Quantcast
Channel: Remote Desktop Services (Terminal Services) forum
Viewing all 5613 articles
Browse latest View live

Password change through RemoteApp doesn't work. "The security database on the server does not have a computer account for this workstation trust relationship"

$
0
0
Environment:
- 4x Windows Server 2012 R2 with role RD Session Host
- 1x Windows Server 2012 R2 with roles RD Gateway, RD Broker, RD Web Access
- Different Domains

Problem:
All servers with RD roles are located in Domain A (sub.domain.local).
Users in Domain B have computer accounts in Domain A. They use RemoteApp and connect with their Domain A user accounts.
Now the users password has expired and the user is asked to change it. This result in the following error:

"The security database on the server does not have a computer account for this workstation trust relationship".

If the user would logon to RDS directly instead of using RemoteApp and / or uses the RD Web Access, everything works fine!

On the web you will find "solutions" like, re-join the server to the domain.
I'm scared that this won't have any impact on the installed roles!?! I doesn't trust that "solutions"... the rest of the RDS infrastructure is working fine...


Currently checked:
- DNS Suffix: Isn't set by GPO or manually
- SPN: As I know, everything looks good (see details below)
- Logon test as SUB\user, sub.domain.local\user, user@sub.domain.local

dn: CN=Server-BROKER,OU=Servers,OU=Server,OU=Germany,DC=sub,DC=domain,DC=local
changetype: add
servicePrincipalName: TERMSRV/Server-BROKER
servicePrincipalName: TERMSRV/Server-broker.sub.domain.local
servicePrincipalName: WSMAN/Server-broker
servicePrincipalName: WSMAN/Server-broker.sub.domain.local
servicePrincipalName: RestrictedKrbHost/Server-BROKER
servicePrincipalName: HOST/Server-BROKER
servicePrincipalName: RestrictedKrbHost/Server-broker.sub.domain.local
servicePrincipalName: HOST/Server-broker.sub.domain.local


Let me know if somebody can help.

Thanks in advance,
Stefan

Stefan


RDS on Windows 2012- RemoteApp does not display any icons after publishing

$
0
0

Hi All,

I just setup RDS with remote web access; however, when I log into the rdweb page, I don't see any of my icons available. I have published a few application and all of them are set to be viewable by everyone; though when I log into rdweb, there are not icons, its just blank. What am I doing wrong, and why aren't my icons showing up.

Thanks

Surface 2 - RDP Remote FX Redirect USB Devices

$
0
0
     

Can anyone confirm if the RDP RemoteFX USB device redirection functionality is missing from Windows 8.1 RT?

I have successfully configured the functionality on a standard (x86) Windows 8.1 machine (local GPO setting etc) but when I try the same settings on my Surface 2, the option to re-direct RemoteFX devices is not present in the "Local Resources" section of the MSTSC.exe client.

It would be really useful for this feature to be available.

Windows Server 2003 r2 64bit Remote Desktop Connection RDP not working

$
0
0

Hello,

I have gone through most support guides which I can locate on the internet and nothing seems to work.

I have enabled and disabled the service. Enabled and disabled Internet connection sharing. I have totally disabled the firewall on the server and I still cannot connect to the server via RDP

I get only the following error.

Remote Desktop cant connect to the remote computer for one of these reasons:

1) Remote access to the server is not enabled

2) The remote computer is turned off

3) The remote computer is not available on the network

Make sure the remote computer is turned on and connected to the network, and that remote access is enabled.

When i port scan the server there is no port 3389 enabled. I am using RDP just for administrative purposes. I used to be able to connect to the machine via RDP but one day it just stopped working.

I have also checked a few select updates to determine if they are installed. All updates which might have compatibility issues are not installed on the server.

Any information requests will be answered promptly.

How do I figure out my RD Session Host?

$
0
0
Anyone know how to figure what the server name of my RD host is? I know the licensing is on a domain controller, but it doesn't have the Session Host setup on it.

Terminal Server - Farm issue

$
0
0

Hello Genius 

Once a while we have a issue, I am just new to the servers. If anybody has a answer for it ? We do have two TS, TS1 and TS2,

Issue is below

The Remoter computer xxxxxx that you are trying to connect it is re directing to the terminalserver2.domain.com.  RDP can not verify that the two remote computer belongs to same farm. This can occur if their is another computer has the same name or so.

Anybody has issues with it in past?

Thanks 

Windows Server 2012 R2 RDS Farm: best way to set up.

$
0
0

Hi,

I am thinking of setting up a RDS farm. But i am struggling to choose the best scalabale solution.

I have a setup of what i servers and services i need.

1. INFo. Storage an server physical is no problemes. I have 2x sans and 6 servers. all the serveres have 140GB RAM and 94TB in each SAN. All this is will be hosted from Hyper-v in a Cluster share storgae(yes) all this works:)

Connectiong broker: RD-Broker01

Remote Desktop Webaccess: RD-WEB01/02

Remote Desktop Session Host: RDSH01 to RDSH10 and etc... RDS..X

Remote Desktop Gateway: RDGTW01

Question 1.

Can i set up example 2 server that runs as application servers. Like RDS-App01 and App02. That can publish programs to all the session host? I thnking of only using this solutions as a RD webaccess.

Question 2.

In may Test where i deployed remote webaccess. Only members of the domain had persmission 2 start remote app. Even if a turn the security setting off in the gatewa. i created some certificates. Do they need to be installed on all computers taht is suppsoed to have access? and how do taht work for Ipad users?

Question 3.

can you load balance 2 Remote Web Access Servers? If there more users then expected there is always a god idea to a more webservers and ofc RDSH.

Question 4.

Is my thinking right? Im a fighting with my self to find the best solution. And scalable solution.

Question 5. Broker and Gate way. whats the main  differenc? Can a setup the gate way so people can log in to this address: www.somthihg.com and for so user www.somthingelse.com that only usees examles 2 of the serveres or 1.

Hope to get som help so i can deside. And tnx in advance - have a nice x.mas and a Happy new Year:)

Best Regard

Martin B



Qos DSCP value 46 gone, after enabling Remote Desktop Services on Windows 2012 R2 Standard

$
0
0

Hi,

After installing a clean Windows Server 2012 R2 with
all Windows updates I have setup Policy-Based QoS for tagging defined traffic,
in the test case all traffic to one specific ip address. Whireshark logging
displays the correct configured (46) dscp value so the group policy is
working fine. After installing Remote Desktop Services the Policy-Based QoS is
still in place but Wireshark results that the value is 0.

Can somebody explain why this happens and how to solve
it?

Regards, Edward


Windows server 2008 terminal service problem

$
0
0

Dear Sir,

could you please tell me how to input chinese characters which is using the Penpower application in a Windows server terminal services. I cannot input chinese even though I use the "Quick" input method. thank you for your kindly assistance.

Michael 

RDS 2012 weird printing problem

$
0
0

Hello All,

We have a very strange issue with 1 of our users. She can crash the print spooler very frequently. The problems almost always occurs when she need to print an excel file. Due to the frequency we needed to make sure the print spooler would always restart otherwise making all of our users unable to print. The excel file she's trying to print isn't that large (90kb) and contains data from column A - AB. It consist of 684 rows of data. She then goes to file --> Print selects a printer and *boom* the spooler crashes. It than display a message. The message usually lists:

1) Cannot connect to the printer
2) No printers installed

This also makes the event viewer fill up with the following events:

Faulting application name: spoolsv.exe, version: 6.2.9200.16384, time stamp: 0x501080ef
Faulting module name: KERNELBASE.dll, version: 6.2.9200.16864, time stamp: 0x531d34d8
Exception code: 0xc0000002
Fault offset: 0x0000000000047b8c
Faulting process id: 0x7364
Faulting application start time: 0x01d01e8436f79952
Faulting application path: C:\Windows\System32\spoolsv.exe
Faulting module path: C:\Windows\system32\KERNELBASE.dll
Report Id: 4ed8a353-8aac-11e4-940c-005056b34020
Faulting package full name: 
Faulting package-relative application ID: 

----

Faulting application name: spoolsv.exe, version: 6.2.9200.16384, time stamp: 0x501080ef
Faulting module name: ntdll.dll, version: 6.2.9200.17046, time stamp: 0x53b4864c
Exception code: 0xc0000005
Fault offset: 0x0000000000001069
Faulting process id: 0xa9ac
Faulting application start time: 0x01d01eb914acc298
Faulting application path: C:\Windows\System32\spoolsv.exe
Faulting module path: C:\Windows\SYSTEM32\ntdll.dll
Report Id: dd68d8b8-8aad-11e4-940c-005056b34020
Faulting package full name: 
Faulting package-relative application ID: 

---

Faulting application name: spoolsv.exe, version: 6.2.9200.16384, time stamp: 0x501080ef
Faulting module name: win32spl.dll, version: 6.2.9200.17041, time stamp: 0x53aa2d39
Exception code: 0xc0000005
Fault offset: 0x000000000007c024
Faulting process id: 0xa23c
Faulting application start time: 0x01d01ebad13bc3be
Faulting application path: C:\Windows\System32\spoolsv.exe
Faulting module path: C:\Windows\System32\win32spl.dll
Report Id: 81db8d0f-8ab0-11e4-940c-005056b34020
Faulting package full name: 
Faulting package-relative application ID: 

---

While testing we came across a strange phenomena. When she logs onto a RDS server using RemoteApp we see that automatically a group of printers gets created. Those are not displayed in excel/word/outlook/etc. and are only visable trough Control Panel. If we delete those and she relogs the automatically get recreated. Which printers are added differs from the server she is logged on by our load balancer.  

Background of our RDS

Our RDS environment consist of a connection broker and 2 application servers. All of which are running Server 2012 (non R2). All applications are started as a remoteapp from a Windows 7 or 8(.1) update 1)) or axel zero client. User have Remote Roaming Profiles (RRP) and a User Profile Disk (UPD). These are cached onto the RDS server, so creating a new profile is almost impossible by our knowledge. 

The odd part of all this is that we cannot reproduce this issue, and only this 1 user has this issue. Even removing all printers and leaving just the XPS and one note printer from Microsoft is enough to let the spooler crash. Because of this (and the fact that no one else has this problem) makes me very certain this isn't an issue with our Print server;RDS server or Drivers. 

So my question basically come down to:

1) Can i easily give the user a new profile even though the profiles are cached? (since this is a production environment a reboot can only happen on maintenance periods)

2) Where are these extra printers coming from? And how do i get rid of them?

General troubleshooting tips on this issue are welcome. As i'd like to know how this started or how i can find more helpfull information.

Thanks guys and have a happy x-mas. 

RDS 2012 R2: A timeout (30000 milliseconds) was reached while waiting for a transaction response from the (name-of-service) service

$
0
0

Hi guys,

On a random base (daily, weekly) we're experiencing major log-in problems on our Windows Server 2012 R2 Remote Desktop Services farm. The VM's are hosted on Hyper-V 2008 hosts and we're not using Citrix techniques etc.

Users are reporting that they cannot log-in, the log-in sessions hangs with a blank screen when loading their user profile (e.g. Please Wait For The User Profile Service).

In the System event log of the server on which the user is logging on the following errors are shown:

Source:        Service Control Manager 
Date:          23-12-2014 7:28:01
Event ID:      7011
Task Category: None
Level:         Error
Keywords:      Classic
User:          N/A
Description:

A timeout (30000 milliseconds) was reached while waiting for a transaction response from the UmRdpService service.

…and after 30 (or sometimes 60) seconds, the same error only another service (in random order):

A timeout (30000 milliseconds) was reached while waiting for a transaction response from the UmRdpService service.

…and after exactly 30 seconds, the same error only another service:

A timeout (30000 milliseconds) was reached while waiting for a transaction response from the UxmSms service.

etcetera, with the following errors:

A timeout (30000 milliseconds) was reached while waiting for a transaction response from the Netman service.

A timeout (30000 milliseconds) was reached while waiting for a transaction response from the AudioEndPointBuilder service.

A timeout (30000 milliseconds) was reached while waiting for a transaction response from the WPDBusEnum service.

A timeout (30000 milliseconds) was reached while waiting for a transaction response from the NlaSvc service.

The Portable Device Enumerator Service service failed to start due to the following error:
The service did not respond to the start or control request in a timely fashion.

A timeout (30000 milliseconds) was reached while waiting for a transaction response from the TrkWks service.

A timeout (30000 milliseconds) was reached while waiting for a transaction response from the UmRdpService service.

These errors are logged continuously.

An administrator cannot solve this since he isn't able to login in as well (console or remotely), only a hard reset of the VM is possible to use the affected server again.

I took different steps to solve this problem without any success, like:

- Installing the latest Windows updates
- Removed unnecessary printer drivers, print monitors and print processors (no local printers/drivers are installed, only Remote Desktop Easy Printer driver is used)
- Searched different forum posts, but found only hotfixes for Windows Server 2008 R2.

Can someone please help me with this annoying problem?

Many thanks!!

EDIT:
Of course is increasing the time-out not really an option here... http://social.technet.microsoft.com/wiki/contents/articles/13765.event-id-7011-service-timeout.aspx

2012 R2 RemoteApp - Basic Theme issue

$
0
0

Hi All

I refer to this article below, is there a fix from MS for this issue?  

We are reviewing migration from Citrix to RemoteApp, but this is causing a reluctance in change.

https://social.technet.microsoft.com/Forums/en-US/44f33bd6-aa45-48cb-b886-352330e3f47c/win2012-std-basic-theme-problem-?forum=winserver8gen

Precis

-------------

Hello, 

Somehow Windows Basic Theme broken, hyperlinks are changed to yellow, I cant event read text on menus. Also RDP users have same problem when they connect. How can I fix it ?

I installed Desktop Experience, and with Aero theme its ok on administrator RDP , but other users on RDP have same problems. 

I resolved this by following:

  • I've just tried this (thank you Saad)

    Open %windir%\Resources. Change security properties of the "Themes" folder and give full control permission to your account. Enable inheritance to apply this setting for all sub folders, or, open "Themes" folder, and give full control permission to your account on file "basic.theme". 

    This first step will allow you to modify the "basic.theme" file

    - On "Themes" folder, right click "basic.theme" and click "open with". Choose Notepad. 

    - Click on ctrl+f and search for "aerolite.msstyles". Once you find it, replace it by "aero.msstyles".

    - Save this. After that, go on control panel - personalization, apply a theme randomly, then reapply the Windows Basic theme. 

    This indeed worked for me, however somehow I think this isn't a true root cause resolution and am waiting for it to bite me later....

Many thanks

Lea

there are too many users signed !!!!

$
0
0

Hi

My name is Bledar .

I am using windows server 2012 r2 datacenter as a virtual machine in Windows Azure .

But i cannot signed in more than 2 users . I am using a Microsoft Subscription in Windows Azure .

Please help me to solve the RDP connection to my virtual machine and to allow multiple RDP connections .

Remote Desktop Connection Error

$
0
0

I have looked on the internet and haven't found the one thing that will fix this error - I use Citrix Xencenter to connect to all my virtual servers. Every Since Windows 7 one of the MS updates changes the way MSTSC connects to the servers and I get this message each and every time I try to remote to the virtual desktops within XenCenter.

tual desktop. Does anyone know of a fix this error for good.

No remote desktop license server available

$
0
0

Hello All,

I have a Server 2008 R2 with Remote Desktop enabled, Remote Desktop Licensing activated on the same server and Remote Desktop Licenses installed.

Today, the "No remote desktop license server available" error came up when users tried to login.

When I look at the Remote Desktop Licenses screen it shows the total licenses available but that no licenses have been issued.

Some users are still logged into the server, if they log out they cannot log back in.

How can I troubleshoot this?

~e



Windows Server 2012 -RDS Session Broker- unable to find the option "Chose the option for re connection"

$
0
0

Hi Experts,

Looking for some help on RDS load balancing. Background and Issue is explained below;

Background: I am setting up a RDS farm using Windows Server 2012 R2 servers.

Using 1 broker and 2 session host servers.

As far as I have explored Windows Server 2012 , Farm does not seems to exist any more and functionality is replaced by "Collection"

I have created a collection on RDS broker and added 2 session host servers. 

Client connections to session host servers are load balanced properly based on the default weight defined in collection setting-->load balancing. 

Even if i connect to Session host server A or Session Host server B, Its the broker deciding where the session should go. Looks good.

Broker's default load balancing characteristics: When broker is doing the load balancing, It randomly chooses the session host server and returns back the least loaded session host server back to client. For example , In a normal RDS connection , when we connect to a server , we get a certificate pop-up saying identity of server is not matching the certificate , click on yes to proceed, so here we come to know we are connecting to server A.

When session broker does the load balancing, i get this certificate pop up second time because broker is redirecting my session to a least loaded server, instead of connecting to server A my session is redirected to server B. This works perfectly fine if i just say "yes" on certificate pop-up.

Issue: Due to some specific project requirement, The real IP of server A and Server B have been NATed, so both Server A and Server B have thier corresponding NATed IPs. From client machines 3389(RDP) is allowed only to Nated IPs.

Logically the NATed IP will be translated to real IP at Network device and that's how it will work.

When a client connects to Nated IP of server A and luckily if broker also thinks the session should go to Server A, user gets a session, but when a client connects to Server A but broker thinks that session should go Server B, Broker redirects the session to real IP of server B, which is not allowed to be accessed from Clients machine.(Only NATed IP is allowed for RDP). so here the connection will not be established.

So to summarize the issue: The client machine can't connect to RDS Load balanced session host servers when their IPs are Nated because Broker redirects the request to real IP of server.

Possible solution: As per Windows server 2008 R2 , when we create a RDS farm , we have a option to choose the IP for re connection. This setting is available Here Administrative Tools > Remote Desktop Services and double-click Member of Farm in RD Connection Broker (you can also choose right-click then Properties) , shown below is picture of IP re connection setting( Window Server 2008)

So i can map an additional NIC to RD session host server and give the Nated IP of that server to additional NIC. In above shown option for IPs to be used for re connection, i can check the box on the NIC with Nated ip, so broker will use the Nated IP while doing the load balancing.

I can't find "Chose the IP for re connection" option in Windows server 2012.

Appreciate you patience to read the scenario. Please let me know if you know the fix for this  or any suggestion on this.

Best Regards,

Abhishek

Server 2012 R2 RDSH server error

$
0
0

I have had this server up and running for a few months now testing it and all seemed to be well.

Now however if I try to publish a new app I get the following error message:

Publishing Failed for RDSH Collection - RemoteApp name: Calculator  Collection name: xxxxxxxxxx Failure: Unable to retrieve the session collection properties.

There are no errors in the event logs and I have rebooted the server a couple of times but still with no luck.Anyone come across this and how do I fix it?

Continued black screen after login problem

$
0
0

I have searched and tried a massive variety of solutions offered on MS and other sites. So far, nothing seems to be much help. Others are not describing the problem the exact same way I see it, so let me explain what I end up with.

When logging into Server 2012 R2 running on an Intel S2600CP motherboard, the login is accepted and the screen goes black.  This happens both at the system logging in locally and also when using Remote Desktop Services.  It does not do it every time, but less than every fourth time.  If you allow it to sit, then you will get a desktop in about 10 minutes.  If using remote, you can disconnect from the session and remote right back in.  When you do so, you get the desktop immediately.  If you are local and get the black screen, you can remote and get the desktop immediately.  Then you can log back in locally and the desktop works fine as well.  All MS updates have been installed and Windows Updates reports that there are no further updates available.  This happens with user and administrator accounts via remote.

Most places point back to MS update 2887595 as a possible solution.  I do not find this update installed or offered.  I do have the current update rollups showing as installed.  In the 2887595 it reports that installing it on certain system will cause those systems to crash.

Looking for other items to try as the problem still has not been resolved.

Remote Desktop Gateway service timeout and hang with Azure MFA

$
0
0

I've installed a server with Remote Desktop Gateway role and configured it according to guidance in http://www.rdsgurus.com/uncategorized/step-by-step-using-windows-server-2012-r2-rd-gateway-with-azure-multifactor-authentication/. This works fine when I accept or reject the phone call within 30 seconds. If the MFA server doesn't respond within those 30 seconds the Remote Desktop Gateway service hangs itself and needs a restart to start working again (it also doesn't shut down gracefully, needs to time out).

I've set the Remote Radius Server timeouts to different values between 20 and 90 seconds but this timeout seems to be hardcoded somewhere as suggested in https://social.technet.microsoft.com/Forums/en-US/cbcb46e3-9dc4-4079-a254-d5d8a0f78b95/remote-desktop-gateway-authentication-timeout-change?forum=winserverTS (original post is old but newest post is in regards to Azure MFA)

I've tried installing again from scratch with Windows Server 2012R2, with just Windows 2012. I've also tried different setups:

- Local NPS proxying to MFA server

- Central NPS proxying to MFA server

- Local NPS proxying to MFA which proxies to Central NPS

They all work but all have the same 30 second limit and my Remote Desktop Gateway service hangs.

Looking around on the internet it looks like there are people that have this working so I'm not sure what the difference is between their setup and mine or if they've never tested this scenario. I think the 30 seconds timeout should be enough for just voice call authentication without PIN if I can just stop my RDG service from dying.

Problem with Remote Desktop License Server

$
0
0

Hi,

Few Months ago i Set up a WS2008 R2 server with 10 Cals/user , everything is fine but , sometimes when i log on  the Administrator Account sometimes a message apears on the left corner that says :"Terminal Services will stop Working if this computer does not connect to a valid Terminal Services License Server with in 25 days . Click this message to launch the Terminal Services Configutation Tool to specify a valid license server". The License server is set manually and in the same server , but the lincense manager says that everything is fine and the license diagnose is fine too,  and the message doesn´t even appear on the  event log of the terminal service role . I also query WMI and the server name is set on the SpecifiedList.

Viewing all 5613 articles
Browse latest View live


<script src="https://jsc.adskeeper.com/r/s/rssing.com.1596347.js" async> </script>