TLDR - Azure Virtual Desktop Black Screens. Could be 2 Min long, could be much longer. Tried removing stuck profiles, spun up all new VMs to see if that would fix it, finally disabled an application service that was polluting the Event logs constantly with appcrashes. Hoping that maybe the event logs weren't able to keep up so we had a black screen while events caught up. Grasping at straws. We started getting reports of black screens when users login to one of our AVD Host Pools. Our users are using FSLogix for profiles, but we've also seen the issue when logging via RDP with a local admin account. We tested and saw similar results where you login, FSLogix Prompt goes by, then to Preparing Windows, then black screen. In a normal login, this black screen will last 10-20 seconds before desktop comes available and user can begin their session.With this issue, we were seeing black screens that just stayed there until you forced a logout of your account.We saw some profile issues with the VMs in the pool appearing to be stuck on a VM when it should be removed upon logoff with FSLogix and we saw some stuck local_username FSLogix profiles still in the users folder. Instead of finding the needle in a haystack, we spun up a new group of VMs and put the others in drain mode / excluded. With the new VMs, logins from RD Client were working fine yesterday afternoon, evening and this AM. But later in the morning, we saw some issues with users getting a black screen lasting 90 sec - 2 min before desktop loaded in. I had it happen to me when logging in, but it seemed to go away once I tried a couple more times. I even directly RDPd into the host that I had the 2 min black screen for me and was able to get in quickly. So issue appears to still be showing, but not as bad. We looked in event logs and saw that one particular application - the Aspen Multicase Web service was polluting the service event logs with appcrash errors every few seconds. So we've disabled that application service on all the VMs in the pool and logins have been normal since. We read event logs that were event 4625 (failed login) but the event said event logs couldn't keep up and needed to stop duplicate events...so we were thinking that this service was constantly writing to event logs, could the slow logins happen when the service is trying to run, failing and writing to event logs. the logs wouldn't be able to write the login info. But every other change we made things seem fine afterward for a while, but then the black screen will come back for at least 90sec - 2 min. Any suggestions on things we can try / look at that could be causing this?

JPlendo Microsoft has advised that the fix will be released in the October patch, meanwhile a KIR (Known Issue Rollback) has been release to fix this Appx Crash issue.Please download this KIR and follow instructions here.This will install a new computer Local Group Policy which looks like this, ...which then need to be set as disabled, please reboot and you'll see that the Appx Crash will stop. This has been the solution from Microsoft to deal with the issue until next windows patch release. Give it a try and let me know if it works.

**bleep** its bad. We see the issues also in an Remote app setup with 200 sessions a day. Good to have saved some images back and disabled WU on the host so you can control it. Hope the WU from October can fix this i see AVD getting a lot of hits about different things lately. OneDrive/SharePoint sync not working, black screens, appx service eating all ressources...

JPlendo I could sort of just about give them the benefit of the doubt for not updating the known issues list for existing releases KBs until yesterday when they pushed out KB5044273 whilst still having no mention of the issue... clearly they know about it having acknowledged to people with support cases that the issue would continue in yesterday's week 10B release, and whilst at the same time sending out a KIR (the give away is in the name being that KIR stand for KNOWN ISSUE Rollback). That is now just unacceptable, they have an established method in the Known Issue list on the impacted KBs and also centrally on the Windows Release Health Dashboard here https://learn.microsoft.com/en-us/windows/release-health/status-windows-10-22H2. Ironically even with a load of notes on the case from previous engineers at the weekend I had a support engineer try to tell me there weren't any known issue because he could see it on that very release health dashboard!Certainly my suspicion too is that they are shying way from publicly acknowledging there is an issue with one of their flagship enterprise desktop virtualisation solutions because it wouldn't be a good look... that said heaven forbid a prospective AVD customer wander over to the Microsoft Tech Community and looks at the AVD pages and the 120 odd replies in this thread!You would think they would want to put a proper statement out there if only for damage containment purposes, setting out the issue, the work arounds, the KIR, the timescales on a fix. Ultimately I think most people who need to know about this are big enough to see beyond headlines - and frankly are probably more interesting in the detail and resolution and and how they issue is dealt with, ultimately as frustrating as it is, ultimately we probably all get that **** happens, then what matters more is how issue are dealt with; had we had a clearly published known issue, details of the fault, how to mitigate it and timescales then that would have saved the 3 or 4 calls I had at 1:40am every day from the CritSit managers as the 24x7 Sev A case was handed over between regions on a follow the sun basis - clearly the documentation exist internally, the wording that different people are eventually getting is virtually identical and it must be costing Microsoft a small fortunate in managing these cases when half the engineers you speak to are unaware of the issue.Probably the best commentary I saw post the Crowdstrike problems in July was from the CTO of one of their major competitors whose view was basically like "there but for the grace of God go I", that having that kind of low kernel level bug is probably pretty much every security vendors' worst nightmare and that people who live in glass houses shouldn't throw stones as the reality is no one is totally immune from the risk of occasionally unintentionally pushing bad code, what then matters is that you find out why, communicate and remediate it and learn from it for future - you just hope it is someone else and not you and when it's your turn that it is turns out to be something fairly cosmetic and patchable, Crowdstrike's biggest headache wasn't that once they became aware of the issue they didn't pull it or to try to deny it or that they actually terminally broke stuff irrevocably, it was managing to then get devices up long enough to connect and pull down and apply the KIR in the race before they then crashed again. Leaving aside the "how did that get out the door in the first place" issue arguably they didn't do too bad a job at dealing with the "ok this had happened, this is what we have done to fix it, this is what you need to do to recover" side of things, yes it was painful for those having to manually remediate devices but actually those people pretty quickly had the information to know what they needed to be doing, it then just became a case of hours in the day and whether anyone else could use their out of band tooling to streamline the fix like vPro etc.

HelenaKohler Removing September's CU didn't work for us but we didn't use the KIR. Rollback of the faulty patch probably left some rubbish on the hosts that caused a continuation of the problem. We decided to do exactly what you're planning and reinstated the image with an August patch level that's never been exposed to KB5043064. It's been three days without a complaint of a black screen on those hosts. I'm hoping it's mitigated for now until we can get the October CU tested and rolled out.

GlenW1530 we have had this issue for weeks, started with black screens, fixed that with the KIR and then 80% of users getting Office 365 auth issues and no access to outlook etc. The only thing that helped us was going from 16 users per host to 8 per host with 1 cpu per user i.e 8 core machine for 8 users. Someone else mentioned it here and it seems over 10 users appx starts to fail and cause this issue. We also disproved anything to do with fslogix as this happens even when excluded from fslogix. Also autostart all vm's before users come online to ensure they are "warmed up", spread the logins with "Breadth First", and look out for the AADbroker failing in event viewer as if this breaks, it breaks for all users on the host.

Azure Virtual Desktop - Black Screens on logins - What we've tried so far

BrianPitt
Brass Contributor
Feb 27, 2025
Still not fixed for us, going on 5 months and MS support hasn't done much but ask for logs then disappear for several days before giving us an answer they need more logs. Then we were told the February 25 Preview update would have fixes for our state repository database and should fix the issues. It didnt we have applied the new update and the issues with black screens STILL persist on Windows 11. Over 5 MONTHS and nothing new for an answer....that is unacceptable in my book, but MS support doesnt seem to care that much.
guptapankaj8
Brass Contributor
Nov 26, 2024
We found this issues occuring for us those VM Patched before October. We installed latest November patch and all Okay now.

You can worth try it
ricooooo
Copper Contributor
Nov 11, 2024
Thanks for the reply dit-chris and mgorton but I was not being able to test this because today we find out that Microsoft silently pushed out more information for a possible SSO issue fix. See: https://support.microsoft.com/topic/kb5048864-avd-users-might-experience-extended-time-on-a-black-screen-during-logon-and-sso-failures-7c1bbe77-ab9c-4c9e-80b8-6d6a9a5c8c20?preview=true
They also changed it now to resolved and mention that this is the resolution on this page... https://learn.microsoft.com/en-us/windows/release-health/status-windows-10-22H2#avd-users-might-experience-extended-black-screen-during-logon-and-sso-failures

So basically they want us to create a new golden image and slipstream the preview patch KB5045594 and then deploy new AVD servers.
We are now testing option 1 on our test server. Please let me know if this is working for you guys?

Option 1: Re-image the affected device
Follow these steps to create a new custom image by using the latest "Windows 10 Enterprise multi-session, Version 22H2" gallery image from the Azure Marketplace:
Go to the Microsoft Azure Marketplace. In the Search Marketplace search bar, type Microsoft Windows 10.
On the Microsoft Windows 10 page, click Get It Now.
Sign-in once you are prompted to enter your email address.
On the Create this app in Azure page, select Windows 10 Enterprise multi-session, version 22H2 from the Software plan drop-down list.
After selecting the image, click Create to create a new virtual machine.
Follow these steps on the Create a golden image in Azure page:
Create an image from an Azure VM to create the custom image.
Customize your VM and then install the October 24, 2024 Windows Update (KB5045594).
Take the final snapshot.
Run sysprep.
Capture the VM.
You can now reimage your affected AVD device by using the newly created custom image from Step 6.
NOTE If you want an image that includes the fix KB5045594 for this issue, you will have to wait until November 19, 2024 to reimage your device (to avoid step 6).
- AleA79
  Copper Contributor
  Nov 14, 2024
  we skipped all patches since August, and we are now testing November Patch which looks go so far. November 12, 2024—KB5046613 (OS Builds 19044.5131 and 19045.5131)
  - MattS2490
    Copper Contributor
    Nov 14, 2024
    Same with us, but we are running VMWare Horizon with FSLogix. Had black screens starting with September CU, rolled back to August CU and have been fine since then. Started testing the November CU yesterday. Have not had any black screens at logon yet. Will be doing some more testing, and then updating a small number of VDI computers and letting them run for a while before updating all machines. Do not want to have to roll them all back again.
ricooooo
Copper Contributor
Nov 08, 2024
We also have a Microsoft ticket open and we notice that after installing the black screen issue fix (KB5045594 Preview) SSO issues and losing network connectivity between Office apps still happening on our customers.
Microsoft provided us the following workaround/fix (see below screenshot) for the SSO issues regarding the AAD Broker plug-in but we are seeing that the policy is not being applied. Do you guys have the same issue?

Workaround/Fix for SSO Failures
Install the October 22, 2024 update (KB5045594): October 22, 2024—KB5045594 (OS Build 19045.5073) Preview - Microsoft Support
Reboot the machine.
Open Group Policy Manager as administrator

4. Navigate to User Configuration > Windows Settings > Scripts (Logon/Logoff) > Logon

5. Click on PowerShell Scripts > Add

6. Type a script name such as “AAD Broker plug-in fix” and on the Script Parameters section add the following command line “Add-AppxPackage -Register -Path "C:\Windows\SystemApps\Microsoft.AAD.BrokerPlugincw5n1h2txyewy\AppxManifest.xml" -DisableDevelopmentMode”

Click Ok.
7. Select Run Windows PowerShell scripts first and then Apply:

8. Reboot the machine and ensure the policy is active for all users.

After doing these steps all users should get the fix applied at logon and the issues described on the previously indicated documentation should seize. If you detect a user that experiences the issue, first ensure that the logon script is being applied, if it isn’t, enforce the logon script to the user and ask them to sign out and sign in.
- mgorton
  Copper Contributor
  Nov 11, 2024
  Check your system logs to see if there are logon script failures.
  “Add-AppxPackage -Register -Path "C:\Windows\SystemApps\Microsoft.AAD.BrokerPlugincw5n1h2txyewy\AppxManifest.xml" -DisableDevelopmentMode” is incorrect for us btw.
  
  There's a missing underscore in the path:
  "Add-AppxPackage -Register -Path "C:\Windows\SystemApps\Microsoft.AAD.BrokerPlugin_cw5n1h2txyewy\AppxManifest.xml" -DisableDevelopmentMode"
  - dit-chris
    Brass Contributor
    Nov 11, 2024
    mgortonEven with an underscore added I'm still getting those 1130 login script failure errors... logged - but copying and posting the command into a Powershell window seems to run ok logged in as the same user.
- dit-chris
  Brass Contributor
  Nov 08, 2024
  ricooooodo I take it you don't actually browse or add .ps1 script and just put the command into the parameters field then and you could thus literally type "mickey mouse" in the script name field?
Dbrender
Copper Contributor
Nov 07, 2024
Hi All,
We seem to still be having the same issues even though we have installed the new (KB5040525) update, problem we have is the black screen or users make it past the black screen and the OneDrive and Outlook wont sync, its affecting us badly, we have also logged a call with Microsoft support but to date nothing has been received. Anybody else had an update from them?
Nicolai
Copper Contributor
Nov 07, 2024
We also have a Microsoft ticket open, because even after installing the fix we still had problems with the login in connection with the AAD.Broker plugin.
Microsoft has now written me this workaround, which we will implement today:
"""
RCA seems to be understood, we hit the deadlock in auto repair due to a corruption that took place due to the 7D-known-Issue (10D was the resolution for).

One workaround that has brought good result is a combination of:

a.) Redeployment of Hosts with 10D
b.) Run this script as part of the UserLogon
"Add-AppxPackage -Register -Path "C:\Windows\SystemApps\Microsoft.AAD.BrokerPlugin_cw5n1h2txyewy\AppxManifest.xml" -DisableDevelopmentMode"

Background information:
When we fall into the Event ID 10 - Scenario, we are in the progress of "AutoRepair" that will try to do additional steps that could lead to the deadlock. By calling this as a "User Logon Script" we avoid the auto repair and should see an improvement.
"""
Let's see if it gets better.
- cathaldub
  Copper Contributor
  Nov 08, 2024
  Added to the User-GPO-logon scripts🤞
  - cathaldub
    Copper Contributor
    Nov 18, 2024
    Just in case anyone else still experiencing the issues, this script fixed our issues, it didn't work immediately, was like some users still had cached issues but now 1 week with no tickets in an environment of 100 users
- chrismaga
  Copper Contributor
  Nov 08, 2024
  Does it work for you?
  We added the logon script via GPO yesterday for one Pool as testing.
  For the moment no problems were reported. Fingers crossed 🙃
chrismaga
Copper Contributor
Nov 06, 2024
Any news? We opened a new ticket at microsoft last week and provided some information and no answer or workaround so far...
Robert_Hurd
Brass Contributor
Nov 04, 2024
Anyone seeing slowness on their AVD hosts starting last week, mostly on startup in the morning, but also seems to come in waves? We got notified on Wednesday that the Routine Planned Maintenance in Progress for App Service in Canada Central. Since this our users are reporting waves of slowness. I know this is not directly related to the Black screens, Auth for outlook, one drive issues, but I figured it was a attentive AVD support pool that may be able to share if they are seeing this also. I have put in a ticket with MS and am awaiting first contact. Thanks everyone for anything your willing to share.
- gjone92
  Copper Contributor
  Nov 04, 2024
  I have been having performance issues also on our hosts, and to make do with less headaches we provisioned more hosts and cut down the number of users on each host. I dont know if its related to this black screen thing, but sure the timings add up.
allankchambers
Copper Contributor
Nov 04, 2024
JPlendo

Microsoft have updated their status page on 1st November to say Oct Preview does not 100% fix our issues. And that they are still investigating:

Windows 10, version 22H2 | Microsoft Learn

Quote:

November 2024
AVD users might experience extended black screen during logon and SSO failures

Expand table
Status Originating update History
Confirmed OS Build 19045.4717
KB5040525
2024-07-23 Last updated: 2024-11-01, 14:11 PT
Opened: 2024-11-01, 14:11 PT
After installing the July 2024 non-security preview update (KB5040525), released July 23, 2024, or subsequent updates, you might experience an extended black screen that stays between 10 to 30 mins when you login to Azure Virtual Desktop (AVD). Additional symptoms you might experience include:
Failures related to single sign-on (SSO) experience on Office applications such as Outlook and Teams, which could prevent you from connecting to backend services or synchronizing data.
Office apps display losing network connectivity even though other applications, such as Edge, retain intranet and internet access.
This issue is caused by a deadlock in the interactions between the Azure Active Directory(AAD) broker and the underlying AppX deployment service(AppxSvc) and Background tasks infrastructure service.You are more likely to experience this issue if you are using FSLogix user profile containers on multi-session environments. FSLogix is a Microsoft tool that helps manage and speed up user profiles on computers, especially in virtual environments like remote desktops.
Please note that this issue is different from the scenario where the AppX Deployment Service (AppxSvc) was in an invalid state, causing a black screen. That issue was resolved with Windows updates released on October 22, 2024 (KB5045594), and later.
Windows 10 Education edition users and home users of Windows using Home or Pro editions are unlikely to face this issue as Azure Virtual Desktop is more commonly used in enterprise environments.

Next Steps: We are investigating the issue and provide an update where more information is available.

Affected platforms:
Client: Windows 10, version 22H2
Server: None
- dit-chris
  Brass Contributor
  Nov 06, 2024
  Fills you with confidence that they have now decided there is also an issue with Microsoft.AAD.BrokerPlugin_cw5n1h2txyewy also originated in July now it's early November... it's as if they went "oh that preview update we issued for the other issue doesn't seem to have stopped back screens at login" maybe we need to consider there is also another issue to look at when we have been reporting that weeks since they issued the KIR!
MarekS
Copper Contributor
Oct 24, 2024
From my experience:
KIR disabled, KB5045594 patch installed.
Generally works great.
For some users fslogix profile is corrupted, in event log I see:
Failure to load the application settings for package Microsoft.AAD.BrokerPlugin_cw5n1h2txyewy. Error Code: -2147024893
and then:
Triggered repair of state locations because operation SettingsInitialize against package Microsoft.AAD.BrokerPlugin_cw5n1h2txyewy hit error -2147009096.
looks like repair is successful because next time user logs in no issue with aps inside, like outlook etc.

Forum Discussion

Azure Virtual Desktop - Black Screens on logins - What we've tried so far

Resources