You are using Internet Explorer 11 in Windows Server 2012 R2 or Windows 8.1, and you access an internal web application that uses session-based authentication. At some point, you are prompted by the website to authenticate again.
Internet Explorer periodically issues web requests for the browserconfig.xml file to the root of a website. The response should then be used to refresh websites that have been pinned to the Start menu, or to modify the view within the New Tab page where your "Frequent websites" are displayed. In case the website is not using Internet Explorer Protected Mode, which is the default for websites in the Local Intranet and Trusted Sites security zones, the request to browserconfig.xml does not contain the session cookie from the current window. However, in case the web server's response sets a new session cookie, this will be propagated to the window, and it invalidates the previously used session.
Warning Serious problems might occur if you modify the registry incorrectly by using Registry Editor or by using another method. These problems might require that you reinstall the operating system. Microsoft cannot guarantee that these problems can be solved. Modify the registry at your own risk.
After you apply this update, you must edit the registry to activate the functionality. To do this, follow these steps:
On the Start menu, click Run, type regedit, and then click OK.
In Registry Editor, locate and select the following registry subkey:
Press and hold (or right-click) Internet Explorer, select New, and then select Key.
Type Download, and then press Enter to name the new subkey.
Press and hold (or right-click) Download, select New, and then select DWORD Value.
Type EnableDownloadConfigXml, and then press Enter to name the new entry.
Exit Registry Editor.
Microsoft has confirmed that this is a problem in the Microsoft products that are listed in the "Applies to" section.
Learn about the terminology that Microsoft uses to describe software updates.