[MS-APDS]: Authentication Protocol Domain Support

This topic lists Errata found in [MS-APDS] since it was last published. Since this topic is updated frequently, we recommend that you subscribe to this RSS feed to receive update notifications.

Errata are subject to the same terms as the Open Specifications documentation referenced.

RSS

To view a PDF file of the errata for the previous versions of this document, see the following ERRATA Archives:

October 16, 2015 - Download

June 30, 2015 - Download

Errata below are for Protocol Document Version V35.0 – 2021/06/25.

Errata Published*

Description

2022/03/14

Section 2.2.2 Kerberos PAC Validation Message Syntax, updated product note number 2, point 3, that Windows Server 2003 with SP1 and later do not validate the PAC but use Kerberos PAC validation.

Changed from:

• Windows Server 2003 operating system with Service Pack 1 (SP1) does not validate the PAC when the application server is under the local system context, the network service context, the local service context, or has SeTcbPrivilege privilege. Otherwise, Windows Server 2003 with SP1 and future service packs use Kerberos PAC validation.

Changed to:

• Windows Server 2003 operating system with Service Pack 1 (SP1) and later Windows operating systems do not validate the PAC when the application server is under the local system context, the network service context, the local service context, or has SeTcbPrivilege privilege. Otherwise, Windows Server 2003 with SP1 and future service packs, and later Windows operating systems use Kerberos PAC validation.

*Date format: YYYY/MM/DD