Forum Discussion

osozu's avatar
osozu
Brass Contributor
Oct 21, 2022

Problem with kb KB5018411 on domain controllers

After we install KB5018411 on WS 2016 domain controllers, we cannot authenticade rdp connections using dns name in mstsc against servers and client, in network capture we see Kerberos errors
1039 9.056341 10.4.1.6 10.4.1.72 KRB5 268 KRB Error: KRB5KDC_ERR_PREAUTH_REQUIRED
then
1031 9.054642 10.4.1.6 10.4.1.72 KRB5 155 KRB Error: KRB5KDC_ERR_TGT_REVOKED

and that is occur everytime we can acces rdp with dns name

connection with ip address in mstsc client works

 

edit 

here is the same problem on reddit 

KB5018411 installed friday, can't RDP to terminal server (on prem)? : sysadmin (reddit.com)

Resources