I have some critical issue about directory service after security patch of CVE-2020-1472 RRS feed

  • Question

  • Hi There,

    I was instructed to patch office AD server with mentioned security update. it looks all domains servers are flagged with similar error like this:

    Log Name:      Directory Service
    Source:        Microsoft-Windows-ActiveDirectory_DomainService
    Date:          9/29/2020 10:55:12 PM
    Event ID:      1789
    Task Category: Knowledge Consistency Checker
    Level:         Error
    Keywords:      Classic
    User:          ANONYMOUS LOGON
    Computer:      AD1.domain.local
    The site CN=Site1,CN=Sites,CN=Configuration,DC=domain,DC=local contains one or more directory servers, but is not connected by any site links. This site cannot replicate with other sites unless they are connected by site links.
    Event Xml:
    <Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event">
        <Provider Name="Microsoft-Windows-ActiveDirectory_DomainService" Guid="{0e8478c5-3605-4e8c-8497-1e730c959516}" EventSourceName="NTDS KCC" />
        <EventID Qualifiers="49152">1789</EventID>
        <TimeCreated SystemTime="2020-09-29T14:55:12.438350400Z" />
        <Correlation />
        <Execution ProcessID="556" ThreadID="1868" />
        <Channel>Directory Service</Channel>
        <Computer> AD1.domain.local</Computer>
        <Security UserID="S-1-5-7" />

    All AD servers have such type of error in director service event log.

    Many thanks for you help

    Nice to meet you here

    Tuesday, September 29, 2020 3:36 PM