KB4541331

• Updates an issue that causes an error when printing to a document share.

• Updates an issue that prevents the touch keyboard from appearing during sign in when the user is prompted for the password.

• Updates an issue that causes calendar dates to appear on the wrong day of the week in the clock and date region of the notification area when you select the Samoa time zone.

• Improves application and device compatibility with Windows updates.

• Addresses an issue that causes an error when printing to a document repository.

• Addresses a drawing issue with the Microsoft Foundation Class (MFC) toolbar that occurs when dragging in a multi-monitor environment.

• Addresses an issue that prevents the touch keyboard from appearing during sign in when the user is prompted for the password.

• Addresses an issue that causes new child windows to flicker and appear as white squares on server devices that are configured for stark visual contrast.

• Addresses an issue that displays incorrect folder properties in File Explorer when the path is longer than MAX_PATH.

• Addresses an issue that causes calendar dates to appear on the wrong day of the week in the clock and date region of the notification area when you select the Samoa time zone.

• Addresses an issue with reading logs using the OpenEventLogA() function.

• Addresses an issue that prevents machines that have enabled Credential Guard from joining a domain. The error message is "The server's clock is not synchronized with the primary domain controller's clock."

• Addresses an issue that might cause a delay of up to two minutes when signing in or unlocking a session on Hybrid Azure Active Directory-joined machines.

• Addresses an issue that causes authentication to fail when using Azure Active Directory and the user’s security identifier (SID) has changed.

• Addresses an issue that might cause domain controllers (DC) to register a lowercase and a mixed or all uppercase Domain Name System (DNS) service (SRV) record in the _MSDCS.<forest root domain> DNS zone. This occurs when DC computer names contain one or more uppercase characters.

• Addresses an issue that causes authentication in an Azure Active Directory environment to fail and no error appears.

• Addresses an issue that causes high CPU utilization when retrieving a session object.

• Addresses high latency in Active Directory Federation Services (AD FS) response times for globally distributed datacenters in which SQL might be on a remote datacenter.

• Improves the performance for all token requests coming to AD FS, including OAuth, Security Assertion Markup Language (SAML), WS-Federation, and WS-Trust.

• Addresses a high latency issue in acquiring OAuth tokens when AD FS front-end servers and back-end SQL servers are in different datacenters.

• Restores the constructed attribute in Active Directory and Active Directory Lightweight Directory Services (AD LDS) for msDS-parentdistname.

• Addresses an issue to prevent SAML errors and the loss of access to third-party apps for users who do not have multi-factor authentication (MFA) enabled.

• Addresses an issue with evaluating the compatibility status of the Windows ecosystem to help ensure application and device compatibility for all updates to Windows.

• Addresses an issue that prevents Microsoft User Experience Virtualization (UE-V) settings from roaming to enable the signature files that are used for new messages, forwarded messages, and replies.

• Addresses an issue with high CPU usage on AD FS servers that occurs when the backgroundCacheRefreshEnabled feature is enabled.

• Addresses an issue that creates the Storage Replica administrator group with the incorrect SAM-Account-Type and Group-Type. This makes the Storage Replica administrator group unusable when moving the primary domain controller (PDC) emulator.

• Addresses an issue that prevents some machines from automatically going into Sleep mode under certain circumstances because of Microsoft Defender Advanced Threat Protection (ATP) Auto Incident Response (IR).

• Addresses an issue that prevents some machines from running Microsoft Defender ATP Threat & Vulnerability Management successfully.

• Improves support for non-ASCII file paths for Microsoft Defender ATP Auto IR.

• Addresses an issue that, in some scenarios, causes stop error 0xEF while upgrading to Windows 10, version 1809.

• Improves the performance of the Resilient File System (ReFS) in scenarios that involve many operations on ReFS-cloned files.

• Addresses an issue that prevents standard user accounts that are configured with the maximum User Account Control (UAC) settings from installing Language Features On Demand (FOD) using the System settings.

• Addresses an issue that causes attempts to complete the connection to a virtual private network (VPN) to fail; instead, the status remains at “Connecting.”

• Addresses an issue that breaks the association among the Get-Iscsisession, Get-Iscsiconnection, and Get-Disk PowerShell commandlets when a cluster is created. This causes applications and scripts that rely on this association to fail.