Skip to main content
Start a Conversation

Unsolved

Uni-Admin

1 Rookie

 • 

2 Posts

628

July 10th, 2025 09:56

[Microsoft RPC Netlogon protocol] - July 8 Patchday - Windows Server - Active Directory

Hello my friendly Discussion Group :)

Im not sure who can answer my question...

We are runnig two x200 EMC Isilon Clusters in OneFS Version: 8.0.0.7.

I know its old an EOL... but now Is the day we can get big in trouble.

New MS Updates arrived incl. changes in [Microsoft RPC Netlogon protocol]

[Microsoft RPC Netlogon protocol] This update includes a security hardening change to the Microsoft RPC Netlogon protocol. This change improves security by tightening access checks for a set of remote procedure call (RPC) requests. After this update is installed, Active Directory domain controllers will no longer allow anonymous clients to invoke some RPC requests through the Netlogon RPC server. These requests are typically related to domain controller location. Certain file and print service software can be affected, including Samba. If your organization uses Samba, please refer to the Samba release notes

Problem:

Samba installations acting as member servers in Windows AD domains will be affected if they are configured to use the 'ad' idmapping backend. Current versions of Samba with the affected configuration will no longer function correctly once the Microsoft update has been applied. Users will not be able to connect to the SMB service provided by Samba for any domain configured to use the 'ad' idmapping backend.

I'm realy sure we are using this configuration in our Isilon cluster.

Authentication Providers -->Active Directory

The Isilon-cluster is a windows domain meber...

Other enterprise systems also affected:

Microsoft Windows updates for supported versions of Windows Server (planned for July 8,2025) will cause access loss issue with Storage Scale utilizing Cluster Export Services (CES) SMB/NFS protocol file access.

Every one know the x200 EMC Isilon is EOL and DELL will not bring any new update for this machine. 

Is there any hope for our environment?

Im realy sure this is a big deal for many NAS Providers.

Your desperate admin ;)

1 person also has this problem

DELL-Josh Cr

Moderator

 • 

9.3K Posts

July 10th, 2025 17:56

Hi,

 

Thanks for your question.

 

I do not see any information on what is happening with these older models that don’t support 9.5 or newer.

 

 

Let us know if you have any additional questions.

OlivierCR

1 Rookie

 • 

1 Message

July 18th, 2025 20:08

Did you manage to get a clear answer for this question? My company is running into the same issue, I queried our event logs for the event ID 5830 and got a list of 7 servers, all of them DELL EMC File Servers. The funny thing is:

Event 5830 says this "The Netlogon service allowed a vulnerable Netlogon secure channel connection because the machine account is allowed in the "Domain controller: Allow vulnerable Netlogon secure channel connections" group policy.  "

 

So, you would say, for an event 5830 to happen, it mean the request comes from a device that has the GPO "Allow vulnerable Netlogon secure channel connections" group policy" applied. Well, guess what, none of these 7 devices are domain joined, hence they can't be part of the group, hence they should not be registering any events 5830

Was this post helpful?

View All

No Events found!

Top