Microsoft warns new Windows updates can cause printer errors
The reason is that the temporary mitigation feature that was provided a year ago to address Windows Server printing on non-compliant devices will be removed.
Last year, Microsoft reported an issue that could cause print and scan errors on multiple versions of Windows Server after installing the July 2021 security update on a Windows domain controller.
This known issue affects printers, scanners, and multifunction devices that do not comply with the enhanced changes CVE-2021-33764 and use smart card authentication (PIV).
"The affected devices are printers, scanners and smart card authentication multifunction devices that do not support Diffie-Hellman (DH) for key exchange during PKINIT Kerberos authentication or do not support des- ede3-cbc (triple DES) in the Kerberos AS request," Microsoft explains.
Fortunately, according to Microsoft, all affected smartcard authentication devices are still functional and unaffected if username/password authentication is used.
In the middle of last week, Microsoft said that the temporary fix has now been disabled by this week's optional preview updates on Windows Server 2019 systems. This change will result in printing and scanning errors in the environment. Windows with non-compliant devices.
"Starting July 21, 2022, this temporary mitigation will not be available in security updates. The Windows July 2022 preview update will remove the temporary mitigation and will require compliant printing and scanning devices," Microsoft said.
Temporary mitigations will also be removed on all affected versions of Windows Server (Windows Server 2019, 2016, 2012 and 2008) with next month's Patch Tuesday security updates, scheduled for release on September 9. August 2022.
"All updates released on this date or after will not be able to use the temporary mitigations feature," Microsoft explains.
"Smart card authentication printers and scanners must comply with section 3.2.1 of the RFC 4556 specification required for CVE-2021-33764 after installing these updates or later on an Active domain controller Directory".
To find non-compliant devices that will fail to authenticate after installing Windows DC updates in July 2022 or later, Admins should check the logs on their Active Directory DCs for events. RFC-4456 incompatible printer identification event was added after the Windows Server February 2022 updates were deployed.
You should read it
- How to fix offline errors of printers on Windows 10
- Microsoft fixed printer errors for all affected versions of Windows 10
- How to fix Windows errors not connected to the printer
- Fixed a problem with inactive Wi-Fi printers in Windows 10
- Microsoft admits recent Windows 10 update breaks USB printing
- Microsoft confirms new printer error on Windows 11, only Admin can print
- How to fix missing USB printer port on Windows 10
- The printer has ink smudges - Causes and ways to fix the printer ink smudge error
- Common printer errors and how to fix them
- The printer prints slowly - Causes and effective and quick fixes
- Common HP printer error codes and how to fix HP printer errors
- HP 2015 printer with ink lamp error - how to fix HP Printer error 2015
Maybe you are interested
How to fix the missing language bar error on Windows 11 extremely quickly
Turn off these visual effects to make Windows run smoother!
7 Ways to Customize Windows 11 Notepad
8 settings to change to make your Mac trackpad and keyboard work like Windows
How to add fonts to Word in Windows computer
How to use the file search command on Windows, find saved files