This browser is no longer supported.
Upgrade to Microsoft Edge to take advantage of the latest features, security updates, and technical support.
![](data:image/svg+xml, %3Csvg xmlns='http://www.w3.org/2000/svg' height='64' class='font-weight-bold' style='font: 600 30.11764705882353px "SegoeUI", Arial' width='64'%3E%3Ccircle fill='hsl(128, 8%, 22%)' cx='32' cy='32' r='32' /%3E%3Ctext x='50%25' y='55%25' dominant-baseline='middle' text-anchor='middle' fill='%23FFF' %3EA%3C/text%3E%3C/svg%3E)
Hi everyone,
we have big issues in our company after installing Update KB5055523 on Windows 11 PC's.
On every PC the SAPLOGON.exe crashes at start. In the Eventviewer ist this entry:
Fehlerhafter Anwendungsname: saplogon.exe, Version: 8000.1.12.1161, Zeitstempel: 0x67e601f5
Fehlerhafter Modulname: ntdll.dll, Version: 10.0.26100.3775, Zeitstempel: 0xe141486e
Ausnahmecode: 0xc0000409
Fehleroffset: 0x000b1c30
Fehlerhafte Prozess-ID: 0x2EDC
Fehlerhafte Anwendungsstartzeit: 0x1DBAD08F81A279D
Fehlerhafter Anwendungspfad: C:\Program Files (x86)\SAP\FrontEnd\SAPGUI\saplogon.exe
Fehlerhafter Modulpfad: C:\WINDOWS\SYSTEM32\ntdll.dll
Berichts-ID: f221fa86-e58f-4a7b-ba47-5696f529aac1
Vollständiger Name des fehlerhaften Pakets:
Fehlerhafte paketbezogene Anwendungs-ID:
To fix it i tried :
Nothing from Above worked...
My last shot was uninstalling the latest Update which my PC gets on April 11th (KB5055523) and voilà, SAPLOGON worked like before.
Please let me know if there is any solution to fix this issue without uninstalling the Update.
Best Regards
Locked Question. This question was migrated from the Microsoft Support Community. You can vote on whether it's helpful, but you can't add comments or replies or follow the question.
Hi,
I assume that you use Crowdstrike, this issue occurred in our case with SAP, KB5055523 and Crowdstrike Falcon in combination.
https://supportportal.crowdstrike.com/s/article/Some-applications-may-crash-after-installing-Windows-KB5055523-when-AUMD-is-enabledAfter setting up an exclusion of the saplogon path and of the ntdll.dll path, in the Crowdstike Portal, **** SAP starts without an issue.
Best Regards
Ivo, you should think twice before excluding a core dll from CrowdStrike detection. It is sufficient to exclude the SAP GUI path. Alternatively, I understand (though cannot confirm) that uninstalling the 32 bit version of SAP GUI and replacing with the 64 bit version on Windows 11 systems may be an even better alternative than excluding files from monitoring.
Hi,
we use SAP GUI 8.00 32 Bit and we also use CrowdStrike.
We had the same issue on Windows 11 24H2 computers. Windows 11 23H2 were not affected.
We solved it by unsinstalling SAP GUI 8.00 32 Bit and installing SAP GUI 8.00 64 Bit.
best regards
Hello sir,
could you please go more in depth where is ntdll located and how to exclude it from crowdstrike.
Thanks in advance.
Best regards,
Ivo
Thanks Chris. We chose not to exclude the ntdll.dll path. It took a few tries to figure out the correct nomenclature but excluding the SAPGUI folder did the trick.
