Changes were made by Microsoft to the Credential Security Support Provider protocol (CredSSP) in response to CVE-2018-0886, to prevent an attacker that already has compromised a network from using a man-in-the-middle attack to also compromise an RDP session.
This change is included in Microsoft KBs 4088786, 4088779, 4088787, 4088782, 4088776, 4088875, 4088878, 4088876, 4088879, 4056564, 4088877, 4088880, and may also be included in other KBs for other Microsoft Windows Operating Systems. If these KBs are installed on either the client or the target server, the RDP connection will fail.
This issue has been escalated to our session development team and a permanent solution is actively being researched at this time.
In the meantime, uninstalling the KB containing the CredSSP change will allow Safeguard to continue to provide Privileged Session Management.
For more information please see the below KB:
https://support.oneidentity.com/kb/249294/microsofts-march-2018-monthly-security-rollup-update-causes-safeguard-rdp-sessions-to-fail
