Microsoft is trying to fix issues with its newly updated password features

Windows 11
(Image credit: Unsplash)

Microsoft is working on a fix for a bug it introduced with the latest Patch Tuesday cumulative updates. 

In a security advisory published earlier this week, the tech giant said that installing the April 11 cumulative updates, KB5025224 and KB5025239, breaks a feature known as Windows Local Administrator Password Solution (LAPS).

Although it's not in the same league as the best password manager, this feature does help administrators manage passwords for local admin accounts on Azure Active Directory-joined, or Windows Server Active Directory-joined devices, by rotating and backing them up to AD domain controllers automatically, BleepingComputer reports.

Workaround available

This month, the Patch Tuesday update includes the integration of Windows LAPS on Windows 10, Windows 11, and Windows Server 2019. But applying the patch breaks both legacy LAPS and new LAPS.

"There is a legacy LAPS interop bug in the [..] April 11, 2023 update. If you install the legacy LAPS GPO CSE on a machine patched with the April 11, 2023 security update and an applied legacy LAPS policy, both Windows LAPS and legacy LAPS will break," Microsoft said. "Symptoms include Windows LAPS event log IDs 10031 and 10032, as well as legacy LAPS event ID 6. Microsoft is working on a fix for this issue."

A patch is still in the works, so the only way to address the issue is via a workaround. According to Microsoft, admins can either uninstall legacy LAPS or delete all registry values under the HKLM\Software\Microsoft\Windows\CurrentVersion\LAPS\State registry key.

LAPS will now become native to Windows and will be updated through the standard Windows update process, Microsoft confirmed.

"Starting with the April 11, 2023 security update, LAPS is natively integrated into Windows with new capabilities for on-premises AD scenarios and forthcoming Azure Active Directory benefits (currently in private preview)," the advisory reads. 

"Some of the new features include rich policy management, automatic rotation, dedicated event log, new PowerShell module, hybrid-joined support, and more." 

Via: BleepingComputer

TOPICS

Sead is a seasoned freelance journalist based in Sarajevo, Bosnia and Herzegovina. He writes about IT (cloud, IoT, 5G, VPN) and cybersecurity (ransomware, data breaches, laws and regulations). In his career, spanning more than a decade, he’s written for numerous media outlets, including Al Jazeera Balkans. He’s also held several modules on content writing for Represent Communications.

Read more
A Windows 11 laptop sitting on a desk in front of a window
Microsoft warns its January Windows updates may fail if this Citrix software is installed
Representational image of a cybercriminal
Microsoft just patched a host of worrying security issues, so update now
A laptop with the Windows 11 desktop on screen, glowing, while on a work desk
Are you unable to get security updates for Windows 11 24H2? Here’s the likely reason why, and the fix to get your PC safe and secure again
A man getting angry with his laptop.
Windows 11 bug deletes Copilot from the OS – is this the first glitch ever some users will be happy to encounter?
Angry businessman destroying his desk and laptop with a baseball bat
New patch for Windows 11 24H2 reportedly plays havoc with File Explorer, and some folks are claiming it's broken their PC
A hacker wearing a hoodie sitting at a computer, his face hidden.
Microsoft patches three worrying security flaws in its latest critical update, so update now
Latest in Security
Isometric demonstrating multi-factor authentication using a mobile device.
NCSC gets influencers to sing the praises of 2FA
Sam Altman and OpenAI
OpenAI is upping its bug bounty rewards as security worries rise
A stylized depiction of a padlocked WiFi symbol sitting in the centre of an interlocking vault.
Dangerous new CoffeeLoader malware executes on your GPU to get past security tools
China
Notorious Chinese hackers FamousSparrow allegedly target US financial firms
A digital representation of a lock
NYU website defaced as hacker leaks info on a million students
NHS
NHS IT supplier hit with major fine following ransomware attack
Latest in News
Lenovo | Thinkpad T14s Gen 6 Snapdragon
Windows 11’s latest patch declares war on BIOS updates for some Lenovo laptops, blocking them as a security risk in a bizarre turn of events
Tomodachi Life: Living the Dream screenshot showing a Mii smelling some fresh flowers.
Tomodachi Life: Living the Dream is a sequel to my favorite 3DS game, and I think it's already packing the charm that inZOI lacks
Google Pixel Watch 3 side dial and button
Google Gemini reportedly spotted on Wear OS – could a rollout be close at hand?
Nintendo Switch 2 Joy-Con up-close from app store
Nintendo's new app gave us another look at the Switch 2, and there's something different with the Joy-Con
cheap Nintendo Switch game deals sales
Nintendo didn't anticipate that Mario Kart 8 Deluxe was 'going to be the juggernaut' for the Nintendo Switch when it was ported to the console, according to former employees
Toni Collette in Hereditary
Everything leaving Netflix in April 2025 – from the scariest movie ever made to a beloved DreamWorks animation with 99% on Rotten Tomatoes