KB5016693 For Windows Server 2022: A Closer Look

The new Insider Preview Build for the Windows 11 Release Preview Channel (KB5016691) isn’t the only new software that Microsoft released today.

Microsoft also released a cumulative update, which is actually a C release, for the Windows Server 2022 OS in the form of build KB5016693 (build 20348.946).

You should know that this new software brings improvements to Microsoft Defender for Endpoint, file compression, and storage replica.

Furthermore, we are also looking at some long overdue fixes in TPM and BitLocker, among others, as you are about to see below.

What’s new in Windows Server 2022 build 20348.946?

Let’s start by saying that the tech company stated that there are absolutely no known issues with this release, which is an added bonus.

However, users are probably bound to stumble upon one after testing this brand new Insider build for Windows Server 2022.

Let’s have a closer look at the release notes and discover what this new software version brings to the table:

• Enhances Microsoft Defender for Endpoint’s ability to identify and intercept ransomware and advanced attacks.
• Compresses a file regardless of its size if you have configured Server Message Block (SMB) Compression.
• Improves storage replication that occurs over low bandwidth or congested wide area networks (WAN).
• Addresses an issue that prevents the Startup Task API from working as expected for certain apps.
• Addresses an issue that causes Kerberos authentication to fail. The error is 0xc000009a (STATUS_INSUFFICIENT_RESOURCES “Insufficient system resources exist to complete the API”). This occurs when a client uses the Remote Desktop Protocol (RDP) to connect to a device that has enabled Remote Credential Guard.
• Addresses an issue that causes ServerAssignedConfigurations to be null in a few full configuration scenarios.
• Addresses an issue that prevents a private virtual LAN (PVLAN) from providing tenant and virtual machine (VM) isolation.
• Addresses an issue that delays a client’s acquisition of the Internet Protocol version 6 (IPv6) address for extended periods in an IPv6 environment.
• Addresses a known issue that causes Microsoft Edge to stop responding when you use IE mode. This issue also prevents you from interacting with a dialog.
• Addresses an issue that might generate error 0x1E when you shut down or restart a device.
• Addresses an issue that affects the installation of Microsoft Store apps when you have enabled Control-flow Enforcement.
• Addresses an issue that prevents virtualized App-V Microsoft Office applications from opening or causes them to stop working.
• Addresses an issue that might cause the deployment of the Windows Hello for Business certificate to fail in certain circumstances after you reset a device.
• Addresses an issue that degrades BitLocker performance.
• Addresses an issue that might prevent Windows from taking ownership of a Trusted Platform Module (TPM) device.
• Addresses an issue that might cause a Windows device that is using BitLocker to stop working.
• Addresses an issue that causes the Resultant Set of Policy tool (Rsop.msc) to stop working when it processes 1,000 or more “File System” security settings.
• Addresses an issue that might cause Remote Desktop Session licensing to display a 60-minute disconnection warning after reconnecting.
• Addresses an issue that causes the Settings app to stop working on server domain controllers (DCs) when accessing the Privacy > Activity history page.
• Addresses an issue that prevents devices from receiving an offer from Windows Update for the same extension driver when that extension driver is already installed without the base driver.
• Addresses a race condition that causes the Local Security Authority Subsystem Service (LSASS) to stop working on Active Directory domain controllers. This issue occurs when LSASS processes simultaneous Lightweight Directory Access Protocol (LDAP) over Transport Layer Security (TLS) requests that fail to decrypt. The exception code is 0xc0000409 (STATUS_STACK_BUFFER_OVERRUN).
• Addresses an issue that affects a lookup for a nonexistent security ID (SID) from the local domain using read-only domain controller (RODC). The lookup unexpectedly returns the STATUS_TRUSTED_DOMAIN_FAILURE error instead of STATUS_NONE_MAPPED or STATUS_SOME_MAPPED.
• Addresses an issue that affects input and output in the Storport driver and might cause your system to stop responding.

What can I do if KB5016691 fails to install?

1. Press Win+ I to access Settings.
2. Select the System category and click on Troubleshoot.
3. Press the Other troubleshooters button.
4. Press the Run button next to Windows Update.

There you have it, folks! Everything you can expect if you are a Beta channel Insider. Leave a comment below if you found any issues since installing this build.