Windows 10 Anniversary Update Redstone 1

10.0.14393 · Version 1607

10.0.14393.0 26 September 2016

And further

  • Improved reliability of background tasks and extensions for Microsoft Edge

Fixes issues

  • Fixes an licensing issue that prevents apps from activating
  • Fixes an issue that prevents changing display orientation after attaching a keyboard dock
  • Fixes an issue with scheduled update scans that are delayed during Connected Standby
  • Fixes an issue that sometimes prevent XAML apps from receiving keyboard input
  • Fixes an issue with event logging that creates very large virtual allocations
  • Fixes additional issues with Cortana, Microsoft Query and Microsoft Excel compatibility and the Korean Input Method Editor (IME)

10.0.14393.206 26 September 2016

Windows 10 changelogs

As this build is based on the PC version of Windows 10, the following changelogs also apply to Server:

Beyond the changes in the above changelogs, this was also added to the default desktop experience:

  • Windows Hello is now available for Windows Server 2016

Nano Server

  • You can now choose to install as Nano Server
  • Support for DNS Server and IIS server roles
  • Support for MPIO, VMM, SCOM, DSC push mode, DCB, Windows Server Installer and the WMI provider for Windows Update
  • Recovery Console now supports repairing network configurations
  • Windows PowerShell now comes with a module to make it easier to create new Nano Server images
  • Update module to build Nano Server images with a better separation of physical host and guest virtual machine functionality and support for different Windows Server editions
  • Improved Recovery Console with separation of inbound and outbound firewall rules
  • You can now repair the configuration of WinRM in the Recovery Console

Hyper-V

  • Hot add and remove of memory and Network Interface Controller
  • Virtual machines are now resilient, meaning they can keep running while their cluster fabric may fail
  • Rolling upgrade support
  • Hyper-V Containers are now encapsulated in a light weight virtual machine

Containers

  • Improved performance
  • Network management for containers has been simplified
  • Support for Windows containers on Windows 10

Networks

  • PacketDirect on 40G
  • NIC are converged across tenant and RDMA trafic
  • You can now mirror and route traffic to new or existing virtual appliances
  • Enables distributed firewalls and Network security groups similar to Azure
  • You can now manage the entire Software-defined networking stack with System Center Virtual Machine Manager
  • Docker can now be used to manage Windows Server container networking

Storage

  • Virtual Machine Storage Path resiliency
  • Storage replica support
  • Storage Spaces Direct can now aggregate from Storage Spaces on other servers

Management

  • PowerShell now has a Package Manager
  • PowerShell Desired State Configuration
  • Includes Windows Management Framework 5.0 April Preview and DSC Resource Kit
  • You can now run PowerShell.exe locally on Nano Server
  • New Local Users & Groups cmdlets to replace the GUI
  • PowerShell debugging support
  • Adds support for security logging and transcription and JEA in Nano Server

Security

  • Application authentication support for OAuth and OpenID Connect
  • Conditional control over access in the Active Directory Federation Services
  • Host Guardian Service provides security between the cloud and guest OS layers
  • Server-side support for HTTP/2
  • You can now restrict users to have permissions for specific tasks only with Just Enough Administration

Features

  • New "Encryption Supported" mode with more protections than for a normal virtual machine, but less than "Shielded" mode, while still supporting vTPM, disk encryption, Live Migration traffic encryption, and other features
  • Full support for converting existing non-shielded Generation 2 virtual machines to shielded virtual machines, including automated disk encryption
  • Shielded virtual machines are compatible with Hyper-V Replica

And further

  • Full OpenGL support including Remote Desktop Services for Virtual Desktop Infrastructure
  • Improved time accuracy in physical and virtual machines

10.0.14393.223 6 October 2016

Windows 10 changelogs

As this build is based on the PC version of Windows 10, the following changelogs also apply to Server:

Beyond the changes in the above changelogs, this was also added to the default desktop experience:

  • Windows Hello is now available for Windows Server 2016

Nano Server

  • You can now choose to install as Nano Server
  • Support for DNS Server and IIS server roles
  • Support for MPIO, VMM, SCOM, DSC push mode, DCB, Windows Server Installer and the WMI provider for Windows Update
  • Recovery Console now supports repairing network configurations
  • Windows PowerShell now comes with a module to make it easier to create new Nano Server images
  • Update module to build Nano Server images with a better separation of physical host and guest virtual machine functionality and support for different Windows Server editions
  • Improved Recovery Console with separation of inbound and outbound firewall rules
  • You can now repair the configuration of WinRM in the Recovery Console

Hyper-V

  • Hot add and remove of memory and Network Interface Controller
  • Virtual machines are now resilient, meaning they can keep running while their cluster fabric may fail
  • Rolling upgrade support
  • Hyper-V Containers are now encapsulated in a light weight virtual machine

Containers

  • Improved performance
  • Network management for containers has been simplified
  • Support for Windows containers on Windows 10

Networks

  • PacketDirect on 40G
  • NIC are converged across tenant and RDMA trafic
  • You can now mirror and route traffic to new or existing virtual appliances
  • Enables distributed firewalls and Network security groups similar to Azure
  • You can now manage the entire Software-defined networking stack with System Center Virtual Machine Manager
  • Docker can now be used to manage Windows Server container networking

Storage

  • Virtual Machine Storage Path resiliency
  • Storage replica support
  • Storage Spaces Direct can now aggregate from Storage Spaces on other servers

Management

  • PowerShell now has a Package Manager
  • PowerShell Desired State Configuration
  • Includes Windows Management Framework 5.0 April Preview and DSC Resource Kit
  • You can now run PowerShell.exe locally on Nano Server
  • New Local Users & Groups cmdlets to replace the GUI
  • PowerShell debugging support
  • Adds support for security logging and transcription and JEA in Nano Server

Security

  • Application authentication support for OAuth and OpenID Connect
  • Conditional control over access in the Active Directory Federation Services
  • Host Guardian Service provides security between the cloud and guest OS layers
  • Server-side support for HTTP/2
  • You can now restrict users to have permissions for specific tasks only with Just Enough Administration

Features

  • New "Encryption Supported" mode with more protections than for a normal virtual machine, but less than "Shielded" mode, while still supporting vTPM, disk encryption, Live Migration traffic encryption, and other features
  • Full support for converting existing non-shielded Generation 2 virtual machines to shielded virtual machines, including automated disk encryption
  • Shielded virtual machines are compatible with Hyper-V Replica

And further

  • Full OpenGL support including Remote Desktop Services for Virtual Desktop Infrastructure
  • Improved time accuracy in physical and virtual machines

10.0.14393.321 12 October 2016

And further

  • Improved reliability of Bluetooth and storage file system
  • Improved support for networks by adding new entries to the Access Point Name (APN) database

Fixed issues

  • Fixes an issue causing printer drivers to not install correctly after installing security update KB317005
  • Fixes an issue causing sign-in errors if a password is entered incorrectly or a new password doesn’t meet password complexity requirements after installing security update KB3167679
  • Fixes an issue that required users to log out and log back in before using the application they installed using the Windows installer (MSI)
  • Fixes an issue that was causing excessive battery drain on Windows 10 Mobile when connected to Wi-Fi
  • Fixes an issue in which setting up both fingerprint and iris recognition sometimes causes the sign-in to fail on Windows 10 Mobile
  • Fixes an issue that was causing high CPU usage on Windows 10 Mobile
  • Fixes an additional issues with multimedia playback, revised daylight saving time, authentication, Internet Explorer 11 and Windows Shell
  • Security updates to Microsoft Edge, Internet Explorer 11, Windows registry and diagnostics hub

10.0.14393.351 27 October 2016

And further

  • Improved reliability of Internet Explorer 11, Start, File Explorer, action center, graphics and the Windows kernel
  • Improved support for websites by updating the HTTP Strict Transport Security (HSTS) preload list
  • Improved support for IT administrators using Group Policy to block users updating the operating system from Windows Update
  • Improved reliability and stability of the notification framework for enabling contextual notifications in File Explorer

Fixed issues

  • Fixes an issue that was causing System Center Operations Manager (SCOM) Management Console to crash in State view
  • Fixes an connectivity issue from a 32-bit application to a Remote Desktop Gateway that doesn’t have HTTP tunneling enabled
  • Fixes an issue of updates not being restored when doing a system reset, even if those updates were permanently installed
  • Fixes an issue that was causing domain logon attempts to fail on a Windows 10 Pro device after upgrading from Windows 10 Home
  • Fixes an issue that was causing failed logon counts of non-admin users without network logon permissions to be counted as cumulative, resulting in devices going into BitLocker recovery more frequently
  • Fixes an issue that prevented System Center Configuration Manager from performing inventory uploads via Background Intelligent Transfer Service (BITS) when Encrypting File System (EFS) has been disabled
  • Fixes additional issues with USB, Wi-Fi, clustering, setup, Microsoft Edge, Internet Explorer 11, licensing, PowerShell, Component Object Model (COM), Windows kernel, graphics and Bluetooth

10.0.14393.447 8 November 2016

And further

  • Improved the reliability of multimedia audio, Remote Desktop, and Internet Explorer 11

Fixes issues

  • Fixes an issue that prevents users from connecting to a virtual private network (VPN)
  • Fixes an issue with a scheduled task that doesn’t run in Task Scheduler after reenabling
  • Fixes an issue to update the Access Point Name (APN) database
  • Fixes an issue with Japanese characters that are missing when converted by the Input Method Editor
  • Fixes an issue with the system tray showing no Wi-Fi connection even when Wi-Fi is present
  • Fixes an issue with Windows devices that disconnect from the Internet prematurely before users can complete their paid Wi-Fi purchase
  • Fixes an issue to update the new Belarusian ruble symbol to Br and the new ISO 4217 code to BYN
  • Fixes additional issues with multimedia, Windows kernel, packaging release management, authentication, Microsoft Edge, Internet Explorer 11, Remote Desktop, Active Directory, wireless networking, Windows shell, graphics, enterprise security and Microsoft HoloLens
  • Security updates to Boot Manager, Windows operating system, kernel-mode drivers, Microsoft Edge, Internet Explorer 11, Microsoft Virtual Hard Drive, Common Log File System driver, Microsoft Video Control, Common Log File System driver, Windows authentication methods, Windows File Manager and the Microsoft Graphics Component

10.0.14393.479 9 December 2016

And further

  • Improved the reliability of mobile device management disenrollment, Distributed Component Object Model (DCOM), Peripheral Component Interface and PowerShell

Fixes issues

  • Fixes an issue that causes excessive battery drain if you have a Chinese Input Method Editor installed and use Windows Hello to log in
  • Fixes an issue with OLE drag and drop that prevents users from downloading a SharePoint document library as a file
  • Fixes an issue with Super Floppy-formatted fixed media devices that are not recognized by Windows 10 Anniversary Update or accessible in Windows Explorer
  • Fixes an issue that causes the System Center Configuration Manager client to fail installation when a device is re-imaged using the SCCM task sequence
  • Fixes an issue that causes the loss of optional component state information, including all Hyper-V virtual machines, after upgrade
  • Fixes an issue that causes Windows Explorer to display information that's inconsistent with what's stored on the Floppy disk
  • Fixes an issue that, after connecting a shared CD/DVD-hosted drive with no media inserted, causes some of the commands to hang
  • Fixes an issue where customers cannot use directory cache sizes greater than 64 KB
  • Fixes an issue where Windows Explorer sometimes does not prompt for credentials when a user logs on using a Microsoft account
  • Fixes additional issues with application compatibility and Internet Explorer

10.0.14393.576 13 December 2016

And further

  • Improved reliability of Security Support Provider Interface

Fixes issues

  • Fixes a service crash in CDPSVC that in some situations could lead to the machine not being able to acquire an IP address
  • Fixes an issue where a Catalog-signed module installation does not work on Nano Server
  • Fixes an issue with Devices left with Hello on for an excessive amount of time will not go into power savings mode
  • Fixes an issue with gl_pointSize to not work properly when used with drawElements method in Internet Explorer 11
  • Fixes an issue where Azure Active Directory-joined machines after upgrading to Windows 10 Version 1607 cannot sync with Exchange
  • Fixes an additional issues with app compatibility, updated time zone information, Internet Explorer
  • Security updates to Microsoft Edge, Internet Explorer, Microsoft Uniscribe Common Log File System Driver

10.0.14393.693 10 January 2017

And further

  • Improved the reliability of Groove Music playback in the background, App-V, video playback and Remote Desktop

Fixes issues

  • Fixes an issue where after successful fingerprint authentication on a device with the screen off, the screen does not turn back on
  • Fixes an issue where only one input device works when you connect two similar input devices to the same machine
  • Fixes an issue in the App-V Connection Group that allows users to have access to pieces of functionality that they were not designated to for access
  • Fixes an issue that prevents users from selecting multiple certificates simultaneously through the UI
  • Fixes an issue where the Request Control function does not work with Remote Assistance if the user being assisted is on Windows Server 2008 R2 or Windows Server 2012
  • Fixes an issue that prevents a smart card module from pairing with a contactless smart card reader
  • Fixes an issue with license conversion of Server Core from evaluation version to a retail version
  • Fixes an issue that prevents users from opening Internet shortcut (.URL) files with Internet Explorer when Enhanced Protected Mode is enabled.
  • Fixes an issue that prevents users from logging on if a device has been away from the corporate network over a period of time
  • Fixes additional issues with Microsoft Edge, clustering, Internet Explorer, Windows Update, input devices, facial recognition, Logon, Hyper-V, PCI bus drivers and Windows Kernel

10.0.14393.729 30 January 2017

Fixed issues

  • Fixes an issue that causes Azure VMs to lose network connectivity on reboot

10.0.14393.953 14 March 2017

And further

  • Improves the bandwidth of SSD/NVMe drives available to application workloads during S2D rebuild operations

Fixed issues

  • Fixes an known issue called out in KB3213986. Users may experience delays while running 3D rendering apps with multiple monitors
  • Fixes an issue in KB3213986 where the Cluster Service may not start automatically on the first reboot after applying the update
  • Fixes an issue where the Active Directory Administrative Center (ADAC) crashes when attempting to modify any attribute of any user account in Active Directory
  • Fixes an issue where the Japanese Input Method Editor is leaking graphics device interface resources, which causes windows to disappear or only partially render after typing approximately 100 sentences
  • Fixes an issue which improves the reliability of Enable-ClusterS2D PowerShell cmdlet
  • Fixes an issue where the Virtual Machine Management Service (Vmms.exe) may crash during a live migration of virtual machines
  • Fixesan issue where Work Folders clients get duplicate files (sync conflict files) when Work Folders is configured using Group Policy
  • Fixes an issue where Remote Desktop Servers crash with a Stop 0x27 in RxSelectAndSwitchPagingFileObject when RDP clients connect and utilize redirected drives, printers, or removable USB drives
  • Fixes an issue where adjusting the Windows Server Update Services settings using the Group Policy feature causes downloads to fail
  • Fixes an issue to hard code Microsoft's first-party provider registry key values
  • Fixes an issue that causes the System Preparation (Sysprep) tool to fail
  • Fixes an issue that causes Office 2016 profile corruption when used with User Experience Virtualization (UE-V) roaming
  • Fixes an issue that causes the Local Security Authority Subsystem Service to become unresponsive after upgrading the OS
  • Fixes an issue that causes the Local Security Authority Subsystem Service to fail when a SAP® application uses Transport Layer Security authentication
  • Fixes an issue where sequencing large registries using the Application Virtualization 5.1 Sequencer results in missing registry keys in the final package
  • Fixes an issue that fails to retain the sort order of names in a contact list after a device restarts when using the Japanese language
  • Fixes an issue that causes transactions to fail because of a memory shortage
  • Fixes an issue that allows files that are forbidden by the security zone setting to be opened in Internet Explorer
  • Fixes an issue that causes Internet Explorer 11 to fail after installing KB3175443
  • Fixes an issue that causes applications that use the VBScript engine to fail after applying KB3185319
  • Fixes an issue that occurs in Internet Explorer when the CSS float style is set to "center" in a webpage
  • Fixes an issue that occurs whenever the multipath IO attempts to log I/O statistics with no paths present
  • Fixes an issue that causes a 32-bit static route added by a VPN solution to fail, which prevents users from establishing a connection through the VPN
  • Fixes an issue that may decrease performance by up to 50% when Ethernet adapters that support receive side scaling (RSS) fail to re-enable RSS after a fault or system upgrade
  • Fixes an issue to allow wildcards in the Allowed list field for the Point and Print Restrictions Group Policy
  • Fixes an issue with multipath I/O failure that can lead to data corruption or application failures
  • Fixes an issue that can lead to system failure when removing a multipath IO ID_ENTRY
  • Fixes an issue that occurs when a Network Driver Interface Specification function NdisMFreeSharedMemory() is not called at the correct Interrupt Request Level
  • Fixes an issue to utilize the proper service vault for Azure Backup integration
  • Fixes an issue where SQL server takes 30 minutes to shut down on machines with a lot of RAM (>2TB)
  • Fixes additional issues with updated time zone information, Internet Explorer, file server and clustering, wireless networking, Map apps, mobile upgrades for IoT, display rendering, USB 2.0 safe removal, multimedia, Direct3D, Microsoft Edge, enterprise security, Windows Server Update Services, storage networking, Remote Desktop, clustering, Windows Hyper-V and Credential Guard
  • Security updates to Microsoft Edge, Internet Explorer, Microsoft Graphics Component, Internet Information Services, Windows SMB Server, Microsoft Windows PDF Library, Windows kernel-mode drivers, Microsoft Uniscribe, the Windows kernel, DirectShow, the Windows OS and Windows Hyper-V

10.0.14393.969 20 March 2017

Fixed issues

  • Fixes an issue with KB4013429 that caused Windows DVD Player (and 3rd party apps that use Microsoft MPEG-2 handling libraries) to crash
  • Fixes an issue with KB4013429, that some customers using Windows Server 2016 and Windows 10 1607 Client with Switch Embedded Teaming (SET) enabled might experience a deadlock or when changing the physical adapter’s link speed property, this issue is most commonly seen as a DPC_WATCHDOG_VIOLATION or when verifier is enabled a VRF_STACKPTR_ERROR is seen in the Memory dump

10.0.14393.970 23 March 2017

Fixed issues

  • Fixes an issue with KB4013429 that caused form display issues with CRM 2011 on Internet Explorer 11
  • Fixes an issue with KB4013429 that prevents users from updating apps from Windows Store with 0x80070216 error

10.0.14393.1066 11 April 2017

And further

  • Improved the Host Network Service (HNS) to support an overlay network driver for use on Windows Server 2016 to connect containers across hosts using Docker Engine in Swarm Mode.

Fixed issues

  • Fixes an issue that was preventing the Camera application from saving a captured image when "Show recently opened items in Jump Lists on Start or the taskbar" settings is enabled
  • Fixes an issue that was not allowing users to access online help content when clicking the help icon in various Windows applications, such as File Explorer
  • Fixes an issue where displays turn off unexpectedly even when Turn off display and Screen saver are disabled in the power profile
  • Fixes an an issue where CredentialGuard-enabled computers joined to Active Directory domains submit two bad logon attempts each time a bad password is provided during a Kerberos-based logon. Logons to Active Directory domains with arbitrarily low account lockout thresholds may be subject to unexpected account lockouts. For example, 2 logons with a bad password could result in an account being locked out if the account lockout threshold is set to 3 or 4
  • Fixes an issue that increases CPU usage when IP forwarding or weak host is enabled
  • Fixes an issue where some of the VPN drivers do not get migrated when upgrading the OS to Windows 10, version 1607
  • Fixes an issue that causes virtual machines to fail during high I/O scenarios where the user may log in multiple times
  • Fixes an issue that was causing connections (after the 1st connection request) from a Remote Desktop Client to a Remote Desktop session to fail after upgrading from Windows 10, version 1511, to Windows 10, version 1607
  • Fixes an issue that was causing the Command prompt to be not displayed properly through the serial console on headless systems
  • Fixes an issue that was causing MDM enrollment failtures on devices using Kerberos authentication
  • Fixes an issue with rendering when a webpage contains a DIV element that has the contenteditable attribute
  • Fixes an issue that causes text to disappear when you resize an Internet Explorer window when the encoding is Hebrew and any text ends with an underscore character
  • Fixes an issue that was causing headless machines to not go into S3 sleep mode sometimes Enabled warning message in Group Policy Management Console (GPMC) to alert administrators of a design change that may prevent the processing of a User Group after installing security update MS16-072 (KB3163622)
  • Fixes an issue that was causing Windows Explorer to perform an endless, rapid refresh of a network drive that is mapped to a share, preventing users from performing tasks such as rename object
  • Fixes an memory leak in Internet Explorer when hosting a page that contains nested framesets, which load cross-domain content
  • Fixes an issue that was causing the print spooler service to hang instead of showing a timeout error when a connection between a bluetooth printer and the machine is lost during printing
  • Fixes an issue that was preventing installation of a new printer driver that uses v3 printer drivers Improved the reliability of Load Balancing/Failover (LBFO) whenever there is a resource rebalance, a device failure, or a surprise removal of a device.
  • Fixes additional issues with updated time zone information, Internet Explorer, and Microsoft Edge
  • Security updates to Scripting Engine, libjpeg image-processing library, Hyper-V, Win32k, Adobe Type Manager Font Driver, Internet Explorer, Microsoft Edge, Graphics component, Active Directory Federation Services, .NET Framework, Active Directory, Lightweight Directory Access Protocol, Windows Kernel model drivers and Windows OLE

10.0.14393.1198 9 May 2017

Microsoft Edge

Edge 38.14393

  • Deprecated SHA-1 Microsoft Edge and Internet Explorer 11 for SSL/TLS Server Authentication

Internet Explorer

  • Updated Internet Explorer 11’s New Tab Page with an integrated newsfeed

Fixed issues

  • Fixes an issue where the PC Settings pages do not display the correct options after the installation of KB3213986 and a language pack
  • Fixes an issue where fonts appear differently based on whether an app uses Graphics Device Interface (GDI) or GDI Plus
  • Fixes an issue where applications that use msado15.dll stop working after installing security update KB4015550
  • Fixes an issue that causes a device to become unresponsive when users try to enable end-user-defined characters (EUDCs)
  • Fixes an issue that causes a device to crash every time a user logs off from a remote session using a Virtual Desktop Agent (VDA)
  • Fixes an issue where changing the scaling setting of the display prevents DPI-aware tools (Notepad, MS Paint, etc.) from accepting input or drawing correctly when using the Japanese IME
  • Fixes an issue that causes Windows Explorer’s CPU usage to be at 20% when an executable file is hosted on a file share and its Offline attribute is set
  • Fixes an issue where Windows Event Forwarding between two 2012 R2 servers makes reports incompatible with third-party Security Information and Event Management software
  • Fixes an issue where the BitLocker Drive Encryption wizard shows the "Choose which encryption mode to use" page even when the BitLocker GPO is enabled
  • Fixes an issue where AppLocker fails to block binaries with revoked certificates
  • Fixes an issue where a virtual machine (VM) loses network connectivity if the VM does not send Address Resolution Protocol packets for five minutes and the VM is connected to a wireless NIC
  • Fixes an issue that causes the loss of a VPN connection when using a computer with an integrated WAN card (cellular card)
  • Fixes an issue where multipath I/O did not properly restore service after the check condition "Illegal request, LUN not available (sense codes 05/25/00)" occurs
  • Fixes an issue where a Stop 0x27 error occurs after a user provides the domain username and password
  • Fixes an issue where users can create folders on a USB flash drive when "Deny write access" is set for Removable Storage Access
  • Fixes an issue where crash dump generation hangs at 0% on a system with over 750 GB of physical memory and Hyper-V enabled
  • Fixes an issue with a paging file space leak that leads Windows to a crash, blue screen, or data loss
  • Fixes an issue that prevents access to a website when Automatic Rebind of Renewed Certificate and Directory Service Mapper are enabled
  • Fixes a crash in Services.exe with the error code “0xc0000374 - A heap has been corrupted,” and requires a system restart
  • Fixes an issue where Windows Defender anti-virus definitions, which are regulated by the network, prevent other updates (LCU, drivers) from being downloaded
  • Fixes an issue where Internet Explorer 11 does not save JavaScript files when exporting to an MHT file
  • Fixes an issue that prevents Internet Explorer 11 from following redirects when the Include-Referer-Token-Binding-ID header is set to “true.” 
  • Fixes an issue that causes users to get logged out from a Web-application intermittently
  • Fixes additional issues with the Windows Shell, enterprise security, Datacenter Networking, storage networking, Internet Information Services, Active Directory, clustering, Windows Server, the client platform, and Internet Explorer
  • Security updates to Windows COM, Windows SMB Server, Windows server, Internet Explorer, and Microsoft Edge