Windows Server 2025 Archives

Winsage

February 14, 2025

Windows Server 2022 KB5051979 released, direct download .msu

The February 2025 security patch for Windows Server 2022, KB5051979, resolves issues with Digital-to-Analog Converter (DAC) devices and USB peripherals that previously displayed error code 10. It upgrades the system to Build 20348.3207, fixing a memory leak related to predictive input ideas and issues with the Device Health Attestation service. The update also addresses crashes related to symbolic links and acknowledges lingering harmless errors from the January 2025 update, specifically concerning the System Guard Runtime Monitor Broker Service. Users of OpenSSH and Citrix may face conflicts due to the January update. Some fixes are also applied to Windows 10 with KB5051974. Additionally, Microsoft has resolved a boot error in Windows Server 2025 and released cumulative updates KB5051989 and KB5051987 for Windows 11.

Winsage

February 5, 2025

No Windows 11 hardware requirement workaround for you!

Microsoft has removed guidance on bypassing the Trusted Platform Module (TPM) 2.0 requirement for installing Windows 11 from its help page. This change indicates a potential shift in policy regarding the installation of Windows 11 on PCs without TPM 2.0. The workaround previously involved creating a Windows Registry key but still required TPM 1.2. The removal occurred between December 12 and 14, 2024, according to the Wayback Machine's archives. Additionally, Microsoft tightened another method for bypassing the TPM requirement in August 2024, while third-party applications like Flyby11 are still available but have recently been flagged by Microsoft Defender as potentially unwanted software. These developments suggest that Microsoft is reinforcing its requirement for Windows 11 to be installed on machines with TPM 2.0.

Winsage

December 21, 2024

4 reasons why Windows 11 Pro is a solid OS for home labs

Many operating systems designed for server tasks are based on Linux due to its secure architecture, extensive packages, and community support, leading to a preference for Linux among DIY enthusiasts. Windows 11, particularly the Pro version, offers features that make it a viable option for experimentation servers, including a beginner-friendly GUI, built-in Remote Desktop Protocol (RDP), higher RAM limits, dual-CPU support, and a built-in Hyper-V toolkit for running Windows VMs. Windows 11 Pro supports over 128GB of RAM and dual-processor setups, unlike the Home version, which has limitations. It can also function as an all-in-one workstation for gaming and everyday tasks, allowing users to host private game servers and run experimental virtual machines without complex configurations. However, Windows systems generally have less security and incur performance overhead compared to Linux-based platforms.

Winsage

December 10, 2024

Microsoft NTLM Zero-Day to Remain Unpatched Until April

Microsoft has issued new guidance to help organizations defend against NTLM relay attacks following the discovery of a zero-day vulnerability affecting all versions of Windows Workstation and Server, from Windows 7 to Windows 11. This vulnerability allows attackers to capture NTLM credentials by tricking users into opening a malicious file. Microsoft has classified the vulnerability as having moderate severity and expects a fix to be rolled out in April. This is the second NTLM credential leak zero-day reported to Microsoft by ACROS Security since October. Microsoft has updated its guidance on enabling Extended Protection for Authentication (EPA) by default on LDAP, AD CS, and Exchange Server to mitigate NTLM-related vulnerabilities.

Winsage

December 8, 2024

Microsoft releases final Windows Server 2025 preview build in 2024

Microsoft has released Windows Server 2025 build 26334 for Windows Insiders, marking the final update for the year, with the next expected in January 2024. This build includes Desktop Experience and Server Core installation options for Datacenter and Standard editions, as well as the Annual Channel for Container Host and Azure Edition for virtual machine evaluation. The branding remains Windows Server 2025 in this preview, and issues reported should reference Windows Server vNext preview. Users enrolled in Server Flighting will receive this build automatically. New features include Windows Defender Application Control for Business (WDAC), which enforces a list of permitted software to minimize the attack surface, and improved accessibility for Windows Admin Center (WAC), allowing installation directly from the Windows Server Desktop for Datacenter or Standard preview users. There are known issues, including a labeling error that may reference Windows 11, which Microsoft plans to fix in a future release. Windows Server build 26334 is valid until September 15, 2025, with specific installation keys provided for Server Standard and Datacenter editions, while no key is required for Azure Edition.

Winsage

December 7, 2024

All Windows 11, 10, Server versions affected by a new zero day, unofficial patch out

Windows 11's latest feature update, version 24H2, is being extended to more systems. A new zero-day vulnerability discovered by cybersecurity firm 0patch affects all Windows clients, including Windows 11 version 24H2 and various server editions, allowing attackers to steal NTLM credentials by having users view a malicious file in Windows Explorer. The vulnerability impacts all Windows Workstation and Server versions from Windows 7 and Server 2008 R2 to the latest Windows 11 v24H2 and Server 2022. Windows Server 2025 is currently undergoing compatibility testing and is not yet affected. Microsoft is phasing out NTLM and encourages users to transition to more secure alternatives. Users can obtain a patch for the vulnerability by registering for a free account at 0patch Central.

Winsage

December 5, 2024

Microsoft confirms zero chance Win11 supports older hardware

Microsoft requires the Trusted Platform Module (TPM) 2.0 as a mandatory hardware requirement for Windows 11, emphasizing its importance for the operating system's security. Steven Hosking, Senior Product Manager at Microsoft, stated that TPM 2.0 is essential for a secure Windows 11. TPM provides encryption and decryption functionalities and can be a discrete chip or integrated within the processor. Despite the advantages of TPM, the strict hardware requirements have led to a stagnation in Windows 11's market share. While Windows 10 is nearing the end of its free support, Microsoft remains firm on the TPM requirement, labeling it a "non-negotiable standard." However, TPM 2.0 is not a minimum requirement for Windows Server 2025, although it will be necessary for certain features like BitLocker Drive Encryption. Many existing Windows 10 devices that could run Windows 11 are sidelined due to these requirements, despite being high-performance machines. There are ways to bypass the Windows 11 requirements, but these methods may be closed off without notice. Hosking acknowledged that implementing TPM 2.0 may require changes for organizations, but did not explain why consumers without this hardware cannot opt out, especially since Windows Server 2025 can be installed without it.

Winsage

November 26, 2024

New Windows 10 0x80073CFA fix requires installing WinAppSDK 3 times

Microsoft has acknowledged a bug affecting users on Windows 10 that prevents them from uninstalling or updating applications, particularly after installing the WinAppSDK 1.6.2 package. Users see the message "Something happened on our end" in the Microsoft Store, while IT administrators encounter the 0x80073CFA error when using PowerShell. To address this, Microsoft has withdrawn the WinAppSDK 1.6.2 package and released the KB5046714 preview update. Users are advised to install the WinAppSDK 1.6.3 update three times to resolve the issues. A PowerShell command is available to check if the problematic package is present on a system. Microsoft also retracted the November Exchange security updates due to issues with email services and addressed bugs causing blue screens in Windows Server 2025. Additionally, the Windows 11 24H2 update has been blocked on certain systems to enhance user experience.

Winsage

November 21, 2024

Microsoft pulls WinAppSDK update breaking Windows 10 app uninstalls

Microsoft has acknowledged an issue affecting Windows 10 users since November 12, where difficulties in updating or uninstalling packaged applications, notably Microsoft Teams, have arisen due to the deployment of the WinAppSDK 1.6.2 package. Users on Windows 10 22H2 devices are encountering an error message in the Microsoft Store's 'Downloads' panel stating, "Something happened on our end." IT administrators may see the error ‘Deployment failed with HRESULT: 0x80073CFA’. Microsoft confirmed this issue is not related to any Windows security or preview monthly updates, and uninstalling previous cumulative updates will not resolve it. The company is working on a solution expected in a forthcoming Windows update. Microsoft has retracted the WinAppSDK 1.6.2 package and is preparing a WinAppSDK 1.6.3 update with a fix. A workaround involving specific commands in PowerShell or Command Prompt is available for affected users. Additionally, Microsoft has withdrawn the November Exchange security updates due to reported disruptions in email flow and has resolved bugs causing blue screens and installation issues on Windows Server 2025 systems. A new issue related to Windows 24H2 has also been confirmed, causing unexpected audio surges when using USB DAC sound systems during gaming.

Winsage

November 21, 2024

An end to rebooting? Microsoft’s latest change means you won’t need to restart your work laptop for every Windows update any more

Microsoft is rolling out hotpatching capabilities to Windows 11 Enterprise and Microsoft 365 users, allowing for rebootless updates. This feature enables users to download and install security updates without interrupting their work. Hotpatch updates activate immediately upon installation, reducing system downtime and improving efficiency by updating in-memory code without needing additional binaries. This process enhances security by allowing quicker installations and minimizing vulnerability time. Hotpatching has been available for Windows Server 2022 Datacenter: Azure Edition since February 2022, but there are no plans to extend this feature to Windows 11 Home and Pro editions at this time.