As the title states when trying to connect to one of my VMs all of a sudden I get a generic Can't connect, Contact your system administrator error.
If I look in the event logs I see...
Event 36871, SCHANNEL
- A fatal error has occurred while creating an SSL server credential. The internal error state is 10011.
Googling for info I found this post.
This seems to be the exact issue I'm having. Enabling the client authentication to "RDP Security Layer" will bypass this error. But my only question is... Would this setting be enabled on the client or the host? I'm just confused because everywhere I read says "on the client side" but the setting is nested within "Remote Desktop Session Host Configuration". Makes me think it would be on the VM I'm connecting to and not the client? Just asking in advance before making the situation worse(Though I'm pretty sure lowering the encryption method won't lock me out.)
EDIT: Just FYI. I am going to be setting these through GPO. So would I set Computer Configuration\Policies\Administrative Templates\Windows Components\Remote Desktop Services\Remote Desktop Session Host\Security\Require use of specific security layer for remote (RDP) connections SET to RDP Layer on the Client or the Host?