<\/p>\n
In March 2018, Microsoft released the CredSSP Updates for CVE-2018-0886, which is a vulnerability that could allow for remote code execution in unpatched versions of CredSSP. It would allow an attacker to relay user credentials to execute code on a target system. According to this Microsoft KB Article<\/a>, they initially released an update in March. Then in April they released an update that would provide a more detailed error message while using the Remote Desktop Client (RDP). Then, finally, in the May 2018 Patch Tuesday, they just released an update that changed the default setting from Vulnerable to Mitigated which means that any client application that uses CredSSP will not be able to fall back to insecure versions. In other words, if you have a workstation that received the May update but a server that hasn’t received the CredSSP update, the workstation will receive the error message above when trying to RDP to that server.<\/p>\n Obviously to reduce the risk of the vulnerability, the recommended solution is to patch all of the servers that are missing the update. Unfortunately, this update does require a reboot.<\/p>\n For more information, see the Microsoft article CredSSP updates for CVE-2018-0886<\/a>.<\/p>\n If you cannot update your server right away, then the temporary workaround is to change a Group Policy. This is not recommended<\/strong> for a permanent solution since it means that the vulnerability could still exist on the servers.<\/p>\nRecommended Fix for Authentication Error Function Not Supported CredSSP Error<\/h2>\n
Group Policy Temporary Workaround Fix for Authentication Error Function Not Supported CredSSP Error<\/h2>\n