Microsoft’s newest safety updates have triggered synchronization failures in Lively Listing environments operating on Home windows Server 2025.
The problem, confirmed on October 14, 2025, impacts listing synchronization for big safety teams, probably halting essential identification administration processes throughout enterprise networks.
The issue stems from the September 2025 Home windows safety replace, KB5065426, which targets OS Construct 26100.6584.
Functions counting on the Lively Listing listing synchronization (DirSync) management, corresponding to Microsoft Entra Join Sync, fail to copy AD safety teams with greater than 10,000 members absolutely.
This incomplete sync happens completely on Home windows Server 2025 after making use of the replace or subsequent patches launched in October. Microsoft opened the investigation ticket on October 14 at 5:49 PM PT, updating it hours later to verify the scope.
Lively Listing Sync Points
The flaw disrupts on-premises Lively Listing Area Companies (AD DS), a cornerstone for hybrid cloud setups the place Entra ID (previously Azure AD) integrates with native directories.
Giant organizations, notably in finance, healthcare, and authorities sectors, with in depth consumer bases, face important challenges.
Incomplete group synchronization can result in entry denials, compliance dangers, and operational downtime as customers lose permissions for shared sources like e mail lists or file servers.
Consultants be aware this isn’t the primary hiccup in Microsoft’s patch cycle; related AD points have cropped up in prior updates, underscoring the challenges of securing evolving server architectures.
With Home windows Server 2025 nonetheless contemporary from its 2024 launch, early adopters are notably susceptible as a result of rollback choices are restricted, growing the danger of safety gaps from unpatched vulnerabilities.
For instant aid, affected customers can implement a registry tweak to disable the problematic function. Navigate to HKEY_LOCAL_MACHINESYSTEMCurrentControlSetPoliciesMicrosoftFeatureManagementOverrides, create a DWORD worth named 2362988687, and set it to 0. Microsoft warns of registry modification dangers, advising backups and warning—probably requiring OS reinstalls if mishandled.
The corporate is actively probing the difficulty and guarantees a repair in an upcoming Home windows replace. No shopper platforms are impacted, limiting publicity to server environments.
IT groups ought to monitor Microsoft’s safety replace information for timelines and weigh the registry repair in opposition to ongoing threats like ransomware that these patches handle.
As enterprises race to patch amid rising cyber threats, this glitch highlights the tightrope of balancing safety and stability. Directors are urged to check in staging environments earlier than manufacturing rollout.
Comply with us on Google Information, LinkedIn, and X for day by day cybersecurity updates. Contact us to function your tales.
