The recent April Patch Tuesday updates have brought an unexpected challenge for enterprise administrators and IT security professionals: broken Kerberos authentication for Windows Hello and certificate-based logins on Active Directory Domain Controllers (DC) running supported versions of Windows...
active directory
ad domain controllers
authentication security
certificate trust
certificate-based logons
cve-2025-26647
enterpriseidentityenterprise it
it security
kerberos authentication
kerberos delegation
ntauth store
passwordless authentication
patch tuesday
pki management
pkinit
security vulnerabilities
smart card login
windows hello for business
windows server
