Want to protect your cyber security and still get fast solutions? Ask a secure question today.Go Premium

x
?
Solved

How to update Windows 7 Pro SP1 to support Network Layer Authentication (DTLS) when connecting to another computer with Remote Desktop Connection.

Posted on 2014-03-22
7
Medium Priority
?
3,537 Views
Last Modified: 2014-04-05
Hello all,
Would most appreciate any input.  

I have a windows 7 pro, sp1, x64 machine.  
Trying to connect to any system requiring NLA.
Cannot get this system to update rdp past 6.3.9600 which does not support NLA.  
Have done all windows updates.  
Have installed KB2574819-v2-x64 and KB2592687.  (RDP 8.0 updates)
Have edited local group policy in accordance with above articles.
Have verified that all windows updates were successful.  
Rebooted many times.  
System began with 6.1 so it has updated somewhat.  

ON a deadline... of course, aren't we always...
Thanks to all on this forum.  When I retire I am going to help out here, love this site.
JLG
0
Comment
Question by:4rg
  • 3
  • 3
7 Comments
 
LVL 13

Assisted Solution

by:Santosh Gupta
Santosh Gupta earned 1000 total points
ID: 39947633
Hi,

Did you installed KB2574819 Before you install the RDP 8.0 update, as a prerequisite.

if not then install 2574819 then 2592687 and reboot the machine.

http://support.microsoft.com/kb/2574819

http://support.microsoft.com/kb/2592687
0
 
LVL 58

Assisted Solution

by:McKnife
McKnife earned 1000 total points
ID: 39948520
Please be clear on NLA. All Windows 7 rdp clients support NLA. What errors do you get that make you think it doesn't?
0
 
LVL 1

Accepted Solution

by:
4rg earned 0 total points
ID: 39949150
What made me think it wasn't is that under help and about, it said NLA was not supported.
And the error message when I tried to use it.

I figured it out.  

I was missing credssp.dll entry in the following key.
once I added it to the list of dll's already there, everything worked.
I did not even have to restart the machine.

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders

Happy computing to all
0
Managing Security Policy in a Changing Environment

The enterprise network environment is evolving rapidly as companies extend their physical data centers to embrace cloud computing and software-defined networking. This new reality means that the challenge of managing the security policy is much more dynamic and complex.

 
LVL 58

Expert Comment

by:McKnife
ID: 39949752
Good to hear you found a solution.
But I nevertheless wonder what you are talking about: where did it say "NL is not supported"? If I open the RDP client on win7 and go to about, of course it says NLA is supported, and I did not have to change anything.
0
 
LVL 1

Author Comment

by:4rg
ID: 39966379
Actually, where yours (and now mine) says NLA is supported, mine said NLA is not supported.  Really, try it... go remove the credssp.dll entry from the registry and it will change that line.  Then put it back and it comes back.

I now believe that this is related to a virus this system had back about a year ago.  One where it hid all the files from the desktop and start menu and chilled out all the .exe files.
You know the one?
0
 
LVL 58

Expert Comment

by:McKnife
ID: 39966413
I believe, that removing credssp will change it, yes. Ok, so it was a virus? Wonder why a virus should want to do this...
0
 
LVL 1

Author Closing Comment

by:4rg
ID: 39979852
Just splitting the points between you both for answering.  Thanks for taking your time.
0

Featured Post

2017 Webroot Threat Report

MSPs: Get the facts you need to protect your clients.
The 2017 Webroot Threat Report provides a uniquely insightful global view into the analysis and discoveries made by the Webroot® Threat Intelligence Platform to provide insights on key trends and risks as seen by our users.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

When you put your credit card number into a website for an online transaction, surely you know to look for signs of a secure website such as the padlock icon in the web browser or the green address bar.  This is one way to protect yourself from oth…
Last month Marc Laliberte, WatchGuard’s Senior Threat Analyst, contributed reviewed the three major email authentication anti-phishing technology standards: SPF, DKIM, and DMARC. Learn more in part 2 of the series originally posted in Cyber Defense …
Nobody understands Phishing better than an anti-spam company. That’s why we are providing Phishing Awareness Training to our customers. According to a report by Verizon, only 3% of targeted users report malicious emails to management. With compan…
Sometimes it takes a new vantage point, apart from our everyday security practices, to truly see our Active Directory (AD) vulnerabilities. We get used to implementing the same techniques and checking the same areas for a breach. This pattern can re…
Suggested Courses

581 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question