---
title: "Fixing LMCompatibilityLevel Problems with the Workspot Windows Client"
slug: "fixing-lmcompatibilitylevel-problems-with-the-workspot-windows-client"
updated: 2025-11-14T22:05:01Z
published: 2025-11-14T22:05:01Z
---

> ## Documentation Index
> Fetch the complete documentation index at: https://docs.workspot.com/llms.txt
> Use this file to discover all available pages before exploring further.

# Fixing LMCompatibilityLevel Problems with the Workspot Windows Client

## Problem

The Workspot RD Gateways will reject connection attempts from Windows Client devices with an LMCompatibilityLevel in the range of 0-2 because these have security settings incompatible with modern best practices.

## Requirements

To work with Workspot gateways, LMCompatibilityLevel must set to 3 or 5. The two settings are equivalent as far as Workspot gateways are concerned. A value of 3 is more compatible with older infrastructure; a value of 5 is more secure.

(In recent Windows releases, the system default will be one of these values, so if LMCompatibilityLevel is undefined, that will also work.)

## Procedure

LMCompatibilityLevel can be set in group policies or in the Registry.

- **Group Policy**: Computer Configuration\Windows Settings\Security Settings\Local Policies\Security Options
- **Registry:** HKLM\System\CurrentControlSet\Control\Lsa\LmCompatibilityLevel

Open **gpedit.msc** from the run window and make the following changes: ***Computer Configuration --> Windows Settings --> Security Settings --> Local Policies--> Security Options --> Network Security: LAN Manager authentication level*** (Change as shown below)

![](https://cdn.us.document360.io/ad9153e1-c8de-4f56-94f2-b717a1fc3a68/Images/Documentation/image-1763157794961.png)

If you are still experiencing the issue then please verify the below patch on the local PC. Apply the **CVE-2018-0886**patch to all required servers in the environment that initiate/accept RDP connections. Or: Apply the "**Encryption Oracle Remediation**" GPO on servers without the update as described in the following article under the section "Group Policy" to machines that do not have the patch installed: [https://support.microsoft.com/en-us/help/4093492/credssp-updates-for-cve-2018-0886-march-13-2018](https://support.microsoft.com/en-us/help/4093492/credssp-updates-for-cve-2018-0886-march-13-2018)

## Related Documents

- [Network security: LAN Manager authentication level.](https://docs.microsoft.com/en-us/windows/security/threat-protection/security-policy-settings/network-security-lan-manager-authentication-level) Microsoft documentation on LMCompatibilityLevel.
- [The Most Misunderstood Windows Security Setting of All Time](https://docs.microsoft.com/en-us/previous-versions/technet-magazine/cc160954(v=msdn.10)?redirectedfrom=MSDN) by Jesper Johansson. Detailed explanation of the underlying mechanisms controlled by LMCompatibilityLevel.