Microsoft November 2020 Update (KB4586781-CVE-2020-17049) breaks IdM/AD cross-forest trust

Solution Verified - Updated -

Issue

It was reported that after installing latest Microsoft Windows 10 Update (KB4586781), Kerberos authentication for Active Directory users starts to fail when they try to access resources in the Identity Management (IdM) domain that has a cross-forest trust to an Active Directory domain.

Environment

  • Red Hat Enterprise Linux
  • Identity Management with trust to an Active Directory forest
  • Windows Server, version 20H2; Windows Server, version 2004; Windows Server, version 1909; Windows Server, version 1903; Windows Server, version 1809; Windows Server 2019; Windows Server 2016; Windows Server 2012 R2; Windows Server 2012

Subscriber exclusive content

A Red Hat subscription provides unlimited access to our knowledgebase, tools, and much more.

Current Customers and Partners

Log in for full access

Log In

New to Red Hat?

Learn more about Red Hat subscriptions

Using a Red Hat product through a public cloud?

How to access this content