Jan 19 2022 09:26 AM - edited Jan 19 2022 09:27 AM
We have this problem re: the KB's listed in subject, where I work, using smartcards w/PIV and thin clients. We've been informed by Dell Engineering after extensive troubleshooting that this will be the case for the foreseeable future due to current RDP design. Whether Microsoft will change this in the future is unknown, so our only option to continue using compliant smart cards and thin clients is to switch to a non-RDP protocol (eg Horizon, Citrix). This is fine - but our timeline to do this is extremely limited as the deadline is Feb 8.
KB5005389 says: "Important You must have your noncompliant devices updated and compliant or replaced by February 8, 2022. After that, the mitigation will not work in security updates. For more information, see KB5005408."
Is there some way I can find out *exactly* which upcoming patch will remove the mitigation? At the very least we could temporarily prevent our on-premise WSUS server from releasing it for a little while, until we get everyone migrated to new infrastructure.
Thanks very much for your help.
Jan 27 2022 08:25 AM
anyone....?
Jan 31 2022 09:26 AM
Jan 31 2022 09:36 AM
Jan 31 2022 09:37 AM
Jan 31 2022 09:57 AM
Jan 31 2022 10:00 AM
Aug 09 2022 09:01 AM
@Harm_Veenstra I'm assuming it's game over today (as opposed to February when they started indicating it was eventually going to be over, today), as Microsoft, it appears, does not want to do anything but plug this hole. In our case, this mitigation allowed our smart cards to keep functioning with Wyse thin clients. Admittedly was not ideal. Still, Dell confirms same;
*if you use RDP and smart cards (as opposed to VDI and smart cards), they will no longer work with thin clients. At least, this is what we've been told from multiple vendors.
Be that as it may - seems unlikely the KB released to patch this away will match these. Any ideas as to which ones they might be for patch Tuesday release (or how to find them)?
Thx once again! : )
Aug 09 2022 09:22 AM - edited Aug 09 2022 09:23 AM
No problem, I think that they will show up here? https://docs.microsoft.com/en-us/windows/release-health/windows-message-center Could you mark my answer as the solution to mark it as solved?
Aug 09 2022 11:11 AM
Aug 09 2022 11:26 AM