Microsoft has showed that some Home windows area controllers are getting into restart loops because of Native Safety Authority Subsystem Provider (LSASS) crashes after putting in the April 2026 safety updates.
The corporate additionally warned that Home windows admins might come across this factor when putting in new area controllers, and even on present ones, if the server processes authentication requests very early within the startup procedure.
“After putting in the April 2026 Home windows safety replace (KB5082063) and rebooting, non‑International Catalog (non‑GC) area controllers (DCs) in environments that use Privileged Get entry to Control (PAM), would possibly enjoy LSASS crashes all over startup,” Microsoft mentioned in a liberate well being dashboard replace.
“Because of this, affected DCs might restart time and again, fighting authentication and listing products and services from functioning, and probably rendering the area unavailable.”
This identified factor handiest affects organizations the usage of Privileged Get entry to Control (PAM) and is not likely to impact non-public gadgets that are not controlled via an IT division. The listing of affected platforms contains programs working Home windows Server 2025, Home windows Server 2022, Home windows Server 23H2, Home windows Server 2019, and Home windows Server 2016.
Whilst Microsoft remains to be running on a repair, it steered IT directors to touch Microsoft Make stronger for Trade for mitigation measures that may be implemented even after deploying the April 2026 replace.
Microsoft has addressed more than one area controller problems brought about via safety updates lately, maximum just lately resolving Home windows Server authentication issues in June 2025, that have been brought about via the April 2025 safety updates.
Nearly a yr previous, in Would possibly 2024, it fastened some other identified factor that brought about NTLM authentication disasters and area controller reboots after deploying the April 2024 Home windows Server safety updates.
In March 2024, it launched emergency out-of-band (OOB) updates to mend Home windows area controller crashes after putting in the March 2024 Home windows Server safety patches.
Microsoft is now additionally investigating a separate factor inflicting this month’s KB5082063 Home windows safety replace to fail to put in on some Home windows Server 2025 programs.
On Wednesday, it additionally warned admins that some Home windows Server 2025 gadgets may additionally recommended customers to go into a BitLocker key after deploying the KB5082063 replace.
AI chained 4 zero-days into one exploit that bypassed each renderer and OS sandboxes. A wave of latest exploits is coming.
On the Independent Validation Summit (Would possibly 12 & 14), see how self sustaining, context-rich validation reveals what is exploitable, proves controls dangle, and closes the remediation loop.
