Blog Post

Failover Clustering
2 MIN READ

Understanding the Repair Active Directory Object Recovery Action

John Marlin's avatar
John Marlin
Iron Contributor
Mar 15, 2019
First published on MSDN on Dec 13, 2013   One of the responsibilities of cluster Network Name resource is to rotate the password of the computer object in Active Directory associated with it. ...
Updated Nov 09, 2023
Version 4.0
Active Directory
failover clustering
network name
MFisherIT's avatar
MFisherIT
Copper Contributor
Dec 07, 2022

d1haus ; from your Nov 17, 2022, comment I begin searching the update catalog.

I was not able to find an update that specifically mentioned this issue. I am working with Server 2019 (1809), so perhaps I'm still out of luck.

Do you happen to know if I should be watching for a particular KB number?

I am having the issue with my 2019 clusters:

 

 

get-hotfix|sort hotfixID

Source        Description      HotFixID      InstalledBy          InstalledOn
------        -----------      --------      -----------          -----------
PMV-FSC01N03  Security Update  KB4535680     NT AUTHORITY\SYSTEM  2/8/2022 12:00:00 AM
PMV-FSC01N03  Update           KB4589208     NT AUTHORITY\SYSTEM  2/8/2022 12:00:00 AM
PMV-FSC01N03  Security Update  KB5005112                          8/5/2021 12:00:00 AM
PMV-FSC01N03  Update           KB5009642     NT AUTHORITY\SYSTEM  2/8/2022 12:00:00 AM
PMV-FSC01N03  Update           KB5011574     NT AUTHORITY\SYSTEM  4/26/2022 12:00:00 AM
PMV-FSC01N03  Security Update  KB5012170     NT AUTHORITY\SYSTEM  8/23/2022 12:00:00 AM
PMV-FSC01N03  Update           KB5012675     NT AUTHORITY\SYSTEM  4/26/2022 12:00:00 AM
PMV-FSC01N03  Update           KB5014031     NT AUTHORITY\SYSTEM  6/28/2022 12:00:00 AM
PMV-FSC01N03  Update           KB5014797     NT AUTHORITY\SYSTEM  6/28/2022 12:00:00 AM
PMV-FSC01N03  Update           KB5015896     NT AUTHORITY\SYSTEM  7/26/2022 12:00:00 AM
PMV-FSC01N03  Update           KB5017400     NT AUTHORITY\SYSTEM  9/27/2022 12:00:00 AM
PMV-FSC01N03  Security Update  KB5019966     NT AUTHORITY\SYSTEM  11/22/2022 12:00:00 AM
PMV-FSC01N03  Security Update  KB5020374     NT AUTHORITY\SYSTEM  11/22/2022 12:00:00 AM
PMV-FSC01N03  Update           KB5020627     NT AUTHORITY\SYSTEM  11/22/2022 12:00:00 AM

 

 

However My other 2019 Cluster is not having this issue:

 

 

get-hotfix|sort hotfixID

Source        Description      HotFixID      InstalledBy          InstalledOn
------        -----------      --------      -----------          -----------
PMP-HYPV04    Security Update  KB4535680     NT AUTHORITY\SYSTEM  6/15/2021 12:00:00 AM
PMP-HYPV04    Update           KB4589208     NT AUTHORITY\SYSTEM  6/15/2021 12:00:00 AM
PMP-HYPV04    Security Update  KB5001404                          4/9/2021 12:00:00 AM
PMP-HYPV04    Security Update  KB5003243     NT AUTHORITY\SYSTEM  6/2/2021 12:00:00 AM
PMP-HYPV04    Security Update  KB5003711     NT AUTHORITY\SYSTEM  7/6/2021 12:00:00 AM
PMP-HYPV04    Security Update  KB5005112     NT AUTHORITY\SYSTEM  9/7/2021 12:00:00 AM
PMP-HYPV04    Security Update  KB5005701     NT AUTHORITY\SYSTEM  10/5/2021 12:00:00 AM
PMP-HYPV04    Update           KB5006754     NT AUTHORITY\SYSTEM  12/7/2021 12:00:00 AM
PMP-HYPV04    Security Update  KB5008287     NT AUTHORITY\SYSTEM  1/10/2022 12:00:00 AM
PMP-HYPV04    Update           KB5009642     NT AUTHORITY\SYSTEM  3/8/2022 12:00:00 AM
PMP-HYPV04    Update           KB5011574     NT AUTHORITY\SYSTEM  4/5/2022 12:00:00 AM
PMP-HYPV04    Security Update  KB5012170     PMSI\a-michael.fi... 10/31/2022 12:00:00 AM
PMP-HYPV04    Update           KB5017270     PMSI\a-michael.fi... 10/31/2022 12:00:00 AM
PMP-HYPV04    Update           KB5017400     NT AUTHORITY\SYSTEM  10/31/2022 12:00:00 AM
PMP-HYPV04    Security Update  KB5018419     NT AUTHORITY\SYSTEM  10/31/2022 12:00:00 AM

 

 

Update 12-07-2022:

Installed windows10.0-kb5021655-x64_b3a1b7a804396f73ca22c0cddea466b7b8260617.msu - November 17, 2022—KB5021655 (OS Build 17763.3653) Out-of-band update.

Paused node (drained roles), installed update, restarted node; repeated for second node. No change, still have the same behavior.

KB5012596:https://support.microsoft.com/en-us/topic/april-12-2022-kb5012596-os-build-14393-5066-f77f480c-5dea-4e85-88b8-1e70b1b5fcd2

For Windows Server 2016 1607

Addresses an issue that logs Event ID 37 during certain password change scenarios, including failover cluster name object (CNO) or virtual computer object (VCO) password changes.

Windows Update Catalog:

2022-04 Cumulative Update for Windows Server 2016 for x64-based Systems (KB5012596) > Package Details > This update has been replaced by the following updates:

2022-08 Cumulative Update for Windows Server 2016 for x64-based Systems (KB5016622)

2022-06 Cumulative Update for Windows Server 2016 for x64-based Systems (KB5014702)

2022-11 Cumulative Update for Windows Server 2016 for x64-based Systems (KB5021654)

2022-05 Cumulative Update for Windows Server 2016 for x64-based Systems (KB5015019)

2022-10 Cumulative Update for Windows Server 2016 for x64-based Systems (KB5018411)

2022-10 Cumulative Update for Windows Server 2016 for x64-based Systems (KB5020439)

2022-11 Cumulative Update for Windows Server 2016 for x64-based Systems (KB5019964)

2022-05 Cumulative Update for Windows Server 2016 for x64-based Systems (KB5013952)

2022-09 Cumulative Update for Windows Server 2016 for x64-based Systems (KB5017305)

2022-07 Cumulative Update for Windows Server 2016 for x64-based Systems (KB5015808)

KB5013952 is replaced by KB5021654. as of 12-7-2022 KB5021654 package had no replacements.

Since these (virtual) servers had been 2016 (1607) and were updated to server 2019 (1809) (as part of the cluster migration to new data array), I checked for similar update for server 2019.