Security News > 2022 > May > Microsoft patches the patch that broke Windows authentication
Microsoft has released an out-of-band patch to deal with an authentication issue that was introduced in the May 10 Windows update.
Multiple administrators complained last week that after installing the May 10 patch, they experienced authentication failures across several systems.
An entry then turned up in the lengthy list of known issues for the patch in which Microsoft warned that, after installing the May 10 patch on domain controllers, there might be issues with some services.
As with many updates, the May 10 patch was an important one, and included fixes for "High severity" elevation-of-privilege vulnerabilities that could occur when the Kerberos Distribution Center serviced a certificate-based authentication request.
Backing out of the update apparently resolved the problems but, as one user observed, "This is quite a critical patch but seems to break quite a key role!".
Administrators would be forgiven for feeling that patches to fix patches seem to be becoming a little too common over the years.
News URL
https://go.theregister.com/feed/www.theregister.com/2022/05/20/microsoft_authentication_fix/
Related news
- FINALDRAFT Malware Exploits Microsoft Graph API for Espionage on Windows and Linux (source)
- Microsoft fixes bug causing Windows Server 2025 boot errors (source)
- Microsoft to remove the Location History feature in Windows (source)
- Microsoft testing fix for Windows 11 bug breaking SSH connections (source)
- Microsoft launches ad-supported Office apps for Windows users (source)
- Microsoft tests ad-supported Office apps for Windows users (source)
- Microsoft fixes Entra ID authentication issue caused by DNS change (source)
- Microsoft fixes Outlook drag-and-drop broken by Windows updates (source)
- Microsoft lifts Windows 11 update block for some AutoCAD users (source)
- Microsoft replacing Remote Desktop app with Windows App in May (source)