Nov 13 2022 03:15 PM - edited Nov 13 2022 05:33 PM
Hi everyone,
Heads up to anyone who may be facing this. Walked today Monday morning to some users unable to connect to AVD. It would launch then hit them with the lock screen instantly and prompt for password (despite them just using it to log in). User could re-auth but would take them to a temp profile not FSlogix.
After 2 hours of stress we found our DC had installed and update on the 11th of Nov: KB5019964 - we had to remove and reboot the DC. after which all works fine again.
There were many events on the DC as below.
SYSTEM Event 14: While processing an AS request for target service krbtgt, the account XXXX did not have a suitable key for generating a Kerberos ticket (the missing key has an ID of 1). The requested etypes : 18 17 23 24 -135 3. The accounts available etypes : 23 18 17. Changing or resetting the password of XXXXX will generate a proper key. ** (changing password did nothing)
Nothing on MS or google about this error currently as far as I know? Keen to know if anyone else faced this issue.
Thanks
Nov 13 2022 04:40 PM
Nov 13 2022 04:49 PM
Nov 13 2022 06:53 PM
SolutionSome more info in here from a MS employee tweet:
https://twitter.com/stevesyfuhs/status/1590048886693195777?s=46&t=tenHdBF0GcSIlEka-PQedg
Nov 13 2022 09:14 PM
We are having some serious connection issues with our SQL databases and have been trying to get this update removed for the past ~6 hours -- did you run into any issues with uninstalling it??
We tried uninstalling it on 3 servers so far, and all 3 get stuck on reboot and spinning at "Working on updates 100%".
On one of them we booted into recovery mode with command prompt and tried removing the package with dism. It's been stuck at 98.7% for 2+ hours...
Nov 13 2022 09:24 PM
@abtechnick oof sorry to hear that. Frustrating problem for sure.
Only had rhe updare on one DC thankfully. Uninstaller took 5mins. Reboot quuck then sat at 100% for about 30mjns. DC was accessible in that state however some just left it going with issue immediately fixed.
Seems it's a case of waiting
Nov 13 2022 09:53 PM
Nov 14 2022 09:52 PM
Nov 13 2022 06:53 PM
SolutionSome more info in here from a MS employee tweet:
https://twitter.com/stevesyfuhs/status/1590048886693195777?s=46&t=tenHdBF0GcSIlEka-PQedg