Microsoft Releases Fix for Windows Server 2025 Domain Controller Connectivity Issues
Microsoft addresses a bug that left Windows Server 2025 domain controllers unreachable after reboot.
Key Takeaways:
- Microsoft fixes a major Windows Server 2025 issue causing domain controllers to go offline after reboot.
- April 2025 update misapplied firewall profiles, disrupting network traffic and authentication.
- A new patch and temporary workaround are now available for IT admins to restore connectivity.
Microsoft has released a fix for an issue that left some Windows Server 2025 Domain Controllers unreachable after a reboot. This bug, which was caused by the April 2025 Patch Tuesday updates, disrupted domain connectivity and services, frustrating IT admins across affected environments.
What caused the Windows Server 2025 connectivity issue?
In April, Microsoft acknowledged a bug that caused Windows Server 2025 to become unreachable after a system restart, leading to application and service failures. The root cause was a faulty firewall configuration that incorrectly applied the Public firewall profile instead of the Domain profile. This misclassification blocked important network traffic, including authentication and communication between domain controllers and clients.
Windows Server 2025 domain controllers (such as servers hosting the Active Directory domain controller role) might not manage network traffic correctly following a restart,” Microsoft explained. As a result, Windows Server 2025 domain controllers may not be accessible on the domain network, or are incorrectly accessible over ports and protocols which should otherwise be prevented by the domain firewall profile.
Microsoft releases a patch to fix the problem
Earlier this week, Microsoft released a new patch (KB5060842) to address this issue on affected Windows Server 2025 machines. This update corrected the firewall profile application process, restored proper network traffic handling, and re-enabled stable communication between domain controllers and clients.
Microsoft has provided a temporary workaround for IT administrators who are unable to install the latest update right away. To restore network connectivity on affected servers, admins can run the Restart-NetAdapter * PowerShell command, which restarts the network adapter. This action prompts the system to reassess its network location and apply the correct Domain firewall profile. However, it must be repeated after every reboot, as the issue will recur until the KB5060842 update is installed.
Microsoft has also fixed another issue that was preventing select users from logging into their accounts using Windows Hello after installing the April 2025 Patch Tuesday updates. This bug affected Windows Server 2016, Windows Server 2019, Windows Server 2022, and Windows Server 2025.
Rabia has a master's degree in Software Engineering and she has years of experience writing professionally about Microsoft products and other technologies. Rabia has also written for OnMSFT.com as well as Windows Report. She is always up to date on t...
