Quantcast
Channel: Remote Desktop Services (Terminal Services) forum
Viewing all 5613 articles
Browse latest View live

Launching an application in an RDS session automatically

July 16, 2018, 2:55 pm
$
0
0

I want to be able to launch an application inside an RDS session when the session launches while still being able to see the desktop. Is this possible?

I edited the remote desktop icon I downloaded from the Work Resources\RemoteApp and Desktops in RDWeb so only a desktop would show:

remoteapplicationmode:i:1 to i:0
...
alternate shell:s:||epds
remoteapplicationprogram:s:||epds
...
remoteapplicationname:s:EPDS

and removed EPDS from the last three

I would rather be able to launch the EPDS application and be able to expose the desktop simultaneously. Is this possible

If I have to reconfigure the Remote Desktop Connection icon, what are the steps to do this?

Search

RDP Farm SAN Certificate

July 31, 2018, 5:59 am
$
0
0

Hello,

I set up an RDP farm with Broker.  We are running server 2008 R2.

I tried to make a SAN cert in our Enterprise CA but every time I adopt the cert for the RDP connection it still says Certificate Mismatch.  It shows the server name on the RDP Cert and not the farm name.

https://blogs.technet.microsoft.com/isablog/2011/10/09/how-to-generate-a-certificate-with-subject-alternative-names-san/

This is the article I used.   Has anyone else had this problem before?

Thanks,

Jason

Jason Munsterteiger

Smartcard pass-through fails when using remote desktop gateway

July 27, 2018, 12:14 pm
$
0
0

Some admins in our IT group have been attempting to set-up RDS (incl RDG) on Windows Server 2016. It works in most scenarios:

  1. Password auth to RDS server (with NLA)
  2. Smartcard auth to RDS server (with NLA)
  3. Password auth "passthrough" to a server via RDS (with NLA)

I've also verified smartcard auth to a server directly (not with a remote desktop gateway). For some reason, I'm unable to passthrough my smartcard to a server when using a remote desktop gateway. It simply comes back with "login failed" on the client. The "login failed" message appears as an error during the hop to the gateway server (i.e. it doesn't seem to even try to connect to the destination server).

On the RDG server, there are two error events generated:

  • AUDIT FAILURE, ID 4625, Unknown user name or bad password., NULL SID, SubStatus 0xC0000064
  • AUDIT FAILURE, ID 4625, An Error occured during Logon., NULL SID, Status 0x80090347


I'm not sure why a smartcard would work in one situation but result in Unknown user name or password in another. Any ideas on where to start?


2012 R2 RDS double login

July 25, 2018, 1:55 pm
$
0
0

Hello

We have been running RDS for years and years without issue. Back in march we decided to hold of on all patches for this credssp patches to smooth out. We just recently started testing out fully patched clients however now we are receiving a double prompt trying to log into anything with RDS. I am only ever seeing this on patched clients. We tried patching 1 TS box but that did not help.

Any ideas?

Sizing guidance for RDCB, RDWeb and RDGateway

July 29, 2018, 3:30 pm
$
0
0

Hi all,

             putting together a HA RDS farm design - and im having trouble finding guidance on sizing for RD Connection brokers, RD Web and RD Gateway servers.

I get the for the session hosts, it is very dependant on what is running within the sessions and hence, the lack of hardware sizing guidance.

For the other roles it would be nice to have some sort of general advice - i.e. 1 connection broker per 1000 users, 1 RDGateway per 200 users etc....

Does anyone know if sizing guidance such as this exists? (and I just haven't been able to find it)

Remote Desktop App with Azure AD

July 30, 2018, 12:28 am
$
0
0

It seems that I am unable to connect to a computer on my network with the Remote Desktop App (trusted Windows Store App on my Windows Laptop or from the iOS App store on my iPhone), while I am able to connect successfully to it from Remote Desktop Connection (old Windows app).

The remote computer is joined to Azure AD (Windows 10 Pro, up to date; again, this works from the old Remote Desktop Connection application on Windows).

Can anyone tell me if connection to a machine joined to Azure AD is supported on the Remote Desktop App or if there is something I need to do to configure it properly?

Thanks.


RDS Licensing Server Best Practices and Sizing Info

August 2, 2018, 12:16 pm
$
0
0
Can anyone help me plz.. on some of the best practices in setting up an RDS licensing server preferably on Windows Server 2012 and any sizing considerations that need to be taken into account for building the server.

Pallab Chakraborty

RDS access right / authorization anomaly

August 2, 2018, 11:34 am
$
0
0

We came across this RDS access right / authorization anomaly two days ago.

A user in the AD wanted to open an RDS session in a server (let's call it serverA) which is Windows Server 2012 R2.  He got the following message:
"The connection was denied because the user account is not authorized for remote login."

This is normal because his AD account was not a member of "Remote Desktop Users" group in serverA.

I then added his AD account into the group. *Four hours later*, when he tried to open an RDS session again, he still got the same error message!

I have gone through everything, every group, etc but I could not find the reason.  Then I took another computer, told him to log in and then told him to open an RDS session from there to the same serverA.  This time it worked!  And almost immediately when he tried to open the RDS session again from his own computer, that worked too!

What the hack is this anomaly?  Was there a workaround without having to have another computer to open RDS session first?

I think if he had closed and re-opened Windows session in his own computer, that would have worked too.  But of course, he had too many programs running at that time that it was impossible for him to logout & login again.

And I also think this issue is similar to "network shared folder still rejects access" issue:

simply put, it's like this: a user was rejected when he tried to access some network folder without authorization.  Then the access was later on granted by domain admin but all his attempts to access the same folder are rejected.  He has to reopen his Windows session to get around this.

Are these two issues all related to problem in Kerberos?

Search

Server 2016 End Disconnected Session for particular account not working

July 20, 2018, 3:09 am
$
0
0

I am using a remote Server 2016 VPS from a provider and wish to configure a  user account Test to terminate after 1 hour of being disconnected. From the server Admin account I have accessed Computer Management -> Local Users and Groups-> Users -> Test and in the Sessions tab of account properties set Ends a Disconnected Session to 1 hr. However, the disconnected Test session does not close after 1 hr of disconnection. (As shown by Task Manager-> Users which shows the Test account in a disconnected state after more than 1 hr of disconnection.)  I have restarted the server and disconnection still does not occur after 1 hr. Is there something else I need to do?

CredSSP Encryption Orcacle Remediation Error

August 7, 2018, 6:49 am
$
0
0

Hello,

A couple of my users want to use RDP to do their work, but recently they have been getting this error. 

This is simply trying to get onto a workstation. So in my use case the user is just trying to RDP onto a Windows 10 Enterprise Edition (they are trying to log onto their computer from home), not a Windows Server or anything like that.

https://support.microsoft.com/en-us/help/4295591/credssp-encryption-oracle-remediation-error-when-to-rdp-to-azure-vm

In my research I've found that I can get around this by going into the the group policy editor and going toComputer Configuration > Administrative Templates > System > Credentials Delegation,and then trying to change the Encryption Oracle Remediation policyto Enabled and then change the Protection level to Vulnerable. 

But when I go into the group policy editor the Encryption Oracle Remediation policyis not there. 

So I am not sure what I can do to fix this, all I want is the ability to remote into a Windows 10 machine, I have tried from multiple computers that reside on my network (and on a VPN as well) can RDP into other computers, except for my user's one workstation. Is there something I can reinstall on my user's workstation or repair to let computers RDP connect to it? 

-Thanks

Server 2012 R2 RDS - Redirected printer from Mac OS client problem

September 17, 2017, 5:54 pm
$
0
0

Hi All

I've got a user working remotely outside the corporate Office. They've got a Canon MF720C Series printer.

I went to the Canon website, downloaded both the Windows Server 2012 R2 driver and the MacOS driver. I injected the printer into the Server 2012 R2 box (broker, gateway, session host etc all running on 1 machine) using the "Add dummy printer method".

I then added the printer using the same driver (but the macOS variant) on the client's Mac. I confirmed all the latest versions of windows updates are installed on the terminal server and that Mac OS and RD Client on Mac OS are all up to date. I also ensured printer forwarding is enabled.

When the user connects from the mac to the Terminal Server - the printer doesn't show up. So I checked the event log. Neither the Application nor the "System" event log show anything useful. However, the "TerminalServices-Printers log shows this:

Event ID: 1108
Configuration information for the Canon MF720C Series (redirected 126) printer could not be restored.

So the printer is definitely getting passed through - it just isn't showing up.

Does this indicate a driver version mismatch or is it something else? PS - redirecting printers works perfectly on Windows clients.

RDS Farm - Gateway querying DC from client's domain

December 7, 2017, 3:00 am
$
0
0

Hello everybody,

I have a little problem I’m struggling with as I’m trying to set up a new RDS farm in our environment. I searched the internet for hours for this problem but I couldn’t find any useful information.

Here is the picture :

DOMAIN1.LOCAL and DOMAIN2.LOCAL are internal to our company.
Workstation (RD clients) are in domain DOMAIN1.LOCAL
RD servers had been set up into domain DOMAIN2.LOCAL
Firewall is filtering traffic between the 2 domains (different network zones).
2 servers are holding RD Web Access and Gateway Role (SRVGW1.DOMAIN2.LOCAL, SRVGW2.DOMAIN2.LOCAL)
2 servers are holding RD Broker Role (SRVBRK1.DOMAIN2.LOCAL, SRVBRK2.DOMAIN2.LOCAL) and are configured in HA mode.
2 servers are RD Session Host (SRVHOST1.DOMAIN2.LOCAL, SRVHOST2.DOMAIN2.LOCAL) and are on a pool handled by the brokers.
A server is holding RD Licence Server Role (SRVLIC1.DOMAIN2.LOCAL)

Everything is up and running, and connections are working fine except for a strange delay while connecting : once I’m logged into RD Web Access web page from my DOMAIN1.LOCAL workstation (obviously with DOMAIN2.LOCAL credentials, that are passed through the remote desktop connections with the tick box “Use RD gateway credentials for remote computers” ), when I click on a published remote desktop connection, the RDP connection is launched but is stuck for 15 seconds at “Initiating remote connection” and then, process the other steps smoothly.

So, I analyzed network traffic on the SRVGW1.DOMAIN2.LOCAL gateway server while this delay occurs and I found that the gateway server is trying to contact the Domain Controllers of DOMAIN1.LOCAL (so the domain from which the workstation is member of) on port UDP 389 (LDAP). Those packets are dropped by the firewall, so the gateway server retries on every domain controller in DOMAIN1.LOCAL, and then, is waiting for what I assume is a timeout as its requests are not answered.

So my question is :

-        Is it normal that the gateway is trying to contact the domain controllers from which the workstation (RDP client) is member of,  despite that the credentials used for connection are DOMAIN2.LOCAL credentials? What is the purpose of those LDAP requests? Should we open port 389 from gateway to all DOMAIN1.LOCAL domain controller in our firewalls (seems strange to me because if RDP clients were external I couldn't possibly know their domain membership and even less the domain controllers handling it)?

Thanks in advance.

desktop icons sometimes away (2xwin2016 terminalserver with broker)

August 6, 2018, 12:31 pm
$
0
0

Hello, 

customer has two windows 2016 terminalserver and one broker.  (with user-disk for the profiles)

He said that sometimes program desktop icons are away.   (not the whole exe file, just the link) (or even normal files)

I compared the content of below path on both terminalservers and it was a bit different. 

C:\Users\Public\Desktop 

Customer was afraid and now never saves any imporant stuff on desktop.

Do you know what happend here?

Customer is sure that he never works in a emtpy temp profile, because the said he see other personal stuff.

User Disk Files are saved on a separate server

thx in advance!

Remote Desktop Does Not Attempt Connection

August 6, 2018, 8:12 am
$
0
0

This is tough for me to describe so I'll give it a shot. Ever since the July 24th update (July 24, 2018—KB4340917) I have not been able to connect to to any remote desktop host by name. It works by IP address but not by the host's name.

I get the usual "Remote Desktop can't find the computer "DavidsPC". This might mean that "DavidsPC" does not belong..." etc etc.

Note, I am able to connect to this remote computer using mobile devices (Android and iPhone) without a problem.

In researching the problem I found lots of posts about KB4103721 however I do not have that particular update installed on my computer.

Thoughts?

mr.smith

RDmi - general available / Public Preview?

August 6, 2018, 5:07 am
$
0
0

Hi,

I'm running a self hostes Windows 2012 R2 Server with RDS at the Moment. Now I'am at the Point to migrate it to Windows Server 2016.

I Need to decide which Infrastructure I Need to use. I'd like to Change to a cloud Environment. If I use Azure I Need to Switch to RDS Services, AD and VPN - it seems very expensive. On further Research I read about RDmi which Looks like a smart solution.

Is there a date, when it will be public available? Or is there even a Beta / Preview program so that I can test, if this solution will fit all my Needs? Several anouncments said it will come in Q1 2018 - but I also read one, which said it will come in Q4 2018.

Where can I get more Information on the Release / Preview / Beta / ...

Thanks in advance!

Daniel

Search

Office 365 in other account how do i put in this one

August 3, 2018, 10:06 pm
$
0
0
hi I just bought myself my first laptop but the main problem is that I have account with a new bought office 365 but the thing that I didn't know was that If I just took out this account and place it with a different one it wouldn't change a thing but it did, my office 365 was not on the laptop anymore but on the other account. how can I retake everything and bring bajck the other account before the one that I just put in that has not the office 365. email me in at Bladimirelias4@gmail.com or here for the how I can solve this issue. 

Windows Server 2012 R2 - lost RD "Installed RDS Per Device CAL" licenses.

August 3, 2018, 11:10 am
$
0
0

Greetings.

I work in an industrial facility, where we have several devices connected via RDS to a VM running Server 2012 R2. 

This Monday (7/30/2018) a technician had to cycle power on one of the devices (a thin client) and when it rebooted it would not reconnect as normal.  This failure stopped production for nearly three shifts - which is pretty significant.

The Event Log entry said "RDP: No valid license available".  I logged on to the server and found that ALL of the licenses in the "Installed RDS Per Device CAL" group were gone - the group was empty - and that all the devices were now showing up in the "Temporary RDS Per Device CAL" group.  All the devices licensing in the temporary group were also expired.

After working with MS clearinghouse folks, I was able to figure out how to deactivate and reactivate the license server - and install new licensing - but I am now obligated to tell my management how we can prevent this from happening again.

So, my problem statement is something like: "At some point in early April (or late March", we 'lost' the retail purchase "Installed RDS Per Device CAL" licenses - and so, all the devices switch to temporary licenses.  When those temporary licenses expired, we were vulnerable to losing connection - should power be cycled on one of the devices.  We did, eventually cycle power on one of the devices - which shut the system down.

So, I am reaching out to Microsoft to help determine why the licenses just "disappeared".

Thank you!!!!


Windows 2012 RDS Server tells that grace period for 2008 licences is expired (!?!?)

August 3, 2018, 7:05 am
$
0
0

Hi, I've a 2012 R2 server in cloud, due to costs fees the server is a DC and have a RDS role on it. About 20 RDS licenses installed. The server is working fine since about 1 year. Simple rdp sessions not Remoteapps.

Yesterday i find a message "grace period of rds ts 2008 licenses is expired"...there aren't 2008 licenses...it is a 2012...all is working actually but this message make me a bit in alarm...

have you had that problem before? have i to check something??

thank you.

Gian

RD License Server Not Issuing Licenses

August 3, 2018, 6:54 am
$
0
0

Hi there,

I'm using Server 2016 and have built two Remote Desktop Services Servers.  I just was using the temporary grace period license and I was able to see my users through the RD License Manager.

I then added User CAL's to the RD License Server.  I made a mistake and returned these CALs and reborrowed them again from Clearinghouse.  Now the license server shows 60 CALs available and none issued.  It seems that all the users can log in and there are no issues from that end, but I want to be able to keep track of the CALs.  

When I do an export of the report it says no CALs issued.  I tried to:

- Return the licenses
- Disable the RD License Server
- Remove the RD License Role
- Reboot
- Add Role
- Enable RD License Server
- Get license

and I run into the same issue.  I was hoping that I did not have to rebuilt the RDS role but I also don't want to run into the issue where somehow after a period of time (coinciding with the grace period) that this system stops working.

I also tried Local Group Policy to specify the RD LIcense Server and the Per User CAL setting and that still doesn't show the issued CALs changing....

Any ideas??


Licence server not working anymore after updating windows

August 3, 2018, 5:02 am
$
0
0

Hi,

We have a server 2016 With remote Desktop services. The server is live and everybody can login.

After installing the roles for terminal server everything was great till i update the server.

We get a message that the licence server is given and we have a grace period of 118 days left.

The licence server is activated with client cals.

When we add a collection and add the hostserver we get the error:

Property page: Update RD licensing failed: due to exception The licensing settings can not be set: "Invalid operation"


Has anyone a idea how to solve this ?

Thanks in advanced,

John

Viewing all 5613 articles
Browse latest View live
Search
<script src="https://jsc.adskeeper.com/r/s/rssing.com.1596347.js" async> </script>