Issue with Remote Credential Guard on Windows 11 24H2 Connecting to Server 2022 RDS Hosts

Question

Issue with Remote Credential Guard on Windows 11 24H2 Connecting to Server 2022 RDS Hosts

I am experiencing issues when using Remote Credential Guard to connect from a Windows 11 24H2 client to our Windows Server 2022 RDS hosts. When using a Windows 10 client, everything works as expected.

I have reproduced this issue in a clean lab environment with fully patched installations of both clients and servers. The clients are Entra ID-joined and use Kerberos Cloud Trust for authentication.

When connecting from Windows 11 24H2, I cannot access file shares. I am prompted for credentials, but no matter what I enter, authentication fails. However, if I log out and then connect using the same user from a Windows 10 client, Single Sign-On (SSO) works correctly—both from the client to the RDS host and from the RDS host to network resources.

For testing purposes, I have used the Netlogon share as a test case.

Clients receive configurations from Intune and are identical in setup.

RDS hosts receive settings via GPO, and the same server is used for testing, ensuring settings remain consistent across tests.

Windows Server 2022: 21H2, Build 20384.3207

Windows 11: 24H2, Build 26100.3194 (issue occurs)

Windows 10: 22H2, Build 19045.5555 (works flawlessly)

I am currently installing Windows Server 2025 to test if the issue persists.

Seems like this is a "known issues" for admins around the world but we does not seem to be able to find any information about this from Microsoft. Issue with Remote Credential Guard on Windows 11 24H2 Connecting to Server 2022 RDS Hosts

Issue with Remote Credential Guard on Windows 11 24H2 Connecting to Server 2022 RDS Hosts

I am experiencing issues when using Remote Credential Guard to connect from a Windows 11 24H2 client to our Windows Server 2022 RDS hosts. When using a Windows 10 client, everything works as expected.

I have reproduced this issue in a clean lab environment with fully patched installations of both clients and servers. The clients are Entra ID-joined and use Kerberos Cloud Trust for authentication.

When connecting from Windows 11 24H2, I cannot access file shares. I am prompted for credentials. However, if I log out and then connect using the same user from a Windows 10 client, Single Sign-On (SSO) works correctly—both from the client to the RDS host and from the RDS host to network resources.

For testing purposes, I have used the Netlogon share as a test case.

Clients receive configurations from Intune and are identical in setup.

RDS hosts receive settings via GPO, and the same server is used for testing, ensuring settings remain consistent across tests.

Windows Server 2022: 21H2, Build 20384.3207

Windows 11: 24H2, Build 26100.3194 (issue occurs)

Windows 10: 22H2, Build 19045.5555 (works flawlessly)

I am currently installing Windows Server 2025 to test if the issue persists.

Seems like this is a "known issues" for admins around the world but we does not seem to be able to find any information about this from Microsoft.

Answer 1

Ola, I opened a ticket with paid Microsoft support back in July 24. They confirmed the problem but still haven't fixed it. I told them numerous times that fixes need to come in a timely fashion, else, we will be on a higher OS, by the time it's fixed :-(

Will keep you posted when the ticket is resolved.