win11 clients fix duplicate SID problem through sysprep #145
Description
Hello everyone,
maybe some of you have already noticed, but since the October 24H2 and 25H2 updates, RDP no longer works between two systems that were set up with LINBO and therefore have the same SID:
Microsoft recommends: Only use installations created with Sysprep
To avoid these issues, Microsoft advises using Sysprep when creating or cloning Windows installations in the future. The built-in Windows tool “generalizes” system images and ensures that each installation receives a unique SID.
As “Neowin” further reports, Microsoft describes this change in a new support document (KB5070568) on its website. The company wants to ensure that NTLM and Kerberos logins will only work on uniquely identifiable devices — an important step toward greater security in corporate networks.
Microsoft quietly makes this requirement mandatory for Windows 11 25H2 and 24H2 installations
Additional links:
Kerberos and NTLM authentication failures due to duplicate SIDs – Microsoft Support
Remmina from a Linux client still seems to work, though.
This mysterious workaround GPO from Microsoft apparently is only available through paid business support. If anyone happens to have it, please let me know.
Is it possible to fix it in llinbo?
Thx in advance and kind regards,
Frank