question

SergeyChesnokov-0947 avatar image
0 Votes"
SergeyChesnokov-0947 asked DSPatrick commented

Event id 37 Kerberos-Key-Distribution-Center (Windows 2019)

I have some warnings, and everybody ask me to install updates over Windows Update catalog. But i can't do this, because i have an error when i try to import Updates to my local WSUS.

Tell me, please, another method to install updates and remove warnings with id37 on my DC?

windows-active-directorywindows-server-2019
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

DSPatrick avatar image
0 Votes"
DSPatrick answered SergeyChesnokov-0947 commented

You can download directly from the update catalog.

the latest SSU
https://www.catalog.update.microsoft.com/Search.aspx?q=KB5005112

followed by the latest cumulative update.
https://www.catalog.update.microsoft.com/Search.aspx?q=KB5008218

--please don't forget to upvote and Accept as answer if the reply is helpful--





· 1
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

I already have this updates on my DС, but error is stil in event viewer
Other solution?




159251-image-2021-12-21-092317.png


0 Votes 0 ·
SergeyChesnokov-0947 avatar image
0 Votes"
SergeyChesnokov-0947 answered DSPatrick commented

I already have this updates on my DС, but error is stil in event viewer
Other solution?

· 1
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

Sorry, Q&A forums are english only. Can't read that.


0 Votes 0 ·
DSPatrick avatar image
0 Votes"
DSPatrick answered DSPatrick commented

Patch all the domain controllers as first step then it looks like you may get one warning for every user.

https://support.microsoft.com/en-us/topic/kb5008380-authentication-updates-cve-2021-42287-9dafac11-e0d0-4cb8-959a-143bd0201041
Adds the new PAC to users who authenticated using an Active Directory domain controller that has the November 9, 2021 or later updates installed. When authenticating, if the user has the new PAC, the PAC is validated.

--please don't forget to upvote and Accept as answer if the reply is helpful--


· 4
5 |1600 characters needed characters left characters exceeded

Up to 10 attachments (including images) can be used with a maximum of 3.0 MiB each and 30.0 MiB total.

Just checking if there's any progress or updates?

--please don't forget to upvote and Accept as answer if the reply is helpful--



0 Votes 0 ·

No progress or updates.
I still have same errors.
But all updates are installed!
That can i do else?

0 Votes 0 ·
DSPatrick avatar image DSPatrick SergeyChesnokov-0947 ·

What errors? Looks like you may get one warning for every user, but note that all domain controllers should be patched as first step.

https://support.microsoft.com/en-us/topic/kb5008380-authentication-updates-cve-2021-42287-9dafac11-e0d0-4cb8-959a-143bd0201041
Adds the new PAC to users who authenticated using an Active Directory domain controller that has the November 9, 2021 or later updates installed. When authenticating, if the user has the new PAC, the PAC is validated.

--please don't forget to upvote and Accept as answer if the reply is helpful--








0 Votes 0 ·

Just checking if there's any progress or updates?

--please don't forget to upvote and Accept as answer if the reply is helpful--



0 Votes 0 ·