KB4594441
詳細情報
KB番号 | KB4594441 Out-of-band |
---|---|
リリース日 | 2020/11/19 |
Windowsバージョン | Windows 10 1607 |
ビルド番号 | 14393.4048 |
URL(英語) | https://support.microsoft.com/en-us/help/4594441 |
URL(日本語) | https://support.microsoft.com/ja-jp/help/4594441 |
ダウンロード | Microsoft Update Catalog |
ハイライト
Updates an issue that might cause Kerberos authentication and ticket renewal issues that are related to the implementation of CVE-2020-17049.
改良点
Kerberos service tickets and ticket-granting tickets (TGT) might not renew for non-Windows Kerberos clients when PerformTicketSignature is set to 1 (the default).
Service for User (S4U) scenarios, such as scheduled tasks, clustering, and services for line-of-business applications, might fail for all clients when PerformTicketSignature is set to 0.
S4UProxy delegation fails during ticket referral in cross-domain scenarios if DCs in intermediate domains are inconsistently updated and PerformTicketSignature is set to 1.
既知の不具合
After installing KB4467684, the cluster service may fail to start with the error “2245 (NERR_PasswordTooShort)” if the group policy “Minimum Password Length” is configured with greater than 14 characters. | Set the domain default "Minimum Password Length" policy to less than or equal to 14 characters. Microsoft is working on a resolution and will provide an update in an upcoming release. |