Even though Microsoft’s Identity focus moves towards the cloud, Windows Server 2016, Windows Server 2019 and Windows Server 2022 still receive updates to improve the experiences and security of Microsoft’s on-premises powerhouses.

This is the list of Identity-related updates and fixes we saw for December 2022:

Windows Server 2016

We observed the following update for Windows Server 2016:

KB5021235 December 13, 2022

The December 13, 2022, update for Windows Server 2016 (KB5021235), updating the OS build number to 14393.5582, is a monthly cumulative update that includes one Identity-related improvement. This update addresses a known issue that might affect the Local Security Authority Subsystem Service (lsass.exe). It might leak memory on Active Directory Domain Controllers. This issue might occur when you install Windows updates dated November 8, 2022, or later.

Windows Server 2019

We observed the following updates for Windows Server 2019:

KB5021237 December 13, 2022

The December 13, 2022, update for Windows Server 2019 (KB5021237), updating the OS build number to 17763.3770, is a monthly cumulative update that includes one Identity-related improvement. This update addresses a known issue that might affect the Local Security Authority Subsystem Service (lsass.exe). It might leak memory on Active Directory Domain Controllers. This issue might occur when you install Windows updates dated November 8, 2022, or later.

KB5022554 December 20, 2022 Out of Band

The December 20, 2022, update for Windows Server 2019 (KB5022554), updating the OS build number to 17763.3772, is an out-of-band update that addresses an known issue that affects Hyper-V hosts that use software defined networking (SDN) and are managed by System Center Virtual Machine Manager (VMM).

Windows Server 2022

We observed the following updates for Windows Server 2022:

KB5021249 December 13, 2022

The December 13, 2022, update for Windows Server 2022 (KB5021249), updating the OS build number to 20348.1366, is a monthly cumulative update that includes one identity-related improvement. This update addresses an issue that affects cluster name objects (CNO) or virtual computer objects (VCO). Password reset fails. The error message is:

There was an error resetting the AD password… // 0x80070005

KB5022553 December 20, 2022 Out of Band

The December 20, 2022, update for Windows Server 2022 (KB5022553), updating the OS build number to 20348.1368, is an out-of-band update that addresses an known issue that affects Hyper-V hosts that use software defined networking (SDN) and are managed by System Center Virtual Machine Manager (VMM).