ALERT: Some images may not load properly within the Knowledge Base Article. If you see a broken image, please right-click and select 'Open image in a new tab'. We apologize for this inconvenience.

Does Microsoft patch to avoid CVE-2021-42287 impact on Identity Manager?


Article ID: 239160


Updated On:


CA Identity Manager


Microsoft has published below measure to avoid CVE-2021-42287 (, i.e. Active Directory Domain Services Elevation of Privilege vulnerability.

After applying Microsoft KB5008380 patch to avoid CVE-2021-42287, will Identity Manager Connectors be impacted/broken?


Release : 14.3, 14.4

Component : IdentityMinder(Identity Manager)


Microsoft security patch for CVE-2021-42287 shouldn't cause any problem for AD/ADS connector as the authorization verification will happen between windows services and the domain controller.

The Kerberos connector for Solaris connects to KDC using an SSH communication to manage Kerberos principals and Kerberos password policies. This authorization issue will never arises.