I run a small managed service provider and we've had quite a few users facing an authentication error (0x80080005) while trying to use the Windows App and Azure Remote Desktop. This issue seems to be linked to the recent Windows update, KB 5074109.
To resolve this, you can follow these steps:
1. Block the update to prevent it from being installed again.
2. Remove the update from the system.
3. Reboot the workstation.
4. Users should be able to get back to work after this fix.
To block the update using PowerShell, you can run the following command:
```
New-Item -Path "HKLM:SOFTWAREMicrosoftWindowsCurrentVersionWindowsUpdateUpdateExclusionList" -Force;
New-ItemProperty -Path "HKLM:SOFTWAREMicrosoftWindowsCurrentVersionWindowsUpdateUpdateExclusionList" -Name "KB5074109" -Value "Block" -PropertyType String -Force
```
For removing the update via CMD, try:
```
dism /online /Remove-Package /PackageName:Package_for_RollupFix~31bf3856ad364e35~amd64~~26100.7623.1.20 /Quiet /NoRestart
```
To find your package name, use this PowerShell command:
```
Get-WindowsPackage -Online | Where-Object { $_.PackageName -match '5074109|RollupFix' } | Select-Object PackageName, PackageState, InstallTime
```
After the package is removed, reboot the workstation. If users are still having issues, they can temporarily log in through the AVD Web Client until Microsoft releases a patch.
3 Answers
For those affected, Microsoft has confirmed that this update won't be rolled back since it's a security patch. I tried to block it, but the blocking script seems ineffective. The best workaround I've found is to pause updates temporarily. Here's how you can do that:
```
reg add "HKLMSOFTWAREMicrosoftWindowsUpdateUXSettings" /v PauseUpdates /t REG_DWORD /d 1 /f
reg add "HKLMSOFTWAREMicrosoftWindowsUpdateUXSettings" /v PauseUpdatesStartTime /t REG_SZ /d "%date%" /f
reg add "HKLMSOFTWAREMicrosoftWindowsUpdateUXSettings" /v PauseUpdatesExpiryTime /t REG_SZ /d "2023-02-06" /f
net stop wuauserv & net stop bits & net start wuauserv & net start bits
```
Keep an eye on Microsoft's bug report for updates until they release a proper fix.
Just a heads-up, this error seems to not affect users set up with Single Sign-On (SSO). I followed the guide on Azure's site, and using the Windows App worked fine for me even with the update installed.
Thanks a ton for sharing this! I was stuck with the same issue, and your instructions helped me sort it out in no time. Really appreciate you breaking it down step by step.
Related Questions
How To Get Your Domain Unblocked From Facebook
How To Find A String In a Directory of Files Using Linux