Having issues since deploying November 2022 Security Updates to your domain controller?

Hello, Chris Cartwright here from Directory Services support team. Taking a breather from the phone calls. In the past few weeks, there has been a large number of questions, rumors, and suggestions thrown around about the November 2022 security updates.

Microsoft Support recommends that you read these articles to gain the most understanding of topics discussed in this and related blogs:

There are two issues that we are currently seeing after installing the November 2022 security update or the Out of Band (OOB) version of this update. Please review the associated blog posts below to determine if you need to take action on one, or perhaps both scenarios.

  1. Memory leaks within LSASS.exe on domain controllers.
    https://techcommunity.microsoft.com/t5/ask-the-directory-services-team/so-you-say-your-dc-s-memory-is-getting-all-used-up-after/ba-p/3696318 

  2. failures caused by non-intersecting types (KDC_ERR_ETYPE_NOSUPP error).
    A behavior change was made that exposes a failure in environments where types do not intersect in environments controlling Types, and/or environments where FAST, Windows Claims, Compound identity, or SID compression are configured.
    https://techcommunity.microsoft.com/t5/ask-the-directory-services-team/what-happened-to-kerberos-authentication-after-installing-the/ba-p/3696351 

 

This article was originally published by Microsoft's Directory Services Team. You can find the original article here.