We couldn’t sign you in
Select the account you want to use.


Cumulative Update 1 for SQL Server 2016 adds FIPS-compliant support by enabling the Service Broker Usage Control Service (UCS) to use SHA256 algorithm instead of the obsolete SHA1 algorithm. Because of this, after you install SQL Server 2016 CU1 and perform a rolling upgrade for an AlwaysOn availability group replica or a database mirroring instance, the operation may fail.


The fix for this issue is included in the following cumulative update for SQL Server:

Cumulative Update 3 for SQL Server 2016

Each new cumulative update for SQL Server contains all the hotfixes and all the security fixes that were included with the previous cumulative update. Check out the latest cumulative updates for SQL Server:

Latest cumulative update for SQL Server 2016


Microsoft has confirmed that this is a problem in the Microsoft products that are listed in the "Applies to" section.


Learn about the terminology that Microsoft uses to describe software updates.

Need more help?

Expand your skills
Explore Training
Get new features first
Join Microsoft Insiders

Was this information helpful?

What affected your experience?

Thank you for your feedback!