Threat Level: green Handler on Duty: Guy Bruneau

SANS ISC: Internet Security | DShield SANS ISC InfoSec Forums

Watch ISC TV. Great for NOCs, SOCs and Living Rooms:

Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!
Microsoft November out-of-cycle patch MS14-068
We had issue today relating to this patch. We installed KB3011780 and restarted our Domain Controller. Without making any other changes whatsoever to our Cisco VPN or Controller, our Company VPN stopped operating and no user could connect.

Previously we would have various Login event Kerberos notification messages appear in the Security Event Log on the Domain Controller, now there was none at all, and it would fail the same way whether a valid password was given or not (as if authentication was not even being attempted).

We tried with both clients in Mac and Windows computers, getting "IPSec Controller: IKE FAILED. phase 3, assert 0" errors in the Mac through Terminal and "Reason 433 Reason Not Specified By Peer" error through the Cisco VPN Client software on Windows.

I then removed the KB3011780 Update from the Domain Controller and restarted and immediately our VPN was operational again.

Has anyone else experienced such or has any ideas? It definitely appears to be related this patch.


Sign Up for Free or Log In to start participating in the conversation!