{"id":37779,"date":"2025-04-18T00:28:30","date_gmt":"2025-04-17T22:28:30","guid":{"rendered":"http:\/\/159.69.82.204\/win\/?p=37779"},"modified":"2025-04-18T06:33:36","modified_gmt":"2025-04-18T04:33:36","slug":"windows-server-2025-domain-controller-no-longer-accessible-after-restart","status":"publish","type":"post","link":"https:\/\/borncity.com\/win\/2025\/04\/18\/windows-server-2025-domain-controller-no-longer-accessible-after-restart\/","title":{"rendered":"Windows Server 2025: Domain Controller no longer accessible after restart"},"content":{"rendered":"<p><img decoding=\"async\" style=\"margin: 0px 10px 0px 0px; display: inline; float: left;\" title=\"Windows\" src=\"https:\/\/www.borncity.com\/blog\/wp-content\/uploads\/2021\/04\/Windows-klein.jpg\" alt=\"Windows\" width=\"200\" align=\"left\" \/>[<a href=\"https:\/\/www.borncity.com\/blog\/2025\/04\/18\/windows-server-2025-domain-controller-nach-neustart-nicht-mehr-erreichbar\/\" target=\"_blank\" rel=\"noopener\">German<\/a>]Small addendum to a topic that has been left here for a few days. Microsoft has already confirmed a new problem with Windows Server 2025 in connection with Active Directory Domain Controllers (DC) on April 11, 2025. After restarting the server operating system, the DC is no longer accessible. This is probably due to incorrectly assigned Windows Firewall profiles after each restart.<\/p>\n<p><!--more--><\/p>\n<p><img loading=\"lazy\" decoding=\"async\" src=\"https:\/\/vg06.met.vgwort.de\/na\/ee90b9fdc99e4ac6acd2fd8fc3d998bf\" alt=\"\" width=\"1\" height=\"1\" \/>Microsoft has posted the support article <a href=\"https:\/\/learn.microsoft.com\/en-us\/windows\/release-health\/status-windows-server-2025#3356msgdesc\" target=\"_blank\" rel=\"noopener\">Domain controllers manage network traffic incorrectly after restarting<\/a> in the <a href=\"https:\/\/learn.microsoft.com\/en-us\/windows\/release-health\/status-windows-server-2025\" target=\"_blank\" rel=\"noopener\">Release Health status<\/a> section of Windows Server 2025 under Known Issues on April 11, 2025.<\/p>\n<h2>Issues with DCs after restart<\/h2>\n<p>The support article states that Windows Server 2025 domain controllers (e.g. servers hosting the Active Directory domain controller role) may not manage network traffic correctly after a restart. As a result, Windows Server 2025 domain controllers may not be reachable in the domain network. Or the DCs are incorrectly reachable via ports and protocols that should otherwise be prevented by the domain firewall profile.<\/p>\n<h2>Incorrect firewall profile for the DC is the cause<\/h2>\n<p>Microsoft writes that this problem results from the fact that domain controllers (DCs) do not use a domain firewall profile when they are restarted. Instead, the default firewall profile is used. The immediate consequence is that applications or services running on the domain controller or on remote devices may fail or remain unreachable in the domain network.<\/p>\n<p>Microsoft's developers are working on a solution and want to correct this at some point with an update. Affected administrators must perform the following workaround each time they restart Windows Server 2025, which works as a DC.<\/p>\n<h2>Workaround: Restart the network adapter<\/h2>\n<p>Microsoft has suggested a temporary workaround for those affected. Administrators can restore the expected behavior by restarting the network adapters. This can be done manually in various ways, e.g. with the following command via PowerShell:<\/p>\n<p>Restart-NetAdapter *<\/p>\n<p>The problem is that the error reoccurs each time the Windows Server 2025 acting as a domain controller is restarted. Microsoft suggests creating the workaround to restart the network adapters as a scheduled task that restarts the network adapter each time the domain controller is restarted.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>[German]Small addendum to a topic that has been left here for a few days. Microsoft has already confirmed a new problem with Windows Server 2025 in connection with Active Directory Domain Controllers (DC) on April 11, 2025. After restarting the &hellip; <a href=\"https:\/\/borncity.com\/win\/2025\/04\/18\/windows-server-2025-domain-controller-no-longer-accessible-after-restart\/\">Continue reading <span class=\"meta-nav\">&rarr;<\/span><\/a><\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"open","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[463,2],"tags":[47,2845],"class_list":["post-37779","post","type-post","status-publish","format-standard","hentry","category-issue","category-windows","tag-issue","tag-windows-server-2025"],"_links":{"self":[{"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/posts\/37779","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/comments?post=37779"}],"version-history":[{"count":1,"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/posts\/37779\/revisions"}],"predecessor-version":[{"id":37780,"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/posts\/37779\/revisions\/37780"}],"wp:attachment":[{"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/media?parent=37779"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/categories?post=37779"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/borncity.com\/win\/wp-json\/wp\/v2\/tags?post=37779"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}