• Skip to primary navigation
  • Skip to main content
  • Skip to primary sidebar

Tachytelic.net

  • Get in Touch
  • About Me

Remote Desktop CredSSP encryption Oracle remediation Registry fix

February 20, 2019 by Paulie 13 Comments

This is a quick credssp registry fix for the following error when trying to connect to a machine using RDP (Remote Desktop):

Image showing RDP CredSSP Authentication Error when connecting to a host with RDP
An authentication error has occurred. The function requested is not supported

This is because the server you are connecting to is not patched up to date, and the machine you are connecting from is. Modify the registry to allow your machine to connect to it:

  1. Open Regedit.
  2. Navigate to the following registry key, or create it if it does not exist:
    HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System\CredSSP\Parameters
  3. Create a new DWORD value called “AllowEncryptionOracle“
  4. Set the new registry entry to have a value of 2:

    Image showing AllowEncryptionOracle registry entry being set to a value of 2
    Set the value of AllowEncryptionOracle to 2
  5. Connect to the server that you were unable to connect to before.

Run this from an elevated command prompt to achieve the same result:

REG ADD "HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System\CredSSP\Parameters" /v AllowEncryptionOracle /t REG_DWORD /d 2

This registry entry is a temporary workaround until you have patched your server, when you have done that, remove the setting with this command.

REG Delete "HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Policies\System\CredSSP\Parameters" /v AllowEncryptionOracle

Filed Under: Technical Posts Tagged With: Windows Server 2012 r2, Windows Server 2016

Reader Interactions

Comments

  1. shreyash says

    August 6, 2019 at 6:09 pm

    Wow Thats straight forward simple and effective.
    Thanks for making simple and easy steps.
    thaks alot

  2. fredrick says

    September 12, 2019 at 10:47 am

    great,

  3. agung says

    September 16, 2019 at 5:45 am

    thank you, work in me

  4. Maricela Hdz says

    May 14, 2020 at 11:46 pm

    I Love it!! thank you

  5. Martin Brown says

    May 15, 2020 at 12:07 pm

    It worked for me as well

  6. olukotun Abayomi says

    May 22, 2020 at 9:40 pm

    Thanks boss

  7. Jose Castineiras says

    July 17, 2020 at 7:59 pm

    Amazing, if the creddssp\parameters folder does not exist create it and it work.

  8. Ravi says

    November 25, 2020 at 8:43 am

    Thanks. worked….

  9. nalin says

    January 29, 2021 at 5:03 pm

    Hmm Great it has worked for others but on my windows 20h2 no go.

  10. nalin says

    January 29, 2021 at 5:06 pm

    Thanks it worked I had a typo in the Reg key.. What a quick fix. Will it get over wirtten the next time it updates GPO from the domain?

  11. kazishe says

    May 2, 2021 at 9:03 am

    Easy does it. What a quick and easy fix.

  12. Amit says

    June 12, 2021 at 5:00 am

    Thanks..it worked..

  13. Erik the Red says

    January 19, 2022 at 5:29 am

    perfect…. to the point… succinct… well done skipper

Leave a Reply Cancel reply

Primary Sidebar

Link to my LinkedIn Profile
Buy me a coffee

Subscribe to Blog via Email

Enter your email address to subscribe to this blog and receive notifications of new posts by email.

Join 245 other subscribers.

Go to mobile version