After doing some research on the web and comparing the Administrative ToolsàRemote Desktop ServicesàRemote Desktop Session Host ConfigurationàConnectionsàRDP-TcpàProperties between the working servers and problematic servers, I have done the following changes to make RDP work:
- Change Encryption level from FIPS Complaint to High
- It seems any of the following changes will fix the issue together with #1 above
- Change the following registry value to 1 from 2 that changes the setting from SSL(TLS1.0) to Negotiate (because the Security Layer option was greyed out)
HKLM\System\CurrentControlSet\Control\Terminal Server\WinStations\RDP-Tcp\SecurityLayer
- Alternatively, I could also make RDP work by enabling the following local policy
Computer configuration\Administrative Templates\Windows Components\Remote Desktop Services\Remote Desktop Session\Connections\Allow users to connect remotely using Remote Desktop Services
