# Get a valid cert (internal CA or public) with Server Authentication EKU # Then assign to RDP listener $cert = Get-ChildItem Cert:\LocalMachine\My | Where-Object $_.Subject -like "*your_hostname*" wmic /namespace:\\root\cimv2\TerminalServices PATH Win32_TSGeneralSetting Set SSLCertificateSHA1Hash="$($cert.Thumbprint)"
| Old / Common Advice | Better Approach (from this guide) | |---------------------|------------------------------------| | Restart both PCs | Modify CredSSP registry key | | Disable firewall | Force RDP Security Layer | | Reinstall Windows | Clear RDP licensing cache | | Ignore and retry | Use Group Policy Oracle Remediation | | Use a different remote tool | Keep CredSSP patches synced | i remote desktop connection error code 0x904 better