Firm confirms issue hitting MIT Kerberos realms

Jul 26, 2019 06:51 GMT  ·  By

Microsoft has acknowledged a bug in some of the most recent cumulative updates for Windows 10, revealing that installing these patches could cause devices connected to a domain using MIT Kerberos reals to fail to start up or continue to restart.

The company explains that this bug affects the majority of Windows 10 versions where the latest cumulative updates were installed, including the May 2019 Update.

The affected platforms (both client and server) are the following:  

Windows 10 version 1903
Windows 10 version 1809
Windows 10 Enterprise LTSC 2019
Windows 10 version 1803
Windows 10 version 1709
Windows 10 version 1703
Windows 10 Enterprise LTSC 2016
Windows 10 version 1607
Windows Server version 1903
Windows Server version 1809
Windows Server 2019
Windows Server version 1803
Windows Server version 1709
Windows Server 2016
“Devices connected to a domain that is configured to use MIT Kerberos realms may not start up or may continue to restart after installation of [cumulative update number]. Devices that are domain controllers or domain members are both affected,” Microsoft explains.

If you’re not sure the bug exists on your device or not, you can check if the following registry key exists on your computer using the Registry Editor:


HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\System\Kerberos\MitRealms
Microsoft says you should also look for a policy called “Define interoperable Kerberos v5 realm settings” located at the following path in the GPE:
Computer Configuration -> Policies -> Administrative Templates > System -> Kerberos
The issue has already been confirmed to exist in the following cumulative updates:  
Windows 10 version 1903: OS Build 18362.145, May 29, 2019 - KB4497935
Windows 10 version 1809: OS Build 17763.652, July 22, 2019 - KB4505658
Windows 10 version 1803: OS Build 17134.915, July 16, 2019 - KB4507466
Windows 10 version 1709: OS Build 16299.1296, July 16, 2019 - KB4507465
Windows 10 version 1703: OS Build 15063.1955, July 16, 2019 - KB4507467
Windows 10 version 1607: OS Build 14393.3115, July 16, 2019 - KB4507459
Microsoft recommends users to avoid installing these cumulative updates if the bug affects their productivity and says that a fix is expected in mid-August.