Hey guys just provisioning a new Windows 2016 Server VM gets you the Oracle Remediation bug message when trying to connect it with RDP. Also the provisioned OS doesn't do automatic updates... At client side a patch from May 2018 causes the RDP client tointerpret the "undefined" Oracle remediation GPO setting from "vulnerable" to "mitigated" but in the new VM this is still "vulnerable". The RDP in Windows 10 (patch level July 2018) doesn't connect and different from AWS or Xenxerver there isn't a web based console window for fixing things I can't fix because of impossible RDP connection.

I must actively set it back to "vulnerable" at my client for being able to connect to the freshly created VM. And what if there is already a GPO enforcing to "Mitigated"? Then I can't connect the VM at all. I have to ask our admins to change the GPO or use an unpatched VM...
And as I said, the root cause is that the OS in the VM is "behind" May 2018 with it's Windows patches / updates. Listed as a known bug of course, but one which is time consuming as the fresh 2016 VM needs some hours to process the updates