Issue 1When DNSSEC validation is enabled on a Windows Server 2012 R2-based DNS server, the DNS server incorrectly reports the failed name validation when it receives a NODATA response and returns a SERVFAIL error to the client.
Issue 2Windows Server 2012 R2-based DNS server doesn't return all the Resource record signature (RRSIG) records that should be returned with the Next Secure (NSEC) records if the query passes through a BIND forwarder during resolution. This causes DNSSEC validation to fail for any servers that are using Windows Server 2012 R2-based server as a forwarder.
Issue 3Incorrect response to AAAA queries from Windows Server 2012 R2-based DNS server when a wildcard CNAME is used.
Method 1: Windows UpdateThis update is provided as a Recommended update on Windows Update. For more information on how to run Windows Update, see How to get an update through Windows Update.
Method 2: Microsoft Download CenterThe following files are available for download from the Microsoft Download Center:
|All supported x64-based versions of Windows Server 2012 R2||Download the package now.|
PrerequisitesTo install this update, install April 2014, update rollup for Windows RT 8.1, Windows 8.1, and Windows Server 2012 R2 (2919355) in Windows Server 2012 R2.
Registry informationTo apply this update, you don't have to make any changes to the registry.
Restart requirementYou may have to restart the computer after you apply this update.
Update replacement informationThis update doesn't replace a previously released update.
Article ID: 3133717 - Last Review: Mar 8, 2016 - Revision: 1