Microsoft revealed the safety updates KB4480960 and KB4480970 on yesterday’s January 2019 Patch Day for the working methods Windows 7 SP1 and Windows Server 2008 R2 SP1.
Reports are coming in that set up of those updates might introduce networking issues. More exactly: network shares are now not accessible utilizing SMBv2.
The safety updates, each the month-to-month safety replace and the security-only replace, repair safety issues in a number of elements. Additionally, they embrace a brand new safety in opposition to Speculative Store Bypass for AMD-based computer systems, and disable the choice to configure PowerShell distant endpoints to work with non-administrator accounts. Microsoft made the change to PowerShell distant endpoints in all supported variations of the Windows working system.
The solely recognized situation listed on the replace web page for KB4480970 is the long-standing situation that network interface controllers might cease working. The workaround, additionally out there for months, is to put in drivers for affected gadgets.
Both KB4480960 and KB4480970 appear to trigger issues with network shares below sure circumstances. Günter Born published an in depth account on his web site in regards to the situation.
Several directors reported networking issues after set up of KB4480970 stating that shares couldn’t be reached after the set up of the replace.
An evaluation of the difficulty was revealed on the German admin web site Administrator.de. The evaluation confirms the network share situation and that it’s brought on by the set up of KB4480960 or KB4480970.
The situation is triggered provided that the consumer making an attempt to make the connection is an administrator on the machine that hosts the Share. If the consumer is “simply” a consumer on the gadget that hosts the share, the connection must be nice.
A workaround has been revealed to deal with the difficulty. It modifies the Windows Registry and must be run on the system that hosts the share. Note that it’s essential to run from an elevated command immediate.
- reg add HKLMSOFTWAREMicrosoftWindowsCurrentVersionPoliciessystem /v LocalAccountTokenFilterPolicy /t REG_DWORD /d 1 /f
- Reboot the PC.
The Registry entry defines how administrator credentials are utilized for distant entry. A worth of 1 units the restrictions to Audit mode.
Removal of the updates resolve the difficulty as nicely however will take away the safety patches on the goal system that Microsoft launched in January 2019.
Now You: Have you been affected by the difficulty?