CredSSP Error on outgoing RDP (Post Level-1 Member Server Hardening)

[kacummings]

Question
I am running the following against a single Windows Server 2022 system with all the latest updates.

ansible-playbook -i ../inventory.yml site.yml --tags level1-memberserver

This runs successfully against any server, which is great, but afterwards the server can no longer make outgoing RDP connections to other (new and patched) Windows Server 2022 systems. These remote systems are at the same patch level, and they can RDP to the hardened system. It's only outgoing attempts from the hardened system.

I get the following error:
Remote Desktop Connection
An authentication error has occurred. The function is not supported.
Remote Computer: [ip address]
This could be due to CredSSP encryption oracle remediation.

Everything points me to the following group policy object to fix the issue, but it doesn't work.
Admin Templates > System > Credentials Delegation > Encyption Oracle Remediation (set to Vulnerable, or 2 in registry)

For the life of me I can't figure this one out. It has to be related to another change being made with Level-1, but there are too many to revert one at a time.

The level-2 member server option does NOT cause this issue. Anyone else experience this?

Environment (please complete the following information):

• Ansible Version: ansible [core 2.16.3]