The recent April Patch Tuesday updates have brought an unexpected challenge for enterprise administrators and IT security professionals: broken Kerberos authentication for Windows Hello and certificate-based logins on Active Directory Domain Controllers (DC) running supported versions of Windows...
active directory
addomaincontrollers
authentication security
certificate trust
certificate-based logons
cve-2025-26647
enterprise identity
enterprise it
it security
kerberos authentication
kerberos delegation
ntauth store
passwordless authentication
patch tuesday
pki management
pkinit
security vulnerabilities
smart card login
windows hello for business
windows server