Microsoft
Microsoft
Microsoft_Marcin_ - I would suggest that you open a support case with us to troubleshoot this issue. It sounds like more than just Kerberos authentication is your issue first off. Also I cannot troubleshoot issues in a blog comment section.
bullshevic - So I would suggest looking at the Microsoft Support Lifecycle Policy Site: Microsoft Lifecycle Policy | Microsoft Learn
It shows that Windows Embedded Ready 7 is already past its extended support expiration. It shows the end date being Oct 12, 2021. However you can still buy into the Extended Security Update plan. This would extend this OS to Oct 8th 2024 at year 3. I am not well versed in pricing or where you go to even get this pricing, however site seems to imply you get this through the OEM.
https://learn.microsoft.com/en-us/lifecycle/products/windows-embedded-posready-7
So the answer would be yes you would need the ESU, and once you have this you can download the latest security updates for the OS.
As far as Windows Server 2008 / R2 from my understanding it is no longer supported unless it is being ran in Azure and then the security updates on that OS would be installed / supported.
https://learn.microsoft.com/en-us/lifecycle/products/windows-server-2008
You have to be on a supported OS or have an active ESU to get the security updates or support on that OS.