xfreerdp: can't connect to latest Windows10: ERRCONNECT_PASSWORD_CERTAINLY_EXPIRED #4449
Comments
|
I am getting the same issue, it used to work last week. I am on the insider build and I recently upgraded to 17101. It was working in 17093. Not sure if they changed anything though. I can rdp to a windows server and then rdp to my windows 10 machine for a work around. But I get the following message regardless if the password works or not. [02:38:27:117] [4414:4429] [ERROR][com.freerdp.core] - freerdp_set_last_error ERRCONNECT_PASSWORD_CERTAINLY_EXPIRED [0x0002000F] |
|
So this issue is related to insider preview only? As in you can connect with the same client to a 'normal' windows 10 but not the insider preview? |
|
@hendwolt The OpenSSL version you link to would also be interesting for this case, as the error is set in an SSL error handler. |
|
I have no 'normal' Windows10 for tests available, sorry. |
|
@hendwolt Great, only have the |
|
@akallabeth I'm not in a domain, but I use a Microsoft account. In the network settings my Windows10 insider installation is in the workgroup "WORKGROUP". |
|
@hendwolt Ok, so does it work with a local user account? |
|
@akallabeth No. With a local account I get the same error. |
|
It doesn't matter what I use. You can use an incorrect username and password and you get the same error. So it is erroring out before authentication. |
|
Did get access to a insider build of windows 10. |
|
Created #4455 to change the error to a more generic one (as we lack information on what actually happened). |
|
I'm running into the same issue with Insider Build 17101. |
|
While testing #4455, I forced transport.c to tell me more details: [13:54:33:966] [30270:30271] [ERROR][com.freerdp.core.transport] - SSL alert: [0x00004004, x00000250] type fatal [F] internal error [IE] in state SSL negotiation finished successfully [SSLOK ], rstate read header [RH] Maybe it helps ... |
|
I encountered the same error in #4444 |
|
The work-around provided by @lemonmojo works for me as well. |
|
@brhahlen Export the contents of "HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL" of the registry on that system and post them here. It might be something a lot more complicated like incompatible cipher suites but the supported TLS and SSL protocols are a start |
|
In my Windows10 (build 17115): [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Ciphers] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\CipherSuites] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Hashes] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\KeyExchangeAlgorithms] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols\SSL 2.0] [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols\SSL 2.0\Client] ` |
|
I came here to report this same issue exactly. I'm on my Linux PC right now so I can post the exact Win10 build, but I'm on the latest from Insider Slow |
|
I exported the keys with both NLA enabled and disabled, this is what I get for both: NLA Enabled: NLA Disabled: |
|
@brhahlen Those SCHANNEL settings describe what versions of TLS and SSL are enabled/disabled on the system. Your settings are pretty typical. I have a Windows 10 system I tested connecting to with wfreerdp using NLA, and verified that it worked. When I upgraded the RDP host to the latest Insider Fast build (17115) and tried again, wfreerdp failed with the same alert you're seeing. So it's reproducible with connecting from Windows as well Also, I have a different client that uses entirely different NTLM code, and it was able to connect with NLA to both the old Windows 10 and the 17115, so it sounds like there's something in the fields or NTLM flags of the NTLM packets from FreeRDP that either OpenSSL or the RDP host doesn't like. I don't have more time this week to spend on this, but if you're already building the client it shouldn't be too much more trouble to build OpenSSL as well and just step into where that error is being set, that would either be a big clue or outright explain what's happening. @akallabeth There's a CVE for CredSSP coming down the pipe, maybe it's already in the Insider releases and causing the problem? If you email dochelp@microsoft.com they can probably tell you about it. They're very supportive of the whole RDP ecosystem |
|
https://support.microsoft.com/en-us/help/4093492/credssp-updates-for-cve-2018-0886-march-13-2018 |
|
Unfortunately this has already been released by Microsoft in today's patches and customer complaints about being unable to connect already start pouring in. @akallabeth Any news about the source of the problem or a potential fix? |
|
Looks like update KB4088776 is the one to blame. By changing it to the Absent state (uninstalling the update) the system is reachable again. |
|
Connection is established if you change the security to TLS |
|
FYI: I've now updated my test environment and can confirm that the issue is present on the following Windows versions (when updated with the March 13, 2018 patches): |
|
Contradicting Iaigor's comment from a while ago, using TLS does NOT work for me. Only possible to connect using NLA Ubuntu 17.10 as host, Windows 10 Pro as remote (updated yesterday). |
|
@AndyTapster You need to disable the NLA requirement on the server. Here's how to:
|
|
None of TLS or NLA works for me: |
|
Still broken on hubbitus/remmina-next RPM repo for CentOS 7. https://copr-be.cloud.fedoraproject.org/results/hubbitus/remmina-next/epel-7-x86_64/ Anyone know how to contact the maintainer of that? I patched the SRC rpm in that repo myself and recompiled so I am up and running but I assume others are using it too. EDIT: I sent an email to the maintainer with the patch and the change to the src RPM spec that I used to fix it. Hopefully he still has time to maintain the repo. |
|
@agibson2 any chance you can post the steps you used to fix it on CentOS? |
|
Also broken on Ubuntu 17.10 since the last Win10 corporate-wide mandatory updates. Found out this morning. EDIT: getting latest from the official Remmina PPA fixed the issue for my installation, as documented here: |
|
Please do not post in which distro it is broken here, but at the issue trackers of those distributions. |
|
+1 Posted update-request to |
|
@akallabeth It makes sense for people having the problem to know how common this is, and how to work this around if possible. This ticket comes up as one of the top Google answers when searching for the error message. |
|
@norru No issue with that, just thought it might be better to link to the people responsible to get that resolved for the specific distro/OS. |
|
It'll be broken for any (and all) distros that haven't updated their packages yet. It's in their hands now, nothing upstream can do about it. |
|
is the fix in master, or another branch? not sure what i'm missing, i compiled master and still get the error. |
|
Thanks. I was able to connect from Arch Linux to Windows 10. I have disabled (on Windows): "Allow connections only from computers running Remote Desktop with Network Level Authentication (recommended)" and used TLS security protocol. |
|
Hi Github team, |
|
@RaysonChacko : just update to the latest version of xfreerdp. It's fixed now. |
|
I just cloned from Git and I'm encountering this problem still. |
|
I have been posting to #4801 until I just found this. I will now be monitoring this thread for updates, but also chiming in with a "me too". How is this issue closed when it is still a problem? |
|
I ran into the same issue. Tried disable NLA and enable sec:rdp with no luck. Problem was with the registry key. Resolved by doing the below on win 10 target m/c xfreerdp /cert-ignore +clipboard /bpp:15 /compression /sec:rdp /f /d:DOMAIN /v:HOSTNAME /u:testuser /p:****** |
|
and others
I'm using the latest master version (c276005). When I try to connect to the latest Windows10 Insider Preview (17101), I get:
[08:44:28:330] [7640:7641] [ERROR][com.freerdp.core] - freerdp_set_last_error ERRCONNECT_PASSWORD_CERTAINLY_EXPIRED [0x0002000F]
[08:44:28:330] [7640:7641] [ERROR][com.freerdp.core.transport] - BIO_read returned an error: error:14094438:SSL routines:ssl3_read_bytes:tlsv1 alert internal error
It does not matter if I use the hostname or the IP address.
cmdline:
xfreerdp /u: /f /v:windows10hw
I did a statically linked debug build for this:
xfreerdp /buildconfig
This is FreeRDP version 2.0.0-dev2 (c276005)
Build configuration: BUILD_TESTING=OFF BUILTIN_CHANNELS=ON HAVE_AIO_H=1 HAVE_EXECINFO_H=1 HAVE_FCNTL_H=1 HAVE_INTTYPES_H=1 HAVE_JOURNALD_H=TRUE HAVE_MATH_C99_LONG_DOUBLE=1 HAVE_POLL_H=1 HAVE_PTHREAD_MUTEX_TIMEDLOCK=ON HAVE_PTHREAD_MUTEX_TIMEDLOCK_LIB=1 HAVE_PTHREAD_MUTEX_TIMEDLOCK_SYMBOL= HAVE_SYSLOG_H=1 HAVE_SYS_EVENTFD_H=1 HAVE_SYS_FILIO_H= HAVE_SYS_MODEM_H= HAVE_SYS_SELECT_H=1 HAVE_SYS_SOCKIO_H= HAVE_SYS_STRTIO_H= HAVE_SYS_TIMERFD_H=1 HAVE_TM_GMTOFF=1 HAVE_UNISTD_H=1 HAVE_XI_TOUCH_CLASS=1 WITH_ALSA=ON WITH_CCACHE=ON WITH_CHANNELS=ON WITH_CLIENT=ON WITH_CLIENT_AVAILABLE=1 WITH_CLIENT_CHANNELS=ON WITH_CLIENT_CHANNELS_AVAILABLE=1 WITH_CLIENT_COMMON=ON WITH_CLIENT_INTERFACE=OFF WITH_CUPS=OFF WITH_DEBUG_ALL=ON WITH_DEBUG_CAPABILITIES=ON WITH_DEBUG_CERTIFICATE=ON WITH_DEBUG_CHANNELS=ON WITH_DEBUG_CLIPRDR=ON WITH_DEBUG_DVC=ON WITH_DEBUG_KBD=ON WITH_DEBUG_LICENSE=ON WITH_DEBUG_MUTEX=ON WITH_DEBUG_NEGO=ON WITH_DEBUG_NLA=ON WITH_DEBUG_NTLM=ON WITH_DEBUG_RAIL=ON WITH_DEBUG_RDP=ON WITH_DEBUG_RDPDR=ON WITH_DEBUG_RDPEI=ON WITH_DEBUG_REDIR=ON WITH_DEBUG_RFX=ON WITH_DEBUG_RINGBUFFER=ON WITH_DEBUG_SCARD=ON WITH_DEBUG_SND=ON WITH_DEBUG_SVC=ON WITH_DEBUG_SYMBOLS=OFF WITH_DEBUG_THREADS=ON WITH_DEBUG_TIMEZONE=ON WITH_DEBUG_TRANSPORT=ON WITH_DEBUG_TSG=ON WITH_DEBUG_TSMF=ON WITH_DEBUG_WND=ON WITH_DEBUG_X11=ON WITH_DEBUG_X11_CLIPRDR=ON WITH_DEBUG_X11_LOCAL_MOVESIZE=ON WITH_DEBUG_XV=ON WITH_DIRECTFB=OFF WITH_EVENTFD_READ_WRITE=1 WITH_FFMPEG=ON WITH_GFX_H264=ON WITH_GPROF=OFF WITH_GSM=OFF WITH_GSSAPI=OFF WITH_GSTREAMER_0_10=OFF WITH_GSTREAMER_1_0=ON WITH_ICU=OFF WITH_IPP=OFF WITH_JPEG=OFF WITH_LIBRARY_VERSIONING=ON WITH_LIBSYSTEMD=ON WITH_MACAUDIO=OFF WITH_MACAUDIO=OFF WITH_MACAUDIO_AVAILABLE=0 WITH_MANPAGES=ON WITH_MBEDTLS=OFF WITH_OPENH264=OFF WITH_OPENSLES=OFF WITH_OPENSSL=ON WITH_OSS=ON WITH_PCSC=OFF WITH_PROFILER=OFF WITH_PULSE=OFF WITH_SAMPLE=OFF WITH_SANITIZE_ADDRESS=OFF WITH_SANITIZE_ADDRESS_AVAILABLE=1 WITH_SANITIZE_LEAK=OFF WITH_SANITIZE_LEAK_AVAILABLE=1 WITH_SERVER=OFF WITH_SERVER_INTERFACE=ON WITH_SMARTCARD_INSPECT=OFF WITH_SSE2=ON WITH_THIRD_PARTY=OFF WITH_VALGRIND_MEMCHECK=OFF WITH_VALGRIND_MEMCHECK_AVAILABLE=1 WITH_WAYLAND=OFF WITH_X11=ON WITH_X264=OFF WITH_XCURSOR=ON WITH_XEXT=ON WITH_XFIXES=ON WITH_XI=ON WITH_XINERAMA=ON WITH_XKBFILE=ON WITH_XRANDR=ON WITH_XRENDER=ON WITH_XSHM=ON WITH_XV=ON WITH_ZLIB=ON
Build type: Debug
CFLAGS: -march=i686 -Wall -Wno-unused-result -Wno-unused-but-set-variable -Wno-deprecated-declarations -fvisibility=hidden -Wimplicit-function-declaration -Wredundant-decls -g
Compiler: GNU, 7.3.0
Target architecture: x86
The whole output:
[08:44:21:537] [7640:7641] [INFO][com.freerdp.client.common.cmdline] - loading channelEx cliprdr
[08:44:21:540] [7640:7641] [INFO][com.freerdp.client.x11] - Property 505 does not exist
Password:
[08:44:28:310] [7640:7641] [INFO][com.winpr.sspi.NTLM] - VERSION ={
[08:44:28:310] [7640:7641] [INFO][com.winpr.sspi.NTLM] - ProductMajorVersion: 6
[08:44:28:310] [7640:7641] [INFO][com.winpr.sspi.NTLM] - ProductMinorVersion: 1
[08:44:28:310] [7640:7641] [INFO][com.winpr.sspi.NTLM] - ProductBuild: 7601
[08:44:28:310] [7640:7641] [INFO][com.winpr.sspi.NTLM] - Reserved: 0x000000
[08:44:28:310] [7640:7641] [INFO][com.winpr.sspi.NTLM] - NTLMRevisionCurrent: 0x0F
[08:44:28:316] [7640:7641] [INFO][com.winpr.sspi.NTLM] - negotiateFlags "0xE28A8235"
[08:44:28:316] [7640:7641] [INFO][com.winpr.sspi.NTLM] - NTLMSSP_NEGOTIATE_56 (0),
[08:44:28:316] [7640:7641] [INFO][com.winpr.sspi.NTLM] - NTLMSSP_NEGOTIATE_KEY_EXCH (1),
[08:44:28:317] [7640:7641] [INFO][com.winpr.sspi.NTLM] - NTLMSSP_NEGOTIATE_128 (2),
[08:44:28:317] [7640:7641] [INFO][com.winpr.sspi.NTLM] - NTLMSSP_NEGOTIATE_VERSION (6),
[08:44:28:317] [7640:7641] [INFO][com.winpr.sspi.NTLM] - NTLMSSP_NEGOTIATE_TARGET_INFO (8),
[08:44:28:317] [7640:7641] [INFO][com.winpr.sspi.NTLM] - NTLMSSP_NEGOTIATE_EXTENDED_SESSION_SECURITY (12),
[08:44:28:317] [7640:7641] [INFO][com.winpr.sspi.NTLM] - NTLMSSP_TARGET_TYPE_SERVER (14),
[08:44:28:318] [7640:7641] [INFO][com.winpr.sspi.NTLM] - NTLMSSP_NEGOTIATE_ALWAYS_SIGN (16),
[08:44:28:318] [7640:7641] [INFO][com.winpr.sspi.NTLM] - NTLMSSP_NEGOTIATE_NTLM (22),
[08:44:28:318] [7640:7641] [INFO][com.winpr.sspi.NTLM] - NTLMSSP_NEGOTIATE_SEAL (26),
[08:44:28:318] [7640:7641] [INFO][com.winpr.sspi.NTLM] - NTLMSSP_NEGOTIATE_SIGN (27),
[08:44:28:318] [7640:7641] [INFO][com.winpr.sspi.NTLM] - NTLMSSP_REQUEST_TARGET (29),
[08:44:28:319] [7640:7641] [INFO][com.winpr.sspi.NTLM] - NTLMSSP_NEGOTIATE_UNICODE (31),
[08:44:28:319] [7640:7641] [INFO][com.winpr.sspi.NTLM] - VERSION ={
[08:44:28:319] [7640:7641] [INFO][com.winpr.sspi.NTLM] - ProductMajorVersion: 10
[08:44:28:319] [7640:7641] [INFO][com.winpr.sspi.NTLM] - ProductMinorVersion: 0
[08:44:28:319] [7640:7641] [INFO][com.winpr.sspi.NTLM] - ProductBuild: 17101
[08:44:28:319] [7640:7641] [INFO][com.winpr.sspi.NTLM] - Reserved: 0x000000
[08:44:28:319] [7640:7641] [INFO][com.winpr.sspi.NTLM] - NTLMRevisionCurrent: 0x0F
[08:44:28:319] [7640:7641] [INFO][com.winpr.sspi.NTLM] - AV_PAIRs =
[08:44:28:319] [7640:7641] [INFO][com.winpr.sspi.NTLM] - MsvAvNbDomainName AvId: 2 AvLen: 22
[08:44:28:320] [7640:7641] [INFO][com.winpr.sspi.NTLM] - 0000 57 00 49 00 4e 00 44 00 4f 00 57 00 53 00 31 00 W.I.N.D.O.W.S.1.
[08:44:28:320] [7640:7641] [INFO][com.winpr.sspi.NTLM] - 0010 30 00 48 00 57 00 0.H.W.
[08:44:28:320] [7640:7641] [INFO][com.winpr.sspi.NTLM] - MsvAvNbComputerName AvId: 1 AvLen: 22
[08:44:28:320] [7640:7641] [INFO][com.winpr.sspi.NTLM] - 0000 57 00 49 00 4e 00 44 00 4f 00 57 00 53 00 31 00 W.I.N.D.O.W.S.1.
[08:44:28:320] [7640:7641] [INFO][com.winpr.sspi.NTLM] - 0010 30 00 48 00 57 00 0.H.W.
[08:44:28:320] [7640:7641] [INFO][com.winpr.sspi.NTLM] - MsvAvDnsDomainName AvId: 4 AvLen: 22
[08:44:28:320] [7640:7641] [INFO][com.winpr.sspi.NTLM] - 0000 77 00 69 00 6e 00 64 00 6f 00 77 00 73 00 31 00 w.i.n.d.o.w.s.1.
[08:44:28:320] [7640:7641] [INFO][com.winpr.sspi.NTLM] - 0010 30 00 68 00 77 00 0.h.w.
[08:44:28:320] [7640:7641] [INFO][com.winpr.sspi.NTLM] - MsvAvDnsComputerName AvId: 3 AvLen: 22
[08:44:28:320] [7640:7641] [INFO][com.winpr.sspi.NTLM] - 0000 77 00 69 00 6e 00 64 00 6f 00 77 00 73 00 31 00 w.i.n.d.o.w.s.1.
[08:44:28:321] [7640:7641] [INFO][com.winpr.sspi.NTLM] - 0010 30 00 68 00 77 00 0.h.w.
[08:44:28:321] [7640:7641] [INFO][com.winpr.sspi.NTLM] - MsvAvTimestamp AvId: 7 AvLen: 8
[08:44:28:321] [7640:7641] [INFO][com.winpr.sspi.NTLM] - 0000 db 2a 40 4e 8c a8 d3 01 .@n....
[08:44:28:322] [7640:7641] [INFO][com.winpr.sspi.NTLM] - negotiateFlags "0xE288A235"
[08:44:28:323] [7640:7641] [INFO][com.winpr.sspi.NTLM] - NTLMSSP_NEGOTIATE_56 (0),
[08:44:28:323] [7640:7641] [INFO][com.winpr.sspi.NTLM] - NTLMSSP_NEGOTIATE_KEY_EXCH (1),
[08:44:28:323] [7640:7641] [INFO][com.winpr.sspi.NTLM] - NTLMSSP_NEGOTIATE_128 (2),
[08:44:28:323] [7640:7641] [INFO][com.winpr.sspi.NTLM] - NTLMSSP_NEGOTIATE_VERSION (6),
[08:44:28:323] [7640:7641] [INFO][com.winpr.sspi.NTLM] - NTLMSSP_NEGOTIATE_TARGET_INFO (8),
[08:44:28:323] [7640:7641] [INFO][com.winpr.sspi.NTLM] - NTLMSSP_NEGOTIATE_EXTENDED_SESSION_SECURITY (12),
[08:44:28:323] [7640:7641] [INFO][com.winpr.sspi.NTLM] - NTLMSSP_NEGOTIATE_ALWAYS_SIGN (16),
[08:44:28:323] [7640:7641] [INFO][com.winpr.sspi.NTLM] - NTLMSSP_NEGOTIATE_WORKSTATION_SUPPLIED (18),
[08:44:28:323] [7640:7641] [INFO][com.winpr.sspi.NTLM] - NTLMSSP_NEGOTIATE_NTLM (22),
[08:44:28:323] [7640:7641] [INFO][com.winpr.sspi.NTLM] - NTLMSSP_NEGOTIATE_SEAL (26),
[08:44:28:323] [7640:7641] [INFO][com.winpr.sspi.NTLM] - NTLMSSP_NEGOTIATE_SIGN (27),
[08:44:28:323] [7640:7641] [INFO][com.winpr.sspi.NTLM] - NTLMSSP_REQUEST_TARGET (29),
[08:44:28:324] [7640:7641] [INFO][com.winpr.sspi.NTLM] - NTLMSSP_NEGOTIATE_UNICODE (31),
[08:44:28:324] [7640:7641] [INFO][com.winpr.sspi.NTLM] - VERSION ={
[08:44:28:324] [7640:7641] [INFO][com.winpr.sspi.NTLM] - ProductMajorVersion: 6
[08:44:28:324] [7640:7641] [INFO][com.winpr.sspi.NTLM] - ProductMinorVersion: 1
[08:44:28:324] [7640:7641] [INFO][com.winpr.sspi.NTLM] - ProductBuild: 7601
[08:44:28:324] [7640:7641] [INFO][com.winpr.sspi.NTLM] - Reserved: 0x000000
[08:44:28:324] [7640:7641] [INFO][com.winpr.sspi.NTLM] - NTLMRevisionCurrent: 0x0F
[08:44:28:324] [7640:7641] [INFO][com.winpr.sspi.NTLM] - AV_PAIRs =
[08:44:28:324] [7640:7641] [INFO][com.winpr.sspi.NTLM] - MsvAvNbDomainName AvId: 2 AvLen: 22
[08:44:28:324] [7640:7641] [INFO][com.winpr.sspi.NTLM] - 0000 57 00 49 00 4e 00 44 00 4f 00 57 00 53 00 31 00 W.I.N.D.O.W.S.1.
[08:44:28:324] [7640:7641] [INFO][com.winpr.sspi.NTLM] - 0010 30 00 48 00 57 00 0.H.W.
[08:44:28:325] [7640:7641] [INFO][com.winpr.sspi.NTLM] - MsvAvNbComputerName AvId: 1 AvLen: 22
[08:44:28:325] [7640:7641] [INFO][com.winpr.sspi.NTLM] - 0000 57 00 49 00 4e 00 44 00 4f 00 57 00 53 00 31 00 W.I.N.D.O.W.S.1.
[08:44:28:325] [7640:7641] [INFO][com.winpr.sspi.NTLM] - 0010 30 00 48 00 57 00 0.H.W.
[08:44:28:325] [7640:7641] [INFO][com.winpr.sspi.NTLM] - MsvAvDnsDomainName AvId: 4 AvLen: 22
[08:44:28:325] [7640:7641] [INFO][com.winpr.sspi.NTLM] - 0000 77 00 69 00 6e 00 64 00 6f 00 77 00 73 00 31 00 w.i.n.d.o.w.s.1.
[08:44:28:325] [7640:7641] [INFO][com.winpr.sspi.NTLM] - 0010 30 00 68 00 77 00 0.h.w.
[08:44:28:325] [7640:7641] [INFO][com.winpr.sspi.NTLM] - MsvAvDnsComputerName AvId: 3 AvLen: 22
[08:44:28:325] [7640:7641] [INFO][com.winpr.sspi.NTLM] - 0000 77 00 69 00 6e 00 64 00 6f 00 77 00 73 00 31 00 w.i.n.d.o.w.s.1.
[08:44:28:325] [7640:7641] [INFO][com.winpr.sspi.NTLM] - 0010 30 00 68 00 77 00 0.h.w.
[08:44:28:325] [7640:7641] [INFO][com.winpr.sspi.NTLM] - MsvAvTimestamp AvId: 7 AvLen: 8
[08:44:28:326] [7640:7641] [INFO][com.winpr.sspi.NTLM] - 0000 db 2a 40 4e 8c a8 d3 01 .@n....
[08:44:28:326] [7640:7641] [INFO][com.winpr.sspi.NTLM] - MsvAvFlags AvId: 6 AvLen: 4
[08:44:28:326] [7640:7641] [INFO][com.winpr.sspi.NTLM] - 0000 02 00 00 00 ....
[08:44:28:326] [7640:7641] [INFO][com.winpr.sspi.NTLM] - MsvChannelBindings AvId: 10 AvLen: 16
[08:44:28:326] [7640:7641] [INFO][com.winpr.sspi.NTLM] - 0000 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................
[08:44:28:326] [7640:7641] [INFO][com.winpr.sspi.NTLM] - MsvAvTargetName AvId: 9 AvLen: 38
[08:44:28:326] [7640:7641] [INFO][com.winpr.sspi.NTLM] - 0000 54 00 45 00 52 00 4d 00 53 00 52 00 56 00 2f 00 T.E.R.M.S.R.V./.
[08:44:28:326] [7640:7641] [INFO][com.winpr.sspi.NTLM] - 0010 77 00 69 00 6e 00 64 00 6f 00 77 00 73 00 31 00 w.i.n.d.o.w.s.1.
[08:44:28:326] [7640:7641] [INFO][com.winpr.sspi.NTLM] - 0020 30 00 68 00 77 00 0.h.w.
[08:44:28:330] [7640:7641] [ERROR][com.freerdp.core] - freerdp_set_last_error ERRCONNECT_PASSWORD_CERTAINLY_EXPIRED [0x0002000F]
[08:44:28:330] [7640:7641] [ERROR][com.freerdp.core.transport] - BIO_read returned an error: error:14094438:SSL routines:ssl3_read_bytes:tlsv1 alert internal error
Any ideas, what to do or how to investigate this further?
ATM I'm not sure, if I should blame freerdp or Microsoft.
The text was updated successfully, but these errors were encountered: