Quantcast
Channel: Remote Desktop Services (Terminal Services) forum
Viewing all 5613 articles
Browse latest View live

Windows Server 2012 - Powershell script to "allow new connections" for all servers in collection

March 6, 2015, 12:40 am
$
0
0

Hi Guys

I have a request. When doing maintenance on a Remote Desktop Session Host farm, we sometimes change the "Allow New Connection" from true to false.

The issue is, that we have experienced that this value is accidential not changed back to true by the technician when maintenance is finished. This is resulting in next morning, alle users are not loggin in to all servers.

I want to run a Powershell script every night, that changes this value to true. Unfortunately, I have not been able to find any cmdlets, that can help me with this. Is that correct? If not, could you help me here?

Best regards,

Mr. Thomas

Search

User Profile Service event id 1530 with every remote desktop logout

July 23, 2010, 3:01 pm
$
0
0

I've been receiving User Profile Service event id 1530 with nearly every logout from an rdp session.  Our environment is Windows 2008 R2 64 bit running on Citrix XenServer 5.5.  RDP is in remote administration mode.  Tested with and without Windows updates applied.  No additional printers added, no connection to a domain.

Because the environment is virtual, I've been able to try many combinations and have narrowed it down to this: When Windows 2008 R2 has a single processor, the event does not occur.  When I give the virtual server two processors, the event occurs with nearly every RDP logout.  Same results with or without XenTools installed.  I do not have the resources to test the single/multi processor difference on physical hardware.

Any insights would be appreciated. I've posted the full event as well as information about the process that is mentioned in the event.

AB.

Log Name:      Application
Source:        Microsoft-Windows-User Profiles Service
Date:          7/23/2010 8:38:51 PM
Event ID:      1530
Task Category: None
Level:         Warning
Keywords:     
User:          SYSTEM
Computer:      WIN-36DPBES2P14
Description:
Windows detected your registry file is still in use by other applications or services. The file will be unloaded now. The applications or services that hold your registry file may not function properly afterwards. 

 DETAIL -
 1 user registry handles leaked from \Registry\User\S-1-5-21-2545583-721118796-2022419212-1000:
Process 888 (\Device\HarddiskVolume2\Windows\System32\svchost.exe) has opened key \REGISTRY\USER\S-1-5-21-2545583-721118796-2022419212-1000\Printers\DevModePerUser

----------

Process 888 is svchost.exe running UxSMS (Desktop Window Manager Session Manager), UmRdpService (Remote Desktop Services UserMode Port Redirector, TrkWKS (Desktop Distributed Link Tracking Client), and Netman (Network Connection)

PXE boot into terminal server farm

February 16, 2015, 6:05 am
$
0
0

Hello,

Our company has many terminal servers in a connection broker. We have multiple old computers + a bunch of thin clients that today PXE boots into a cut down version of Ubuntu from where the users RDP into our terminal servers with 2008R2 and some 2012.

We have had many issues with linux images to PXE into. Some clients get no sound at times, freerdp disconnects ramomly and other issues. We have tried many different Linux images and all has it's issues.

So my question is, does Microsoft offer it's customers any better way to PXE thin clients and RDP into Terminal servers?

Thinking since Microsoft offers terminal server, they should also have some way to RDP into them without the need of installing anything on the clients?

2012 R2 RDS Farm assistance

March 4, 2015, 7:53 pm
$
0
0

Hello Experts,

    I recently stood up a new RDS farm on 2012. I am amazed how different it is from 2008 and have been having some issues / questions about how to configure everything. My environment consists of

RDGW - Gateway

RDBR - Broker and Web access

RD1, RD2, RD3 - Session hosts

DC - Licensing server

I have configured all roles and certificates through sever manager. The RD Gateway name (configured from Server Manager -> Remote Desktop Services -> Edit Deployment Properties -> RD Gateway servername) I configured is rds.domainname.com. I have an SSL cert purchased for this domain name, and it has been imported to all of the roles in server manager. 

I have configured DNS round robin, with 3 A records, labeled "RDS" to point to the individual session hosts. So internally, RDS.domainname,com resolves to the 3 session host IPs. 

Question 1.) From what I read on technet article, the RDP client connects to one of the session host servers, who will contact the session broker before completing the client connection. The broker will then tell the rdp client whether to connect to the session host DNS had resolved it to, or direct the client to a different session host based on number of sessions (it will direct client to the host with the least amount of sessions). Is this correct? 

Question 2.) Internally, when I RDP to rds.domainname.com I am directed to one of the 3 session hosts. Internal RDP is working. However, when I try to use the web portal, RDGW.domainname.com/rdweb I can authenticate and am presented with the published apps, but when I click on one and launch the RDP icon that is downloaded, I get an error that "Your computer can't connect to the remote computer because an error occurred on the remote computer that you want to connect to". I am not sure what is causing this issue. 

Question 3.) Secondly, I am trying to configure external remote access. I have an A record on web hosting provider configured to point rds.domainname.com to a public IP. This public IP is NAT'd to the internal gateway server (RDGW) IP and port 443 and 3389 are open. On the external RDP client, I know I will configure the gateway in advanced RDP settings to point to rds.domainname.com. I am assume that for the computer name I will also configure rds.domainname.com, since once it hits the gateway server DNS will resolve internally rds to one of the session hosts. Is this correct? 

Question 4.) I also noticed when I publish remote apps through the collections, I no longer have the remote desktop in rd web access. Is there a way to have both? I have read that 2012 RDS does not support both published apps and remote desktop. I also found some articles on ways around it, such as changing a registry value on the gateway server, but this did not work for me. Is this possible or can I only choose one of the other? 

Thanks in advance for the help! 

RemoteApp Session freeze and disconnected. Event Log shows "Session has been disconnected, reason code 0."

March 5, 2015, 3:06 am
$
0
0

Hi,

We have a Remote Desktop Service environment hosted in Azure Virtual Machines, the environment consists of 3 servers - a domain controller, a Remote desktop session host and a RD web gateway.

We are having issues when users access to published remote app via web gateway, the session will be disconnected randomly if you leave the remote app idle for a little while.  The disconnections happens very frequent, users can get disconnected for every 2 to 3 minutes.  Event log under TerminalServices-LocalSessionManager is showing event ID 40 - Session has been disconnected, reason code 0.

I have done the following however problem still exists:

1.Enable Keep Session alive settings.

2. Disable RDP-timed out.

3. Trusted SSL certificate from authority

4. Disable IPV6

Some analysis i found out:

1. Disconnection only happens to RemoteApp, while RDP session directly to Remote Desktop Session Host is always alive.

2. When multiple users access to RemoteApp concurrently, they get disconnected, but not at the same time.

3. I have continuous ping from Remote Desktop Session Host to Web Gateway server and the packet didnt drops.

Been cracking my head many days to troubleshoot this issues, I hope the experts here can help me.  Thanks!!

Regards,

Lih Ping 

 

2012 RDS + Gateway Certificate and and .local domains

March 6, 2015, 8:52 am
$
0
0


Can someone verify this is the correct process to stop all certificate errors. 

RDS 2012 R2 deployment that is the following. 

1 server with broker web and gateway roles installed. 

3 session hosts. 

Domain is a .local

I want to stop all certificate errors. I have a certificate for the gateway/broker/web server gateway.xxx.com 

I have had a look at the Change published FQDN for Server 2012 or 2012 R2 RDS Deployment script

https://gallery.technet.microsoft.com/Change-published-FQDN-for-2a029b80

Do i just need to run this script on the gateway/broker/web server and will this stop the mismatch errors fro the session hosts?

Thanks


Remote desktop to windows server 2008 r2

March 6, 2015, 11:42 pm
$
0
0

Hi ,I'm facing an issue with windows server 2008 r2 RDP. 

Only two users are able to log into the server remotely , for third users its not prompting to logoff inactive users. Im getting an error message "This computer cant connected to the remote computer. Try connecting again ......."

thank You 

Shamal

Installed the RDS 2012 Server License per user CAL (5pcs) after not allow over two users remote desktop connection problem

March 6, 2015, 1:55 am
$
0
0

I have successfully to installed the RDS 2012 Server R2 per user CAL (5pcs) Open License after is found not allow over two users to remote desktop connection on this Server problem, I try to uninstall the license and then (internet on-line & telephone call Microsoft Activate Center get the activate key) to reinstall is still same of the result on below problem.

Select a user disconnect so that you can sign in.

There are too many users signed in

User1 Active

User2 Active

() Force disconnect of the user

Search

RemoteApp user assignment not working in collection, all users have access to run all applications even though they don't have access...

February 24, 2015, 3:34 pm
$
0
0

Hello all,

I'm having in issue with RDS hosted on 2012 server. Let's say I have 2 applications hosted my RDS session host server, and only 2 users (users a and user b).

user a has access to both applications, while user b has only access to 1 application.

RDS access is given through the user group in the properties section, and permissions are set at the application level "User Assignment" to reflect the above statements.

Both user A and user B still have access two the applications and they both show up under the RDWeb application as well.

I am at a lost of what's going on here. If someone could please help, that would be awesome!

Running Office 2007 on Windows Server 2012 Standard in RDS

March 4, 2015, 7:05 am
$
0
0

So the client has Windows Server 2012 Standard R2, it is not a DC.  Setup Remote Services (formerly known as Terminal Server).  He runs Office 2007 on the server.  When using LogMeIn, he can run the Office apps fine.  When doing RDP, and at starting an Office APP he gets this meesage, "This Copy of Microsoft Office Excel cannot be used on Terminal Server.  Please contact your local authorized Microsoft retailer for more information."  We did this and purchased 5 RDS CALS, installed the TS licensing Server and installed and activated the RDS CALS.  Have not rebooted the server - was not prompted to reboot.  However, when looking in the Application Log on this server this error is displayed:

Error 1002  The program mmc.exe version 6.3.9600.16384 stopped interacting with Windows and was closed. To see if more information about the problem is available, check the problem history in the Action Center control panel.

Process ID: 1d0c

Start Time: 01d0568473061f4e

Termination Time: 0

Application Path: C:\Windows\system32\mmc.exe

Report Id: d830bbcd-c277-11e4-80c8-ecb1d7f30b79

Faulting package full name:

 Faulting package-relative application ID:

Is there something else that needs to be done to activate the RDS CALS??  Got no error messages when installing the CALS, just activation and installation was successful.  I know that to run APPS on Terminal Server you need the RDS CALS - Microsoft verified that as well.  Perhaps we need to tweak the Sonic Firewall settings??

Please Advise.

Thanks,

LCD

ncc@netwebga.com

7703561074

LCD

Users logging into RD Web Access from different domain is not able to access.

February 5, 2015, 5:47 am
$
0
0

Hi

I have a new customer. he has given the RD Web access authorization to work by accessing some resources like calculator, putty, remote desktop etc. My problem is- Everything is accessible from any workgroup machine through my org.. network or open Internet too but  from my domain machine this is not accessible by using same network( i reach till resources using by credential but not entering in resources). It is indicate there is any domain restrictions policy by customer or my domain policies. I have already contacted to my Domain handler to finding this issue in my domain but he cudn't find any.

Please give me your valuable ideas on this cause. your Any input would be greatly appreciated.

Regards,

Yash

User Groups on rdsh

February 10, 2015, 11:57 pm
$
0
0

Hi

I have a Domain with several child domains. On my rds setup, I have a rdgw, a rdcb and 4 rdsh. I would like now to allow a Group from one child domain to an rdsh. So I created a group on the top level domain (RD All Access) and added all groups from the child domains. On the RAP and CAP I allow all Users from this group. That seems to work fine.

On the RD Setup for the session hosts, I would like to allow only the group from the child domain. So I change the location to the child domain and search the group. When I click OK, I get an error:


On the domain trust I can validate the trust and get it confirmed:

The trust has been validated. It is in place and active.

So how can I add a usergroup from a child domain to a dedicated rdsh?

Thanks.

Best Regards, Daniel

Enable Azure MFA for Test Group Only?

March 3, 2015, 11:58 am
$
0
0

We are in the process of implementing Azure MFA on our production RD Gateway. We want to be able to thoroughly test MFA authentication before producing documentation and rolling out to our production users. I am following the guide made by the nice people at RDSGurus Step By Step – Using Windows Server 2012 R2 RD Gateway with Azure Multifactor Authentication.

The problem is that I can't find any documentation which  explains how to deploy MFA to a small test group, but allow production users to continue to authenticate on our RD Web Portal as usual. After following the guide, the RD Web Portal only allows users with MFA configured to authenticate, of course. We want to allow our main user group to authenticate against AD as usual-- is this easy to accomplish or even possible? If not, I will have to roll back all my work before the end of business today, so that's not optimal.

Any help will be greatly appreciated!

RemoteApp planning

February 15, 2015, 6:12 am
$
0
0

Just installed Windows Server 2012 R2 and I'm starting to plan for deployment of Remote Deskop Services. There will be only this one single server that hosts all the needed roles for RDS. I have few applications that I want to publish for users via RemoteApp.

I have internal users (Windows 7 PC's) and external users (Android and iOS tablets). 

I have active directory domain named company.local and this RDS server is named rds01.company.local.

RDS installation seems to be quite easy, but I have some questions regarding to configuration.

I need certificate from public CA, but I'm unsure what names I need in this certificate. I'm planning to publish this RemoteApp service for outside users with name ra.company.com. Do I need some other names in the certificate? What are my options to deal with internal name of server because ad domain is named .local and that is causing problems with public CA certificate.


Different Apps on Different Session Hosts but all in the same collection?

March 9, 2015, 12:15 pm
$
0
0
I have 4 session host in one collection and I'd like to install two different applications on different session hosts (say app "A" on 2 hosts and app "B" on  the remaining 2 hosts).  What kind of behavior should I expect from load balancing?  Will it know that app "A" exists only on these two host and not load balance to the other hosts or will it try to connect a user to a host where the application doesn't live?  Forgive my ignorance.
Search

Dual Screen - Windows 2008

March 9, 2015, 8:31 pm
$
0
0

Looking to see if anyone has had any success with getting dual screens working to a Windows 2008 TS environment. Basically the TS environment is 2 x Windows 2008 Standard servers working together and the users connect from old WYSE terminals. 

What I want to be able to do is use dual monitors. It looks like it doesnt work all that well but want to get a definitive answer that true dual screen is not possible.

If anyone has any experience with this or any advise it would be great. 

Thanks

Prompt to Reset Expired password

March 9, 2015, 12:58 pm
$
0
0

Hi,

We have policies to renew passwords periodically, but when password expired users are just prompted saying password expired.

What I want to know is, if there is any option to remind password expiry in RDS when I configure group policy the password expiry.

Also it would be better if users get a prompt to change the password when they use RDSapp.

Regards,

Qadir

Connect RD Connection Broker to SQL

June 27, 2013, 12:23 pm
$
0
0

Hello I'm not being able to install RD Connection Broker with High Availability.

The RDS deployment consists on two servers running win2012

server1 - RDWA and RDG

server2 - RDSH and RDCB

The SQL server 2012 that I'm using is installed on server2 itself and had to be installed after the RDS otherwise the SQL installation failed and had to be done using the RD-install. It's working fine , I've applications that run on it.


As when configuring RDCB HA "both" RDCB hosts access directly to the SQL DB to create a new database, their accounts need to be authenticated as a SQL login with dbcreator role.

1 step: I checked a straight forward installation_

Installing and Configuring RD Connection Broker High Availability in Windows Server 2012

Failed

2 step: I checked an installation where my problem happened.

I checked RD Connection Broker HA – SQL Permissions
Added the host to a domain group and added the group as an SQL login, SQL authentication failed.

4 step: Google for how to create SQL login for a computer account and  I added it by executing:

“CREATE LOGIN [MyDomain\MyComputer$]FROM WINDOWS”

Also tried to use Add-ADcomputerServiceAccount without success.

3 step: I ended here

Taking a closer look at RD Connection Broker High Availability in Windows Server 2012

Where I verified that none of the following explanations were correct:

  • The SQL Server Native client is not installed
  • A firewall is blocking SQL Access from the RD Connection Broker (port 1433)
  • The incorrect SQL Server Native Client version is specified
  • An incorrect SQL Server name is specified



I tried several variations of the string to use but this is the one I think it's correct:

DRIVER=SQL Server Native Client 11.0;SERVER=WIN2012-1;Trusted_Connection=Yes;APP=Remote Desktop Services Connection Broker;Database=RDCB

The error registered on SQL is:

"Message
Login failed for user 'RDS\WIN2012-1$'. Reason: Could not find a login matching the name provided. [CLIENT: <local machine>]"

I tried to connect via ODBC with an existing username an it succeeded.

The problem seems to be with the computer account not existing as an SQL login...the thing is that it exists.

I need to set this up in order to be able to change the RDCB FQDN to a public FQDN.

How were you guys able to overcome this? Did you faced this at all?

Thanks,

David

What File should i synchronize?

March 3, 2015, 1:18 pm
$
0
0
Currently have two session hosts running that have identical configurations and was wondering what information from the files c:\Users\%username%\appdata could be synchronized between the two machines without negative repercussions to create the similar experience of our software on both of these machines? Looking at utilities like sync toy to provide the syncing capabilities.

RDS Cal issue

March 3, 2015, 9:38 am
$
0
0
Looking for some advise on how to resolve a cal issue with Server 2012 R2 RDS licensing 

i have activated the 5 Device RDS cals and when i look at the licensing server it says 5 licenses are installed but there are 0 available and 0 issued

anyone have any idea why the cals aren't available?

i have spoken to the activation team at microsoft and they say that the cals have been successfully activated.

i have checked and the RDS gateway is set for per device

any help greatly appreciated  

Chris 


Viewing all 5613 articles
Browse latest View live
Search
<script src="https://jsc.adskeeper.com/r/s/rssing.com.1596347.js" async> </script>