Hi.
KB3081320 - https://support.microsoft.com/en-us/kb/3081320
In the known issues for this update it is advised that:
This update makes changes that are required for the Extended Master Secret Transport Layer Security (TLS) extension. These changes will break any existing Cryptographic Next Generation (CNG) SSL providers. We recommend that you work with your vendor to update your CNG SSL providers. In the meantime, to work around this issue, you can edit the registry to disable the Extended Master Secret extension.
I was wondering will this update affect secure channel negotiation between AD client computers and the domain, assuming we do not issue client certificates to domain computers, but do use secure LDAP communication.
Thanks in advance.