Notice: This website is an unofficial Microsoft Knowledge Base (hereinafter KB) archive and is intended to provide a reliable access to deleted content from Microsoft KB. All KB articles are owned by Microsoft Corporation. Read full disclaimer for more details.

September 20, 2018—KB4457141 (OS Build 15063.1358)


View products that this article applies to.

Improvements and fixes

This update includes quality improvements. No new operating system features are being introduced in this update. Key changes include:

  • Addresses an issue that causes Internet Explorer security and certificate dialogs to display prompts in the background instead of the foreground in certain circumstances.
  • Addresses an issue that may cause the system to become unresponsive when applications call the EnableEUDC API.
  • Addresses an issue in which the “EnterpriseAssignedAccess” policy on mobile devices cannot configure some Settings pages, including Language, Region, Keyboard, and Airplane Mode.
  • Addresses an issue with the diagnostic pipeline for devices enrolled in Windows Analytics when the CommercialID registry key, "HKLM\Software\Microsoft\Windows\CurrentVersion\Policies\DataCollection" is present.
  • Addresses an issue that prevents the App-V client’s scheduled task from synching if the Device Guard lockdown policy is enabled.
  • Addresses an issue that occurs when using encrypted email. If the customer selects Cancel when first prompted for a PIN, multiple PIN prompts appear before the prompt finally goes away.
  • Addresses an issue that causes logon to fail when using a smart card to log in to a Remote Desktop Server. The error is “STATUS_LOGON_FAILURE”.
  • Addresses an issue that causes a Direct Access connection to fail when the client authentication certificate is stored in the TPM device.
  • Addresses an issue that causes a third-party VPN provider's user interface to stop working after dynamically unloading Cryptui.dll.
  • Addresses an issue that causes the system to log negative events for drivers that are valid and should be trusted. The issue occurs when running Windows Defender Application Control (Device Guard) in audit mode.
  • Addresses an issue that may cause the Local Security Authority Subsystem Service (LSASS) process to stop working when attempting to process a malformed security identifier (SID).
  • Addresses an issue that causes logging on to a Remote Desktop Session Host Server to occasionally stop responding.
  • Addresses an issue that may cause Service Control Manager (SCM) and Netlogon to stop working when one or more services are configured to run with domain credentials (service accounts).
  • Addresses an issue that causes the OS to stop responding during startup under certain circumstances.
  • Addresses an issue that occurs when using the “X509HintsNeeded” group policy to prepopulate the Username hint field. The Username hint field is unexpectedly empty when unlocking a machine after a successful logon. Username hint caching is expected to only work for lock and unlock scenarios and is not designed for logoff and logon scenarios.
  • Addresses an issue with evaluating the compatibility status of the Windows ecosystem to help ensure application and device compatibility for all updates to Windows.
  • Addresses an issue in which all Guest Virtual Machines running Unicast NLB fail to respond to NLB requests after the Virtual Machines restart.

If you installed earlier updates, only the new fixes in this package will be downloaded and installed on your device.

↑ Back to the top


Known issues in this update

Symptom Workaround

After you install the August Preview of Quality Rollup or September 11, 2018 .NET Framework update, instantiation of SqlConnection can throw an exception. For more information about this issue, see the following article in the Microsoft Knowledge Base:

4470809 SqlConnection instantiation exception on .NET 4.6 and later after August-September 2018 .NET Framework updates

This issue is resolved in KB4480959.

↑ Back to the top


How to get this update

Before installing this update

Windows cumulative updates require that you install the latest servicing stack update (SSU) for your operating system before installing the latest cumulative update (LCU). This helps to mitigate potential issues while installing the LCU. For more information, see Servicing stack updates.

If you are using Windows Update, the latest SSU (KB4132649) will be offered to you automatically. To get the stand-alone package for the latest SSU, go to the Microsoft Update Catalog.

Install this update

To download and install this update, go to Settings > Update & Security > Windows Update and select Check for updates.

To get the standalone package for this update, go to the Microsoft Update Catalog website.

File information

For a list of files provided in this update, download the file information for cumulative update 4457141.

↑ Back to the top


Keywords: windows 10 1703

↑ Back to the top

Article Info
Article ID : 4457141
Revision : 27
Created on : 3/13/2019
Published on : 3/13/2019
Exists online : False
Views : 415

Minor Releases