RDP NLA Die die die!
NLA (Network Level Authentication) is useful when RDP is directly connected to the internet. If however, you're using VPN and firewall to prevent access to the port, and trying to connect from Linux, then it just kills the ability to connect. Here's how to turn it off using PowerShell when the UI prevents you from access it.
$ComputerName = "SERVER01" # Getting the NLA information (Get-WmiObject -class "Win32_TSGeneralSetting" -Namespace root\cimv2\terminalservices -ComputerName $ComputerName -Filter "TerminalName='RDP-tcp'").UserAuthenticationRequired # Setting the NLA information to Disabled (Get-WmiObject -class "Win32_TSGeneralSetting" -Namespace root\cimv2\terminalservices -ComputerName $ComputerName -Filter "TerminalName='RDP-tcp'").SetUserAuthenticationRequired(0) # Setting the NLA information to Enabled (Get-WmiObject -class "Win32_TSGeneralSetting" -Namespace root\cimv2\terminalservices -ComputerName $ComputerName -Filter "TerminalName='RDP-tcp'").SetUserAuthenticationRequired(1)
