I've have an issue redirecting local printers in my WS2016 RDS farm.

When I connect to any of my Server 2016 Remote Desktop Session Host I am not able to see redirected printers. This happens with full desktop or with Remoteapp, for example, with Wordpad.

This issue happens when connecting from RDS Gateway or when connecting from the intranet. Despite that, I'm able to redirect local printers if I connect to the sesion host with the /admin console session (mstsc.exe /admin). I have EasyPrint enabled and configured with preference via GPO.

I have configured print management and installed several server printers. The users are able to see those printers, but they cannot see redirected ones. I believe it's a driver issue, as I am able to see the TS redirected ports (TSxxx PRNx) but no printer installed in any of those ports.

I do not have any clue why. Could you please help me? 

The farm is a standard RDS Farm, with 4 session host. The DCs are in another server, so no problem with that.

Thank You

Hi,

our workstations with Windows 10 pro are in this weekend updated to version 1803. For main system we use RemoteAPP aplications on Windows server 2012R2 (Windows server 2012R2 is full updated). After update on client station are RemoteAPP slower, and  right mouse button is unresponsive, or react verly long time... 

It is a big problem for us.

PS: after replace mstsc.exe and mstscax.dll from older version Windows 10 is all OK. but this is not a solution.

Thanks.

Hi,

As per this Google bug page: here

We cannot use the legacy browser extension in our session host environment.

It seems the work around is to exclude the temp and tmp directories of a user profile, from their user profile disk.

Can someone advise the appropriate syntax to use in the Remote Desktop deployment properties section of server manager to exclude these folders? Everything I have tried thus far has not worked, and my only working way of doing this is to change their environment variables at login via a script deployed using group policy. This is not ideal, as this does not complete before the user's session is initialised, meaning it is not effective until their second login.

Excluding the folder via deployment properties would be far neater, and more effective from the get go.

Thanks

Eds

Hi,

Can anyone give me a steer on something please?

I have 2 server 2016 servers both with RDSH, RDWeb and RDCB installed, RDCB is in HA. RD Licencing is on a separate server.

I can only connect to one server via RDWeb or mstsc.  The other i can only access using 'mstsc /admin'.  This is obviously an issue via RDWeb.

It affects connections to the RDCB directly, if i fail to the other RDCB then the issue moves to that server.

<o:p></o:p>

This is not a problem for admins but it happens via RDWeb also.

Geoff

Hallo,

I'm planning to buy a new server to create a new infrastructure for about 10 users, I try to explain in detail:
My business is composed of 3 offices, connected with a MPLS (some FTTH, FTTC and 1 ADSL), for a total of 10 users eachone with own pc and a couple of servers. The user load is our main software (web based), office (meaning outlook, some Word and a bit of Excel), other internet usage. Maybe could be just one user with advanced needs (gfx).
My idea is to buy one new server powerfull enought to handle 2 VM for servers (DC + RDS/Hyper-V) and 10 pooled VDI, one for each user. So it could has theese specs:
- one CPU Xeon Gold 5118: 12 core / 24 threads (expandible with a 2nd cpu);
- 128 GB RAM 2.666 MT/s (8x16GB);
- 2 TB mirrored of SSD for OS;
- 4 TB raid5 of "normal" 7.2 SATA disks;
- optional: a basic gtx by Nvidia for advaced user;
Are theese spec enought for my need or I'm forgetting something?

Thanks for any help!
Fabio

hey all , 

has anyone come across this issue before where SSO doesn't work externally, does not pass credentials through and getting the following error ?

thanks

https://imgur.com/mFsoLBh 

Hello everyone,
I have a question about the licensing of rds services in windows 2008 r2.
I have one license server and 2 rds session host servers each with different applications installed.
Office was installed on one server and the company management software on the other.
Users access servers via rdp client.
There are 100 clients in total.
My question is:
I have to buy 200 rds licenses or do I need 100?
My 100 users need to connect on both servers.

Thank you

regards

I'm using RDS/Remoteapp on generally windows 10 clients to fully patched server 2016 hosts. 

I'm getting Disconnected due to a protocol error and it's sometimes fixed by rebooting the host. Each host has 8GB of ram and max one user at a time. Even after a reboot it'll often stop working a few minutes later. 

Google seems to have no results on this platform and issue over RDS

Hello,

I encounter following problem - when admin tries to connect/control another session on the terminal server (from the server) - windows opens but has only black screen. The RDS farm is based on Windows Server 2016.

Any ideas?

Thank you!

hi,

we're suffering from session hosts that produce black screen errors in a RDS 2016 farm.

already connected users can mostly work, all new connections end up with a black screen.

to resolve the error the server has to be restarted.

i can say that

- this error appears after error 1534 (Fehler bei der Profilbenachrichtigung des Ereignisses Delete für Komponente {709E2729-F883-441e-A877-ED3CEFC975E6}. Fehlercode: Das System kann die angegebene Datei nicht finden.) starts appearing in the eventviewer.

- upon checking the registry for this SID i end up at "ProfileNotifyHandler Class app id {E10F6C3A-F1AE-4adc-AA9D-2FE65525666E} inprocserver32, C:\Windows\System32\gameux.dll".

- starting explorer.exe per taskmgr does not open an actual explorer window although the process appears in taskmgr

- tskmgr, eventvwr, cmd can be started without problems

- affected users appear as active in RDS management

- no third party security software is installed

- farm is fully patched

- HKLM\Software\Microsoft\WindowsNT\CurrentVersion\ProfileGUID and ProfileList are ok (no old or .bak entries)

looking forward on how to resolve this without  rebooting the server or a permanent fix

thank you

best regards

Hi All,

I installed the RDS server 2016 and activated the license but still it is giving error in RD license diagnose " Licenses are not available for the remote desktop host session server"

error details:

The Remote Desktop Session Host server is in Per Device licensing mode and No Redirector Mode, but license server localhost does not have any installed licenses with the following attributes:
Product version: Windows Server 2016

Thanks,

Agha

Hello,

I've got an issue with session disconnection.

My environment is following :

- 1 broker server 2012 R2

- 5 RDS Server 2012 R2

- VDI client

When a user connect with rdp script , the request go to the broker and the connection is established on a RDS server.

My problem is sometimes when a user connect from another computer , the session already connected don't turn off and they have two simultaneous connection on two computer.

I searched in the event viewer and i can see that the broker receive the request and redirect to a RDS server.

When i try to open the session on another computer , the broker don't detect the first connexion and establish an another connection with a different ID instead of turn off the session and redirect the other computer.

It doesn't work since start of October, may be a KB update ?..

Hi,

we host multiple clients with highly standardized environments but on the servers of a single customer i have the following behaviour:

• a User logs on to the RDS Server
• the User Profile Service (profsvc) writes the assigned FTAs (in this case protocols) into the user registry (observed in procmon)
• the User gets promted for which application to use for opening assigned type

The associations xml is right since it works with every other customer. The only FTAs (or protocols) included are http and https.

The values get written to the correct reg key: HKU\Software\Microsoft\Windows\Shell\Associations\UrlAssociations\http(s)\UserChoice

There ProgID and Hash are also written but it seems like the Hash is wrong.

If i set the default Program in the dialog (OpenWith), another Hash is written and this Hash seems to be correct since opening Hyperlinks works then. But since UsrClass.dat doesn't roam after a logoff the settings are gone.

If I take a hash value that has been set through the OpenWith dialog that is working and replace it with the hash set from profsvc it also works.

I read that the generation of the hash also includes the timestamp of the reg key. If this is true replacing the hash with an older version should not work right?

Since this behaviour only occurs on one of our clients i do not rule out the possibility of customizations made by the customer but i can not find any further clues to pin down the culprit. 

Said Server is a 2012 R2 with latest patches, Citrix VDA 7.6, Citrix UPM 5.5. The issue occurs on all tested clients (Win7, Win10, IGEL ThinClients)

What are other areas i could look or tools i could use to do any further analysis? My traces so far involved monitoring the activity on said registry keys and the mentioned associations.xml in procmon. In both cases only svchost with UserProfileService on the Stack accessed said items.

Thanks in advance!

associations.xml:

<?xml version="1.0" encoding="UTF-8"?><DefaultAssociations><Association ApplicationName="Internet Explorer" ProgId="IE.HTTP" Identifier="http"/><Association ApplicationName="Internet Explorer" ProgId="IE.HTTPS" Identifier="https"/></DefaultAssociations>

Stack of the RegSetValue Operation on the hash on User login:
0	ntoskrnl.exe	RtlEqualUnicodeString + 0x1f00	0xfffff8033d425d80	C:\WINDOWS\system32\ntoskrnl.exe
1	ntoskrnl.exe	SeAssignSecurity + 0x2d77	0xfffff8033d45d5cf	C:\WINDOWS\system32\ntoskrnl.exe
2	ntoskrnl.exe	setjmpex + 0x6523	0xfffff8033d1d51a3	C:\WINDOWS\system32\ntoskrnl.exe
3	ntdll.dll	NtSetValueKey + 0xa	0x7ffaead70d5a	C:\WINDOWS\SYSTEM32\ntdll.dll
4	KERNELBASE.dll	RegCreateKeyExW + 0x187	0x7ffae8161477	C:\WINDOWS\system32\KERNELBASE.dll
5	KERNELBASE.dll	RegSetValueExW + 0x141	0x7ffae8161601	C:\WINDOWS\system32\KERNELBASE.dll
6	SHELL32.dll	OpenRegStream + 0x2daf	0x7ffae97924df	C:\WINDOWS\system32\SHELL32.dll
7	SHELL32.dll	Ordinal714 + 0x32ad	0x7ffae9840f2d	C:\WINDOWS\system32\SHELL32.dll
8	SHELL32.dll	SHGetFolderPathAWorker + 0x74b	0x7ffae98568fb	C:\WINDOWS\system32\SHELL32.dll
9	SHELL32.dll	SHGetFolderPathAWorker + 0xa5c	0x7ffae9856c0c	C:\WINDOWS\system32\SHELL32.dll
10	SHELL32.dll	SHGetFolderPathAWorker + 0x904	0x7ffae9856ab4	C:\WINDOWS\system32\SHELL32.dll
11	SHELL32.dll	SHGetFolderPathAWorker + 0x148a	0x7ffae985763a	C:\WINDOWS\system32\SHELL32.dll
12	SHELL32.dll	SHGetFolderPathAWorker + 0xdde	0x7ffae9856f8e	C:\WINDOWS\system32\SHELL32.dll
13	SHELL32.dll	Ordinal891 + 0x17a36	0x7ffae98c6ae6	C:\WINDOWS\system32\SHELL32.dll
14	profsvc.dll	profsvc.dll + 0x4ad8	0x7ffae59b4ad8	c:\windows\system32\profsvc.dll
15	profsvc.dll	profsvc.dll + 0x499b	0x7ffae59b499b	c:\windows\system32\profsvc.dll
16	profsvc.dll	UserProfileServiceMain + 0xe69	0x7ffae59c2079	c:\windows\system32\profsvc.dll
17	profsvc.dll	UserProfileServiceMain + 0x16f1	0x7ffae59c2901	c:\windows\system32\profsvc.dll
18	profsvc.dll	profsvc.dll + 0x7d3d	0x7ffae59b7d3d	c:\windows\system32\profsvc.dll
19	profsvc.dll	profsvc.dll + 0x68da	0x7ffae59b68da	c:\windows\system32\profsvc.dll
20	ntdll.dll	TpSimpleTryPost + 0x1be	0x7ffaeacf679e	C:\WINDOWS\SYSTEM32\ntdll.dll
21	ntdll.dll	RtlFreeUnicodeString + 0x17ed	0x7ffaead18e8d	C:\WINDOWS\SYSTEM32\ntdll.dll
22	KERNEL32.DLL	BaseThreadInitThunk + 0x22	0x7ffae8c213d2	C:\WINDOWS\system32\KERNEL32.DLL
23	ntdll.dll	RtlUserThreadStart + 0x34	0x7ffaeacf54f4	C:\WINDOWS\SYSTEM32\ntdll.dll

Hi All,

I want to take remote connection of my windows server2012r2 vm through webbrowser.I have installed everything by following this link https://docs.microsoft.com/en-us/windows-server/remote/remote-desktop-services/clients/remote-desktop-web-client-admin.

I have configured everything RD-CONNECTION-BROKER RD-WEB-ACCESS RD-LICENSING RD-GATEWAY after that i can able to connect my windows server to browser but the issue is i cant able to access the resource shown in the browser it is showing "Oops, we couldn't connect to the "resource-name" The connection to the remote PC was lost. This might be because of a network connection problem. If this keeps happening, ask your admin or tech support for help.

Help me on this many thanks

Dear Sirs,

We are configurating RDP web cliente.

We want to redirect the port 443 from 4040 but when we change this port, the gateway not open the port.

There is any posibily to change this port.G

Gateway server is a public dns (in order to not use VPN) but in this server, we can add the port.

Best Regards

We have a Windows 2012 R2 RDS environment that we have been using successfully for sometime for our ERP solution. We recently made an acquisition and discovered that their primary subnet was the same as the subnet we use for our server environment. We working to make changes, but in the mean time we have setup NAT rules on each end of a point to point connection facility normal traffic, and a trust between the domains. This is all working wonderfully, until we got to allow users on their side of the connectivity to our ERP solution through RDS.

Out Environment

1 RDS Connection Broker

1 RDS Licensing Server

1 RDS Web Access Server

6 RDS Session Hosts (Prod)

1 RDS Session Host (Test)

Some of the testing appears to show the RDS Connect Broker communicating with the Client, up until point that it attempts to redirect the client to the Session Host. We see the Client starting to broadcast a Who Is for the actual IP of the Session Host. Which of course is going to fail, both client and Connection Broker then time out trying to communicate.

My Question: Is the RDS Connection Broker redirecting bases off of the IP or FQDN of the Session, and if it is by IP, is there a way to have it use the FQDN.. other input and suggestions are also welcome.

Hi,

We have just start to add extra capicity, for our RDS enviroments.

Previous we had 2 connection brokers, and 1 server hosting the Gateway / Web access server.

We then added 2 new gateways, to replace the old one, and planned on using HAProxy as the load balancer, in front of the 2 new gateways.

When users are logging into the RDWeb on the old Gateway server, they are presented with the RemoteApps, that they have in the collection, that the user belongs to.

When users are logging into the RDWeb on the new Gateway servers, they are presented with ALL the remoteapps, that is available accross all of the RDS collections.

We are 100% sure, that the new Gateways and the old Gateways, are in the same RDS "environment" - and can see all the servers, when looking at the SQL database for the brokers.

Normally we would look at the Domain groups, since all the RemoteApps are available - but then the user should see all the RemoteApps, when logging into the old Gateway server as well.

The only error code, that ive found so far are these:

Connection Brokers:

RD Gateway Configuration Failed on rdsgw3.domain.local With Error: Failed to create RAP for RD Connection Broker Computers group. Error = 2147749913

RD Gateway Configuration Failed on rdsgw3.domain.local With Error: Failed to create new RD Connection Broker Computers group. Error = 2147749913

RD Gateway Configuration Failed on rdsgw3.domain.local With Error: Failed to create RAP for Domain Computers group. Error = 2147749913

But the policies are being created correctly, and are present when looking.

rdsgw3.domain.local

The connection authorization policy "RDG_CAP_AllUsers" could not be created. The following error occurred: "183".

The resource authorization policy (RAP) "RDG_AllDomainComputers" could not be created. The following error occurred: "183". To resolve this issue, ensure that you have configured RAP settings correctly and set the correct value and permissions for the RAP.xml file and the RAPStore registry key.

The resource group "RDG_RDCBComputers" could not be created. The following error occurred: "183". To resolve this issue, ensure that you have configured resource group settings correctly and set the correct value and permissions for the RAP.xml file and the RAPStore registry key.

The resource authorization policy (RAP) "RDG_RDConnectionBrokers" could not be created. The following error occurred: "183". To resolve this issue, ensure that you have configured RAP settings correctly and set the correct value and permissions for the RAP.xml file and the RAPStore registry key.

The resource group "RDG_DNSRoundRobin" could not be created. The following error occurred: "183". To resolve this issue, ensure that you have configured resource group settings correctly and set the correct value and permissions for the RAP.xml file and the RAPStore registry key.

The resource authorization policy (RAP) "RDG_HighAvailabilityBroker_DNS_RR" could not be created. The following error occurred: "183". To resolve this issue, ensure that you have configured RAP settings correctly and set the correct value and permissions for the RAP.xml file and the RAPStore registry key.

We cant seem to find the answer to this, so any help is much appreciated!

hi I have configured rds gateway on windows 2012 , one server having all rds role ( connection broker, webapp,rdgateway & remote desktop session host ) as per this kb :https://www.lemonbits.com/2014/06/20/installing-standalone-remote-desktop-gateway-on-the-windows-server-2012-r2-without-complete-remote-desktop-services-infrastructure/

after that now i am getting remote desktop services temporary unavailable .

Reviewed all setting :removed port 80
Internally using RDWeb works ok.
I have added the certificate in Gateway Manager