[German]Microsoft has confirmed a problem with Direct Access connections on Windows 10 and Windows 11 as of November 13, 2022. I had already reported that the security updates from November 8, 2022 can lead to connection problems with Direct Acess. There is a way to roll it back via KIR, so that the functionality is ensured again until a final fix by Microsoft.
I had already reported on November 11, 2022 in the blog post DirectAccess fails after Windows Updates from November 2022 about the issues. Now there was an official confirmation by Microsoft on November 13, 2022 on the Windows Release Health Status page of Windows 11 22H2 as well as on the corresponding pages of Windows 10.
Details and affected Windows versions
The post Direct Access might be unable to reconnect after your device has connectivity issues states:
After installing the [date] security updates or newer, you may be unable to reconnect to Direct Access after temporarily losing network connectivity or switching between Wi-Fi networks or access points.
Depending on the support entry, different November 8, 2022 security updates are mentioned. I have times the affected Windows versions
- KB5019509: Windows 11 22H2 (update from 10/18/2022)
- KB5018483: Windows 11 21H2 (update from 10/25/2022)
- KB5018485: Windows Server 2022 (Uupdate from 10/25/2022)
- KB5018482: Windows 10 20H2 till 22H2 (update from 10/25/2022)
- KB5019966: Windows 10 Enterprise LTSC 2019, Windows Server 2019 (update from 11/08/2022)
The issue only affects corporate environments, and not home systems (where Direct Access is not supported). According to Microsoft, other remote access solutions like VPN (sometimes called Remote Access Server or RAS) and Always On VPN (AOVPN) are not affected by this problem.
Workaround via KIR or reboot
Depending on the Windows version, Microsoft provides a workaround in which a Know Issues Rollback (KIR). KIR rolls back the changes made by update. To do this, a special group policy must be installed on the systems and then activated under Computer configuration -> Administrative templates. Currently, the following group policy downloads are available for KIR rollbacks:
- Download for Windows 11, version 22H2 – KB5018427 221029_091533 Known Issue Rollback
- Download for Windows 11, version 21H2 – KB5018483 220927_043051 Known Issue Rollback
- Download for Windows Server 2022 – KB5018485 220927_043049 Known Issue Rollback
- Download for Windows 10, version 22H2; Windows 10, version 21H2; Windows 10, version 21H1; Windows 10, version 20H2 – KB5018482 220927_043047 Known Issue Rollback
For Windows 10 Enterprise LTSC 2019, Windows Server 2019, Microsoft is still working on a KIR solution to address this issue.
Microsoft Office Updates (November 1, 2022)
Microsoft Security Update Summary (November 8, 2022)
Patchday: Windows 10-Updates (November 8, 2022)
Patchday: Windows 11/Server 2022-Updates (November 8, 2022)
Windows 7/Server 2008 R2; Windows 8.1/Server 2012 R2: Updates (November 8, 2022)
Patchday: Microsoft Office Updates (November 8, 2022)
Windows 10 20H2-22H2 Preview Update KB5018482 (Oct. 25, 2022)
Windows 11 22H2: Preview-Update KB5018496 (Oct. 25, 2022)
Windows 11 21H2: Preview Update (Oct. 25, 2022)
Windows Server 2022 Preview Update KB5018485 (Oct. 25, 2022)
Cookies helps to fund this blog: Cookie settings