{"id":34434,"date":"2024-07-12T00:25:16","date_gmt":"2024-07-11T22:25:16","guid":{"rendered":"http:\/\/159.69.82.204\/win\/?p=34434"},"modified":"2024-07-17T22:23:19","modified_gmt":"2024-07-17T20:23:19","slug":"windows-july-2024-updates-break-remote-connections","status":"publish","type":"post","link":"https:\/\/borncity.com\/win\/2024\/07\/12\/windows-july-2024-updates-break-remote-connections\/","title":{"rendered":"Windows July 2024 updates break remote connections"},"content":{"rendered":"<p><img decoding=\"async\" style=\"float: left; margin: 0px 10px 0px 0px; display: inline;\" title=\"Windows\" src=\"https:\/\/www.borncity.com\/blog\/wp-content\/uploads\/2021\/04\/Windows-klein.jpg\" alt=\"Windows\" width=\"200\" align=\"left\" \/>[<a href=\"https:\/\/www.borncity.com\/blog\/2024\/07\/11\/windows-juli-2024-updates-machen-remote-verbindungen-kaputt\/\" target=\"_blank\" rel=\"noopener\">German<\/a>]There are isolated reports of issues in Windows caused by the July 2024 patchday security updates. Under Windows Server 2012 R2, there is a report that the Remote Desktop Virtualization Host Agent service under Hyper-V is broken (albeit due to the June 2024 update). And under Windows Server 2022, the Remote Desktop Gateway service is broken on some systems and crashes regularly. Remote connections are then no longer possible.<\/p>\n<p><!--more--><\/p>\n<h2>Windows Server<\/h2>\n<p><img loading=\"lazy\" decoding=\"async\" src=\"https:\/\/vg09.met.vgwort.de\/na\/5919ca2d1b4c459c8783e405c33cf3ef\" alt=\"\" width=\"1\" height=\"1\" \/>Security updates were released for various Windows Server versions on July 9, 2024 to eliminate vulnerabilities.<\/p>\n<h3>Windows Server 2022 Updates<\/h3>\n<p>Cumulative update <a href=\"https:\/\/support.microsoft.com\/help\/5040437\" target=\"_blank\" rel=\"noopener\">KB5040437<\/a> has been released for Windows Server 2022 (see <a href=\"https:\/\/borncity.com\/win\/2024\/07\/10\/patchday-windows-11-server-2022-updates-july-9-2024\/\">Patchday: Windows 11\/Server 2022-Updates (July 9, 2024)<\/a>, which is supposed to fix a bug in the Remote Desktop Session Host (RDSH). The support article states:<\/p>\n<blockquote><p>[Remote Desktop Session Host (RDSH)] Users are unable to connect to the RDSH. This is becausedwm.exe is no longer responding.<\/p><\/blockquote>\n<p>In addition, the RADIUS blast vulnerability (CVE-2024-3596) has been patched (see\u00a0<a href=\"https:\/\/borncity.com\/win\/2024\/07\/10\/blast-radius-attack-enables-radius-authentication-to-be-bypassed\/\" rel=\"bookmark\">Blast RADIUS attack enables RADIUS authentication to be bypassed<\/a>). I cannot say whether the two fixes have anything to do with the problem with the Remote Desktop Gateway service.<\/p>\n<h3>Windows Server 2016\/2019<\/h3>\n<p>2016\/2019<\/p>\n<p>There were also security updates for the Windows Server versions mentioned here, which address vulnerabilities and bugs in the blog posts <a href=\"https:\/\/borncity.com\/win\/2024\/07\/10\/patchday-windows-10-server-updates-july-9-2024\/\">Patchday: Windows 10\/Server Updates (July 9, 2024)<\/a> and <a href=\"https:\/\/borncity.com\/win\/2024\/07\/10\/windows-server-2012-r2-und-windows-7-july-9-2024\/\">Windows Server 2012 \/ R2 und Windows 7 (July 9, 2024)<\/a>.<\/p>\n<h2>Remote Desktop Gateway service broken<\/h2>\n<p>I have now received reports for almost all Windows Server versions that the Remote Desktop Gateway service is causing problems and crashing.<\/p>\n<h3>Windows Server 2022 RD Gateway service broken<\/h3>\n<p>German blog reader Christian wrote in <a href=\"https:\/\/www.borncity.com\/blog\/2024\/07\/10\/patchday-windows-10-server-updates-9-juli-2024\/#comment-187527\" target=\"_blank\" rel=\"noopener\">this comment<\/a> that he had to uninstall the cumulative update <a href=\"https:\/\/support.microsoft.com\/help\/5040442\" target=\"_blank\" rel=\"noopener\">KB5040442<\/a> on a 2022 server. In his environment, the Remote Desktop Gateway service crashed regularly. Has anyone else made this observation?<\/p>\n<h3>Windows 11\/Windows Server 2016<\/h3>\n<p>German blog reader Roland has posted <a href=\"https:\/\/www.borncity.com\/blog\/2024\/07\/10\/patchday-windows-10-server-updates-9-juli-2024\/#comment-187535\" target=\"_blank\" rel=\"noopener\">a comment reporting problems<\/a> connecting Windows 11 to the Remote Desktop Gateway service running on Windows Server 2016. While the RD connections are running with Windows 10, there are issues with Windows 11 clients. Roland has posted this entry from the Event Viewer log:<\/p>\n<blockquote><p>Eventlog RD-Gateway (Microsoft-Windows-TerminalServices-Gateway\/Operational) reports with EventID 311:<\/p>\n<p>The user \"xxx\", on client computer \"yyy\", did not connect to the following network resource: \"zzz\" because the remote computer does not support secure device redirection. Try selecting another network resource or possibly lower RD Gateway security by modifying RD CAP to allow client connections to resources that do not enforce device redirection.<\/p><\/blockquote>\n<p>According to Roland, you can <a href=\"https:\/\/learn.microsoft.com\/en-us\/windows-server\/remote\/remote-desktop-services\/rds-plan-access-from-anywhere\" target=\"_blank\" rel=\"noopener\">adjust<\/a> the Remote Desktop CAP (RD Connection Authorization Policies) so that it works again. However, this reduces security. If Central RD CAP is used, the Vendor-Specific-Attribute \"TSG-Device-Redirection\" must be adjusted according to Roland. However, this is a single vote &#8211; are there any other readers with this problem?<\/p>\n<h2>Windows Server 2012 R2<\/h2>\n<p>A German blog reader with the alias WindowsFan has posted <a href=\"https:\/\/www.borncity.com\/blog\/2024\/06\/12\/windows-server-2012-r2-und-windows-7-11-juni-2024\/#comment-187544\" target=\"_blank\" rel=\"noopener\">a comment<\/a> on July 10, 2024 and writes that he had problems with the Remote Desktop Virtualization Host Agent service on a Window Server 2012 R2 Core running Hyper-V systems. When creating new VDIs, the service crashed unexpectedly. As a result, the VDIs running on the host were no longer accessible for the CB. After uninstalling the <a href=\"https:\/\/support.microsoft.com\/help\/5039294\" target=\"_blank\" rel=\"noopener\">KB5039294<\/a>\u00a0update (June 2024 update), the problems no longer occur.<\/p>\n<p><strong>Similar articles:<br \/>\n<\/strong><a href=\"https:\/\/borncity.com\/win\/2024\/07\/09\/microsoft-security-update-summary-july-9-2024\/\">Microsoft Security Update Summary (July 9, 2024)<\/a><br \/>\n<a href=\"https:\/\/borncity.com\/win\/2024\/07\/10\/patchday-windows-10-server-updates-july-9-2024\/\">Patchday: Windows 10\/Server Updates (July 9, 2024)<\/a><br \/>\n<a href=\"https:\/\/borncity.com\/win\/2024\/07\/10\/patchday-windows-11-server-2022-updates-july-9-2024\/\">Patchday: Windows 11\/Server 2022-Updates (July 9, 2024)<\/a><br \/>\n<a href=\"https:\/\/borncity.com\/win\/2024\/07\/10\/windows-server-2012-r2-und-windows-7-july-9-2024\/\">Windows Server 2012 \/ R2 und Windows 7 (July 9, 2024)<\/a><br \/>\n<a href=\"https:\/\/borncity.com\/win\/2024\/07\/11\/microsoft-office-updates-july-9-2024\/\">Microsoft Office Updates (July 9, 2024)<\/a><br \/>\n<a href=\"https:\/\/borncity.com\/win\/2024\/07\/11\/windows-11-update-kb5040442-causes-issues-with-outlook-2021\/\" rel=\"bookmark\">Windows 11 update KB5040442 causes issues with Outlook 2021<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>[German]There are isolated reports of issues in Windows caused by the July 2024 patchday security updates. Under Windows Server 2012 R2, there is a report that the Remote Desktop Virtualization Host Agent service under Hyper-V is broken (albeit due to &hellip; <a href=\"https:\/\/borncity.com\/win\/2024\/07\/12\/windows-july-2024-updates-break-remote-connections\/\">Continue reading <span class=\"meta-nav\">&rarr;<\/span><\/a><\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[463,22,2],"tags":[47,2863,195,194],"class_list":["post-34434","post","type-post","status-publish","format-standard","hentry","category-issue","category-update","category-windows","tag-issue","tag-patchday-7-2024","tag-update","tag-windows"],"_links":{"self":[{"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/posts\/34434","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/comments?post=34434"}],"version-history":[{"count":8,"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/posts\/34434\/revisions"}],"predecessor-version":[{"id":34485,"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/posts\/34434\/revisions\/34485"}],"wp:attachment":[{"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/media?parent=34434"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/categories?post=34434"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/tags?post=34434"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}