Nov 08, 2022 updates broke ADFS

Daniel Kaliel 1,236 Reputation points
2022-11-27T05:54:11.567+00:00

After rebooting the domain controllers ADFS stopped working in our environment. We applied the Nov 17 OOB update and restart the domain controllers then the ADFS cluster, still does not work.

https://support.microsoft.com/en-us/topic/november-17-2022-kb5021656-os-build-20348-1251-out-of-band-b165e8dd-cc02-4912-9cfa-a6b2b1016c37

On the ADFS servers we see the following errors:
264501-screenshot-2022-11-26-225025.jpg

264463-screenshot-2022-11-26-225051.jpg

264377-screenshot-2022-11-26-225106.jpg

264378-screenshot-2022-11-26-225122.jpg

264435-screenshot-2022-11-26-225140.jpg

Active Directory
Active Directory
A set of directory-based technologies included in Windows Server.
5,854 questions
Active Directory Federation Services
Active Directory Federation Services
An Active Directory technology that provides single-sign-on functionality by securely sharing digital identity and entitlement rights across security and enterprise boundaries.
1,189 questions
0 comments

1 answer

Sort by: Most helpful
Most helpful Newest Oldest
  1. Daniel Kaliel 1,236 Reputation points
    2022-11-28T18:22:24.603+00:00

    What fixed this for us was ensuring all accounts used for Kerberos auth had ms-DS-SupportedEncryptionTypes AD attribute cleared. If there was any data, even 0x0 in this field we encountered authentication issues.

    0 comments