CyberHappenings logo
Home Browse Watchlists Experimental About

Track cybersecurity events as they unfold. Sourced timelines. Filter, sort, and browse. Fast, privacy‑respecting. No invasive ads, no tracking.

LSASS crash triggers reboot loops on Windows domain controllers post-April 2026 updates

First reported
Last updated
1 unique sources, 1 articles

Summary

Hide ▲

Microsoft has confirmed that non-Global Catalog Windows domain controllers running April 2026 security updates (KB5082063) are entering reboot loops due to Local Security Authority Subsystem Service (LSASS) crashes during startup. The issue affects environments using Privileged Access Management (PAM) and disrupts authentication and directory services, potentially rendering domains unavailable. Affected platforms include Windows Server 2025, 2022, 23H2, 2019, and 2016. Microsoft is investigating and recommends contacting Support for Business for mitigation measures.

Timeline

  1. 17.04.2026 10:59 1 articles · 23h ago

    April 2026 security updates trigger LSASS crashes and reboot loops on Windows domain controllers

    Non-Global Catalog Windows domain controllers running April 2026 security updates (KB5082063) experience Local Security Authority Subsystem Service (LSASS) crashes during startup, leading to reboot loops. The issue disrupts authentication and directory services in Privileged Access Management (PAM) environments and affects Windows Server 2025, 2022, 23H2, 2019, and 2016. Microsoft has not yet released a fix and recommends contacting Support for Business for mitigation steps.

    Show sources
    Open in new tab

Information Snippets