such as the Remote Desktop Connection that uses CredSSP on an updated machine. authentication will no longer work and you will get this error message:

 "An authentication error has occurred. The function requested is not supported. Remote computer: This could be due to CredSSP encryption oracle remediation."
RDC Authentication Error has Occurred
RDC Authentication Error has Occurred

How To Slove


 To install the update on the servers. but, if you need to connect to a computer that hasn't received the update, you can downgrade the protection level to the Vulnerable state to allow RDP access. You can some edit this Group Policy or by changing the registry.

 Group Policy setting > Encryption Oracle Remediation

 You can do this Three Protection Levels:
  • Force Updated Clients:0
  • Mitigated:1
  • Vulnerable:2

Install Patch 

May 8, 2018 – KB4103721 (OS Build 1803)

May 8, 2018 – KB4103727 (OS Build 1709)
May 8, 2018 – KB4103731 (OS Build 1703)
May 8, 2018 – KB4103723 (OS Build 1609 & Server 2016)


Microsoft Security Update Guide 


Update and Patches for all platform can be obtained from here.


Follow These Steps

1. Open Run Command >Type gpedit.msc 

   Which will open the Local Group Policy Editor Window.


2. Group Policy Editor Path: Computer Configuration -> Administrative Templates ->           System -> Credentials Delegation



CredSSP encryption oracle remediation
Local Group Policy Editor


3. Edit Setting: Encryption Oracle Remediation which will open another Window.



Encryption Oracle Remediation
Encryption Oracle Remediation


4. Select Enabled and Change Production Level to Vulnerable

5. After, do this following one step Run the command gpupdate /force to apply group policy settings.


CredSSP Encryption Oracle Remediation Registry Setting

Alternatively, you can do this step to set the policy setting via the registry and a reboot.

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System\CredSSP\Parameters] “AllowEncryptionOracle”=dword:00000002



  • Share:

You Might Also Like

1 comments

  1. AnonymousJuly 20, 2018 at 2:54 AM

    Your website have a valuable information,thanks for sharing information.Oracle R12 Financials Training in Ameerpet

    ReplyDelete