Introduction

Microsoft recently alerted the IT community to critical issues affecting Windows Server 2025, specifically targeting domain controllers and remote management functionalities. The two primary disruptions are a serious firewall profile misconfiguration bug triggered by system restarts on domain controllers, and a separate but impactful Remote Desktop Protocol (RDP) session freeze issue caused by recent security updates. Both issues jeopardize operational continuity, network security, and system management.

Background and Context

Windows Server 2025 is Microsoft's latest enterprise server platform designed to manage complex Active Directory (AD) environments and support critical network services. Domain controllers in such environments rely on specific firewall profiles to permit seamless and secure communication within the domain network. However, after recent updates and system restarts, domain controllers have been observed loading incorrect firewall profiles—defaulting to public or standard profiles, which severely impacts connectivity and security policy enforcement.

Simultaneously, Windows Server 2025 deployed a security update in February 2025 (KB5051987) intending to enhance server security. Unfortunately, this patch introduced a Remote Desktop Protocol (RDP) bug where sessions freeze shortly after connection, rendering mouse and keyboard input unresponsive and forcing users to disconnect and reconnect repeatedly to regain control.

Technical Details

Firewall Profile Bug

  • Issue: Upon reboot, Windows Server 2025 domain controllers incorrectly load the standard firewall profile instead of the domain profile.
  • Impact:
    • Active Directory functions such as authentication, replication, and policy enforcement can be disrupted.
    • Network traffic essential to domain operations may be blocked or mishandled.
    • Security policies tied to the domain firewall profile are bypassed, increasing vulnerability.

RDP Freezing Issue

  • Cause: The February 2025 security update KB5051987 altered Remote Desktop session input processing.
  • Symptoms: RDP sessions freeze soon after connection; mouse and keyboard inputs become unresponsive.
  • Scope: Affects a wide range of Windows Server 2025 installations relying on remote desktop for management.

Related Issues in Windows 11 24H2

  • Similar UDP-based RDP disconnections were noted, affecting Windows 11 version 24H2, but Microsoft released a fix with KB5053656 in late March 2025.

Implications and Impact

For Enterprises and IT Administrators

  • Operational Continuity: Disruptions in domain controller communications and frozen RDP sessions jeopardize critical server management and policy enforcement.
  • Security Risks: Misapplied firewall profiles weaken network defenses, while RDP freezes can delay security patching and incident responses.
  • Productivity Loss: Administrators face increased workload due to repeated session disconnects and troubleshooting emergencies.

Broader Concerns

These issues highlight the challenges associated with rapid patch deployment and balancing security hardening against system stability. They emphasize the necessity of rigorous testing and phased rollouts, especially in environments with critical infrastructure.

Mitigation Strategies

Firewall Profile Bug Workarounds

  • Monitor official Microsoft communications for patches targeting this firewall profile issue.
  • Consider using PowerShell scripts to verify and enforce correct firewall profile assignment post-reboot.
  • Maintain close monitoring of domain controller network behavior to rapidly detect anomalies.

RDP Freezing Workarounds

  • Group Policy Adjustments:
  1. Open Group Policy Editor (INLINECODE0 ).
  2. Navigate to INLINECODE1 .
  3. Enable the policy "Select network detection on the server" and set it to "Use both Connect Time Detect and Continuous Network Detect."
  4. Enable the policy "Select RDP transport protocols" and set it to "Use only TCP" to disable UDP.
  5. Restart the server for changes to apply.
  • Update Management:
    • Monitor for and deploy the Microsoft patch KB5055523 released in April 2025 to address the Remote Desktop freeze.
    • Until then, consider temporary removal of KB5051987 to restore RDP functionality if assessing risk proves acceptable.

Microsoft’s Response and Outlook

Microsoft has publicly acknowledged these issues and is actively working on fixes. While a patch addressing the RDP freeze (KB5055523) was released in April 2025, the firewall profile misconfiguration on domain controllers remains a pressing concern, with administrators urged to stay alert for updates. The vendor continues to underscore the importance of robust update testing and phased deployment to minimize operational disruptions.

Conclusion

The critical firewall profile bug and RDP freezing issue in Windows Server 2025 pose significant challenges to enterprise IT environments, particularly those relying on Active Directory and remote server management. IT professionals must deploy proactive monitoring, apply interim mitigations, and keep informed of official updates to safeguard network security and ensure uninterrupted operations.

By adopting adaptive strategies and engaging with the IT community, organizations can navigate these complications while Microsoft works to provide definitive fixes.