WIN1 remote "this may be due to credssp encryption Oracle correction" solution

As shown in the figure ：

 

I guess it's the pot of system update , So I checked the patch description of Microsoft ：

https://support.microsoft.com/zh-cn/help/4093492/credssp-updates-for-cve-2018-0886-march-13-2018

Sure enough , The description says ：

 

This patch will CredSSP The authentication protocol is set to... By default “ relieve ”, We used to be “ vulnerable ”

Microsoft gives the corresponding setting path ：

Method 1 ：

    Modify group strategy ：

                Right click in the lower left corner win Icon , choice “ function ”

                        

 

                Then input  gpedit.msc     

                        

                  After confirmation, group policy will be opened , Then select computer configuration > Manage templates > System > Credential assignment > encryption Oracle correct

                           

 

                Change it to vulnerable .

                If the prompt cannot be found ’gpedit.msc‘ Look at method two

                        

 

Method 2 ：

        Modify registry ：

                Some people can't open ’gpedit.msc‘, The reason is that the system is the home version , Home Edition windows There is no group strategy , According to this situation , Microsoft offers a second solution

            

        Right click in the lower left corner win Icon , choice “ function ”

                        

 

 

            Then input  regedit

                           

 

 

            In turn, open ：HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Policies\System\CredSSP\Parameters

                            

 

            Generally open to System There will be no files in the directory , Right click System, newly build —— term ：

                                    

 

                Name it CredSSP, Then right-click CredSSP, The new item is named Parameters：

                The final list is as follows ：

                                

 

                  Then right-click Parameters, newly build ——DWORD（32） position , Name it  AllowEncryptionOracle :

                                

 

                    Double click the newly created AllowEncryptionOracle：

                                

 

                    The numerical data is modified to 2：

                                

 

                    Finally, as shown in the figure above

Then you can try to connect to your server remotely , If not , Just restart .