NLA and credssp issues

David Zemdegs 1,381 Reputation points
2023-01-04T03:38:56.833+00:00

We have two Windows Server 2022 Domain Controllers that were recently installed. Both servers get all the same group policies which include turning NLA on. For some unknown reason we can RDP to one server (call it Server-F) but we cannot RDP to the other (Server-E). If we turn off NLA on Server-E and RDP using the disable credssp option then we can RDP to it. However we dont want to disable NLA and cant understand why NLA works on one but not the other. The RDP connections all come from the same Windows 10 client.
Thanks
David Z

Remote Desktop
Remote Desktop
A Microsoft app that connects remotely to computers and to virtual apps and desktops.
3,044 questions
Windows Server
Windows Server
A family of Microsoft server operating systems that support enterprise-level management, data storage, applications, and communications.
8,203 questions
No comments
{count} votes

Accepted answer
  1. BOURBITA Thameur 12,086 Reputation points Microsoft MVP
    2023-01-04T22:57:41.697+00:00

    @David Zemdegs :

    It important to start by installing microsoft update when we install new server, it can fix many issue.
    If it's not possible through wsus , you can download the last update and install it manually.

    Please don't forget to mark helpful reply as answer

    No comments

6 additional answers

Sort by: Most helpful
  1. Limitless Technology 9,296 Reputation points
    2023-01-04T14:48:15.8+00:00

    Hello

    Thank you for your question and reaching out. I can understand you are having query\issues related to RDP using NLA.

    1. Disable any Antivirus program or Windows firewall you may have for temporary purpose.
    2. Open command prompt with elevated prompt and run below commands

    REG add "HKLM\SYSTEM\CurrentControlSet\Control\Lsa" /v disabledomaincreds /t REG_DWORD /d 0 /f
    REG add "HKLM\SYSTEM\CurrentControlSet\Control\Terminal Server\WinStations\RDP-Tcp" /v UserAuthentication /t REG_DWORD /d 1 /f

    Reference :

    https://social.technet.microsoft.com/Forums/windows/en-US/d4feb20d-cb8b-4e49-8950-5e948e125414/network-level-authentication-error-with-remote-desktop-connection-between-windows-7-machines?forum=w7itprosecurity

    https://learn.microsoft.com/en-us/troubleshoot/azure/virtual-machines/cannot-connect-rdp-azure-vm

    --If the reply is helpful, please Upvote and Accept as answer--

    No comments

  2. David Zemdegs 1,381 Reputation points
    2023-01-04T20:46:42.2+00:00

    I do not want to disable NLA. Server-F works fine with NLA on.

    No comments

  3. BOURBITA Thameur 12,086 Reputation points Microsoft MVP
    2023-01-04T22:36:46.647+00:00

    Hi,

    Can you give us more details about the error when you tried connect remotly through RDP on impacted server ?

    No comments

  4. BOURBITA Thameur 12,086 Reputation points Microsoft MVP
    2023-01-04T22:40:51.917+00:00

    Hi,

    Did you try to install the last update on impacted server ? If the server is not up to date and NLA enable you may not able to connect remotly through RDP.

    Please don't forget to mark helpful reply as answer

    No comments