I have enabled NLA in our environment. I have learned if accounts have the option turned on "Log On To" and specific machines listed they can not use RDP. If I changed that option to "All Computers" they can RDP just fine.
When trying to connect when the account is restricted to specific machines you get the error: An Authentication Error has Occurred. The Local Security Authority cannot be contacted.
I have tried specifying the IP as well having both IP and Name in the field.
I need to find a way for it to allow restricted accounts access to machines they should have RDP access to.