Microsoft Releases OOB Update for Windows to Fix Domain Controller Kerberos Authentication Issue

In the last couple of weeks alone, a lot of Windows bugs have been reported. This includes the issue of audio sync blocking and degraded gaming performance for Windows 11 version 22H2, direct access issues, and issues with the taskbar on Windows 10. Another issue that was recognized by Microsoft a few days ago is related to login issues on Windows servers with the Domain Controller role. The good news is that Microsoft has addressed this issue.

The issue in question was caused by the Patch Tuesday update released this month and resulted in Kerberos authentication failures when performing numerous actions such as user logon to the domain, remote desktop connection failures for domain users, and printing that may require authentication domain user.

In an update on the Windows Status Dashboard, Microsoft announced the release of out-of-band (OOB) updates that must be installed on all domain controllers in your environment. The company warned that no other changes are required on client or server devices, so if you’ve made any changes to fix the problem yourself, you can safely remove them.

It is important to understand that this latest patch is not delivered via Windows Update. Customers must manually search for specific KB numbers in the Microsoft Update Catalog in order to download and install updates. The KB numbers for the server SKUs are listed below:

  • Cumulative Updates

  • Offline Updates

    • Windows Server 2012 R2: KB5021653
    • Windows Server 2012: KB5021652
    • Windows Server 2008 R2 SP1: This update is not yet available. Please check back here next week for more information.
    • Windows Server 2008 SP2: KB5021657

Depending on how often its customers choose to release updates, Microsoft has also published the following guidance:

If you are only using security updates for these versions of Windows Server, you only need to install these standalone updates for November 2022. Security only updates are not cumulative and you will also need to install all previous security only updates to be fully updated. Monthly cumulative updates are cumulative and include security updates and all fixes. If you are using the Monthly Cumulative Updates, you will need to install both the offline updates listed above to resolve this issue, and install the Monthly Cumulative Updates released November 8, 2022 to receive the November 2022 Quality Updates. If you have already installed the released updates November 8, 2022

The update affects almost all server and client versions of Windows, so it’s good to see Microsoft release OOB updates for critical issues like these instead of waiting for the Patch Tuesday cycle to start next month.

Leave a Reply

Your email address will not be published.