Solved

RWW to a Windows 10 computer generates error

Posted on 2016-10-27
11
19 Views
Last Modified: 2016-11-04
It is a SBS 2008 Server. They use RWW a bunch. I just put in a Windows 10 Workstation and when they try and RWW to it they get the error:

The remote computer requires that authentication be enabled to connect. The connection cannot proceed because authentication is not enabled.

The can still RWW in to the Windows 7 workstations. Just not the Windows 10 ones.
0
Comment
Question by:LockDown32
  • 6
  • 5
11 Comments
 
LVL 56

Expert Comment

by:Cliff Galiher
ID: 41863111
Last I checked there is nonfox for this if they are 1607. And likely won't be one. 1511 requires all of the documented changes you can find on the SBA team blog that 8.1 required. Which basically is running IE in compatibility mode. Reducing security versions. Etc.

TL;DR...time to replace SBS 2008 servers. They are nearing EOL anyways.
0
 
LVL 15

Accepted Solution

by:
LockDown32 earned 0 total points
ID: 41863128
Had nothing to do with the SBS 2008 Server. The workstation is on 1607 (sooner or later everyone will be). There was a fix:

On the local Windows 10 computer open RegEdit
Navigate to this Key:
HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Terminal Server\WinStations\RDP-Tcp
Change “SecurityLayer” to a zero
Reboot and done!

Worked like a charm.....
0
 
LVL 56

Expert Comment

by:Cliff Galiher
ID: 41863147
That was the fix for 1511. When 1607 first shipped, it didn't work. And (as I said, "last I checked"), Microsoft's stance was that they didn't want to weaken the security of 1607 by allowing that setting. Basically they were intentionally ignoring it, by design, nit a bug.

If you really are on 1607 and that works, it is possible they relented and fixed it in a CU. But be aware that doing So is a *hheeuuugggeee* security risk. And that behavior certainly isn't guaranteed going forward.
0
 
LVL 15

Author Comment

by:LockDown32
ID: 41863721
Winver yields version 1607. As far as being a huge security risk... it obviously hasn't bothered Microsoft for years in that Windows 7 still works without that setting. I can really go back to the customer and say gee you need to spend thousands on a new server because it is a little old.

Fix the problem and keep moving forward in the most cost effective manner possible..........
0
 
LVL 56

Expert Comment

by:Cliff Galiher
ID: 41863771
"it obviously hasn't bothered Microsoft"

Flawed logic. Microsoft rarely backdoors security enhancements from newer OSes to older OSes and never does so once they hit extended support.... which windows 7 has been in for years. They patch active security *bugs* but that isn't at all the same.

The fact that LM hashes, for example, can be easily decrypted in seconds isn't a bug. It is just an old technology. There was never a patch to fix LM. If you wanted NTLM, then later NTLMv2, then later Kerberos, you bought a new OS.

But hey, windows 95 still works great. Fix the problem and move on since keeping '95 around is technically "the most cost effective" solution.

It's your network and clients getting screwed over, so really. take my advice or leave it. No skin off my back either way. I just wanted to convey the risk you take by changing the setting you did. I didn't create the setting. I didn't make the new default. Security experts in Microsoft did. If you choose to disbelieve that risk because somehow you know better than Microsoft, more power to ya. I've shared the knowledge I have the  best I can. The rest is on you.
0
Backup Your Microsoft Windows Server®

Backup all your Microsoft Windows Server – on-premises, in remote locations, in private and hybrid clouds. Your entire Windows Server will be backed up in one easy step with patented, block-level disk imaging. We achieve RTOs (recovery time objectives) as low as 15 seconds.

 
LVL 15

Author Comment

by:LockDown32
ID: 41863803
Not flawed logic. The truth. If everyone always paid Microsoft to have the latest and greatest Small Business would be broke and Microsoft would be  mega rich. Wait... that's the way it is isn't it?

   You are obviously up in the enterprise world where $50,000 to $60,000 is nothing. Well I got news. To small businesses money is something and donations to Microsoft just aren't in the budget.

   Oh ya.... who created the setting in the first place? Uh..... Microsoft Security Experts?
0
 
LVL 56

Expert Comment

by:Cliff Galiher
ID: 41863813
I've been a small business consultant decades and a Microsoft SBS MVP for years. But no, I know nothing about small business or Microsoft. Good luck with that.
0
 
LVL 15

Author Comment

by:LockDown32
ID: 41863823
Good for you Cliff. I'm happy for you.
0
 
LVL 56

Expert Comment

by:Cliff Galiher
ID: 41863832
"You are obviously up in the enterprise world"

You claim your opinions as "fact." Sorry you are butt-hurt when someone calls you on it. My area of expertise wasn't a secret. You just made a foolish claim and are embarrassed. So go ahead, deflect some more.
0
 
LVL 15

Author Comment

by:LockDown32
ID: 41863846
Sorry Cliff but you are one of the most arrogant, opinionated people on the planet which is fine if you were right and that is not the case. The first time someone disagrees with you, you throw a temper tantrum like a two year old.  

   I found a solution which contradicted your "there is no solution" and it is off to the races. Grow up and deal with it.
0
 
LVL 15

Author Closing Comment

by:LockDown32
ID: 41873681
Simple solution and it worked. No other solutions were given.
0

Featured Post

New My Cloud Pro Series - organize everything!

With space to keep virtually everything, the My Cloud Pro Series offers your team the network storage to edit, save and share production files from anywhere with an internet connection. Compatible with both Mac and PC, you're able to protect your content regardless of OS.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

If you use NetMotion Mobility on your PC and plan to upgrade to Windows 10, it may not work unless you take these steps.
When you start your Windows 10 PC and got an "Operating system not found" error or just saw  "Auto repair for startup" or a blinking cursor with black screen. A loop for Auto repair will start but fix nothing.  You will be panic as there are no back…
With the advent of Windows 10, Microsoft is pushing a Get Windows 10 icon into the notification area (system tray) of qualifying computers. There are many reasons for wanting to remove this icon. This two-part Experts Exchange video Micro Tutorial s…
The Task Scheduler is a powerful tool that is built into Windows. It allows you to schedule tasks (actions) on a recurring basis, such as hourly, daily, weekly, monthly, at log on, at startup, on idle, etc. This video Micro Tutorial is a brief intro…

861 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

25 Experts available now in Live!

Get 1:1 Help Now