On-premises Identity-related updates and fixes for June 2023

Reading Time: 2 minutes

Windows Serrer

Even though Microsoft’s Identity focus moves towards the cloud, Windows Server 2016, Windows Server 2019 and Windows Server 2022 still receive updates to improve the experiences and security of Microsoft’s on-premises powerhouses.

This is the list of Identity-related updates and fixes we saw for June 2023:

 

Windows Server 2016

We observed the following update for Windows Server 2016:

KB5027219 June 13, 2023

The June 13, 2023, update for Windows Server 2016 (KB5027219), updating the OS build number to 14393.5989, is a monthly cumulative update and includes no specific Identity-related improvements.

KB5028623 June 23, 2023

The June 23, 2023, update for Windows Server 2016 (June 23, 2023—KB5028623 (OS Build 14393.5996) Out-of-band – Microsoft Support), updating the OS build number to 14393.5996, is an out-of-band update for an Identity-related issue that was introduced with the June 13, 2023 update.

This update addresses a change that affects how admins use the X509CertificateX509Certificate2, or X509Certificate2Collection classes. This change is described in KB5028608. When using the X509CertificateX509Certificate2, or X509Certificate2Collection class to import a PKCS#12 blob containing a private key, the calling application may observe an exception. The exception message is:

System.Security.Cryptography.CryptographicException: PKCS12 (PFX) without a supplied password has exceeded maximum allowed iterations. See https://go.microsoft.com/fwlink/?linkid=2233907 for more information.

 

Windows Server 2019

We observed the following updates for Windows Server 2019:

KB5027222 June 13, 2023

The June 13, 2023, update for Windows Server 2019 (KB5027222), updating the OS build number to 17763.4499, is a monthly cumulative update and includes an Identity-related improvement. This update addresses an issue that might affect the Local Security Authority Subsystem Service (LSASS). It might close sporadically. The system logs the exception 0xc0000710 in the Application Error event 1000. Because of this, the domain controller restarts unexpectedly. This issue affects Read-only Domain Controllers (RODC) that also run Microsoft Defender Advanced Threat Protection (ATP).

 

Windows Server 2022

We observed the following updates for Windows Server 2022:

KB5027225 June 13, 2023

The June 13, 2023, update for Windows Server 2022 (KB5027225), updating the OS build number to 20348.1787, is a monthly cumulative update and includes two Identity-related improvements:

  • This update addresses an issue that might affect the Domain Name System (DNS) suffix search list. When you configure it, the parent domain might be missing.
  • This update addresses an issue that might affect the Local Security Authority Subsystem Service (LSASS). It might close sporadically. The system logs the exception 0xc0000710 in the Application Error event 1000. Because of this, the domain controller restarts unexpectedly. This issue affects Read-only Domain Controllers (RODCs) that also run Microsoft Defender Advanced Threat Protection (ATP).

leave your comment

This site uses Akismet to reduce spam. Learn how your comment data is processed.