Forum Discussion
Windows Server 2025 | Kerberos Local Key Distribution Center (LocalKDC) service fails to start
I have found that this service was disabled before the December update, for some reason it has gone to automatic and cannot be started, maybe this behavior is normal if you are not using this feature. After the January security patch the service still does not start, I think microsoft should report this problem.
This happens on a clean installation without any role installed, I know there are many users with this problem. The January patch has not fixed it.
8 Replies
This isn't a bug - this is by design: https://www.reddit.com/r/WindowsServer/comments/1hbkgo1/comment/m1ji39m/
They haven't enabled this feature yetIncorrect. The bug is that MS set the service to "Automatic" with the last updates before this feature even works. Setting it to Automatic causes it to log errors in the event log because it can't actually start. When you manage thousands of servers all reporting errors in the event log, that's a problem. The workaround is to set the service to manual or disabled for now but ultimately it's another MS udpate screw-up but that's nothing new.
We've been complaining about this for two months on one of the other MS forums, see below. Bottom line is it's a bug that MS is refusing to address or even acknowledge. Typical MS BS.
https://learn.microsoft.com/en-us/answers/questions/2136070/windows-server-2025-kerberos-local-key-distributio?comment=question#comment-1895271
realy !! why microsoft not fix this problem i have problem now in my work all service used LDAP not working .
Same problem here on our root DC's, I am able to join a server as a member server, but not able to logon locally on this domain member server. Also not able to create a Child domain.
Found that the Local KDC service has the status "starting", after setting it to automatic and reboot.
Same issue
There is no configuration or policy applied, I have indicated this is a clean install, windows installation and updates only. I know I am not the only one with this problem, I invite you to perform a test in your labs, install windows server 2025 and update with windows update ... the result will be what I said in this post.
LocalKDC and KDC are different services
The KDC service would be present if this server was a domain controller.
Same problem here with all 3 newly installed domain controllers.
service keeps saying ‘starting’.
Reboot won’t help.
