Quantcast
Channel: Fórum Remote Desktop Services (Terminal Services)
Viewing all 26837 articles
Browse latest View live

How to connect to different Collections from the same Web Access server?

July 10, 2018, 6:11 pm
$
0
0

I am looking for a way to use a single RD Web Access page to connect to different Collections. Here is what I have.

Session Collection 1 - Application published using farm webapp.domain.com (Five servers)
Session Collection 2 - Remote Desktop published using farm rds01.domain.com (Five servers)
Session Collection 3 - Remote Desktop published using farm rds02.domain.com (Five servers)

Each farm has a different use case and applications, hence the three farms. But I would like users to access any of them by logging into https://web.domain.com/RDWeb.

The farms are using round robin DNS, which could be part of the problem. I did this so if you use mstsc, the computer name points to rds01 which has an A record to all five servers.

The other potential problem could be that I used Set-RDPublishedName on the Connection Broker and changed the name to webapp.domain.com. I did this so the wildcard SSL certificate didn't issue any warnings.

It appears that the published name on the Connection Broker is what the Web Access server uses to launch everything. So instead of Remote Desktop going to RDS01 or RDS02, everything redirects to webapp. If what I am trying to do is possible, what do I need to change?

Search

RDS problems

July 10, 2018, 8:51 am
$
0
0

Hi,

We have a RDS server ( Windows Server 2012 ) connected to a DC controller ( Windows 2016 ) : frequently users can't login because domain can't be reached.

We already pushed the server in the domain again but problem remains, the events logged are

- 36887 schannel

- 1061 : remote desktop session host server was unable to retrieve users licensing information from AD. Error 0x8007054b

- 5719 NETLOGON

After sometime ... adn without changes users can login again.

What could the problem be and how could we solve that ?

Best regards

Dirk

RemoteApp user assignment not working in collections

July 10, 2018, 3:37 am
$
0
0

Hello,

i have a problem with my RDS.

I have installed my environmnet and i it works ok. 

When i want to provide a second collection and want that only users from group A see the Apps from Collection1 and Users from group B the Apps from Collection2 it doesn't work. 

Everybody can see every APP over both collections. 

What i am doing wrong?

I have 2 Brokers in HA

one RDWEB Server

20 RD Session Hosts (18 for collection1 and 2 for collection2)

2 Collections

Regards

Sven

Remote Desktop Printer Settings Default

July 9, 2018, 10:44 am
$
0
0

When connecting to Remote Desktop Connection, and trying to print from an office document, the printer reverts to default settings, which for the Canon Imageclass D1520 is 2 sided print. In the settings of the remote, the printer is set for 1 sided printing by default, which is not factory default settings. Is there a way to force the printer on the host via remote desktop to keep the settings on the remote local instead of the mfg default? This is trying to print from Excel or Word 2016.

Canon said that "We do not support the use of Terminal Services/Remote Desktop Connection with the imageCLASS D1520".


Issues connecting to RD Gateway

July 9, 2018, 12:44 am
$
0
0

Dear all,

I have some trouble with some (not all) users connecting to RD Gateway. The RD Gateway is running Windows Server 2012 R2, the clients having the issues are Windows 10.

When these users try to connect to the GW, the following error with Event ID 306 occurs in the Eventlog:

The user "Unknown", on client computer "x.x.x.x", was not authorized to connect to the RD Gateway server because a tunnel could not be created. The authentication method attempted: "Cookie" and connection protocol "HTTP". The following error occurred: "2147965432".

I tried to Google that but with little to no success. I found similar issues though, talking about checking the GW Certificate in one post, actually that was setup correctly. Another post talked about just doing an iisreset, which I did but also to no avail.

Also I checked the LANMan settings (Network security: LAN Manager authentication level) on server and client both seem to be established via Domain GPO (I can't change them. Anyway, they are both set to the same level.

Did anyone else face similar issues with RD Gateway and Windows 10? What else could I do?

Any help is much appreciated.

Thanks,

Harald


Server 2008R2/2012R2 Entire Domain Seems Not To Be Running Login Script Suddently

July 8, 2018, 8:13 pm
$
0
0

We have a domain, with multiple servers and multiple users. We use a domain login script, which primarily maps drives, and everyone is setup to run the login script in Active Directory. It has been working for years. Suddenly, last week, I'm getting reports of drive letters not being mapped. I tested several users, and it wasn't running the script on login, on either our 2008R2 or our 2012R2 servers. If I manually run the script, it works fine, so there isn't anything regarding access to the script, or the locations. Temporarily, I setup group policies to map the drive letters, but that isn't really the way I'd like to have things work. Any idea what might be wrong?

Thank you.

Jeremy Heymann Market Mentor Online

moving remote desktop terminal license from 2008 r2 to 2016 server, after license 10 cal user license install its asking for 5 5 alpha char

July 6, 2018, 5:39 pm
$
0
0

I assumed its the 25 alpha of the OS of a connecting user, but all that i attempt to input fail.

Is it looking for another 25 alpha other than OS, connecting computers are win 7 pro and windows 10.

Server is setup in a workgroup.

When purchased on the last workgroup server in open volume licensing we received one 7  5 alpha character code and the remote desktop licensing accepts that license.

 Any input appreciated

2 or 3 server rds 2016 farm in azure, setup questions

July 6, 2018, 12:32 pm
$
0
0

I have a client that is on a single 2012 rds server now in azure using remote apps internally and externally.

We'd like to do two 2016 servers for more redundancy.  Is it possible to install the gateway/connection broker/web/session host roles on both servers and configure for high availability?  Otherwise could we do 2 session hosts and 1 server with the gateway/connection broker/web services on it.  A lot of the examples show 4,6 or more servers but they do not want to pay for that.  Just looking for some ideas here, thanks!



Search

Windows 2016 RDS Deployment

July 5, 2018, 12:21 am
$
0
0

Dear All,

We are planning to deploy Windows 2016 RDS infrastructure. does Windows 2016 RDS support windows 2008 RD sessions?

Help with CAPTCHA on Web RDS

July 10, 2018, 1:54 pm
$
0
0
I am trying to find a workaround for my company to secure our Web RDS gateway. Putting it on the VPN is the last option we want to take, and as such I have been looking into implementing CAPTCHA to stop brute force attacks from occuring. Any help on how to do this would be great! P.S: Multiple Factor Authentication is simply not an option. Otherwise we would go with this. 

RDS UPD - Found the problem but I do not know how to resolve it.

May 22, 2018, 11:49 pm
$
0
0

Hello,

I am using UPD through my RDS collection. The collection contains :
- 1 RDCB also doing RDWA and RDSH

- 1 other RDSH

I am regulary getting temporary profiles on my second RDSH, only when the credentials are not filled by the user (RemoteApp or saved credentials on the Remote Desktop App).
My collection is used for a RemoteApp.

I think the RDCB mounts the UPD for a very short time and when it redirects on the 2nd RDSH, the UPD has not enough time to be available if the credentials are filled immediatly...

The GPO "Always prompt for password" for RDS is not a good solution as the user has to click on details while the RemoteApp is loading and fills twice his credentials.

Can someone tell me how to resolve it ? Is there a way to delay redirection on the 2nd RDSH ? Or another solution I do not see ?

Thanks in advance,
Best Regards,
Thomas.

Drive Redirection for Remote Desktop but not RemoteApp possible?

July 16, 2018, 1:22 am
$
0
0

Hello,

I have a RDS 2016 farm. I want to allow drive redirection for full Remote Desktop but not when users launch any RemoteApps. Is this possible?

All I can see is the redirection options within the session collection properties, but this covers both Remote Desktop and RemoteApps. Can I apply a separate redirection policy that only affects RemoteApps?

Thanks,

Server 2012 RDS App Hangs During Logon - Single User

July 9, 2018, 4:11 am
$
0
0

Apologies in advance if this has been asked, but I've been spending the best part of 2 weeks trying to find an answer to this issue online.

I have a Windows Server 2012 R2 server running Remote Desktop Services in a Quick Start deployment for Session-based (as opposed to Virtual machine-based). This has been running perfectly fine for over a year without issues, but since a couple of weeks ago 1 user can't launch applications properly. When trying to log in it just sits loading the app. If I click Details, it displays the Windows Server 2012 R2 login process with the username and underneath it says "Preparing Windows" and the dotted circle has stopped moving.

When this first happened I restarted the server and removed the local profile but they were still unable to load the application. In the end I created them a new account and transferred their files across to their new profile. That was on 19/06/18 and today they have the exact same problem which I have resolved for them in the same way - creating yet another account for them and transferring their files.

I can't keep creating a new account for this user every 6-10 days or so. This issue has happened on 18/06, 29/06, 03/07 and today (09/07).

So far I have managed to rule out our AV products as tried to log on with them disabled which experienced the same issue.

I have also managed to rule out GPO settings on the user account (even though the same settings are applied to 200+ accounts which are working fine) by moving the user account in AD to a new OU and disabling inheritance before logging back on and getting the same issue.

I can't find anything in the Windows Event Logs and the server processes hundreds of connections without issues, nor can I find anything concrete online aside from issues when renaming admin accounts or removing temporary profiles (these are not even being created but are not forbidden from doing so) or dead forum posts where no-one has answered in over 3 years or try adding the site to Trusted Sites Zone. I even ran sfc /scannow on my server and it found nothing to fix.

I know the issue must be with the profile as I can load applications perfectly fine as my account from my PC but when I try as the user having issues I see the same as they do. Nothing changes on my PC between it loading fine for me and not for them so please don't say there is something on my PC or in my IE/computer policy setup.

The user is getting more and more frustrated about the issue and I am getting to my wits end trying to solve it. Any assistance would be heartily received.

2012 R2 RDS Temporary Profile issue

December 30, 2013, 12:40 pm
$
0
0

I have set up a standard 3 node 2012 R2 RDS for testing. All virtualized on VMware ESXi 5.0. I have a connection Broker, session host, and web access server. I have published several applications and I can access them without a problem. Here is my issue:

When I try to log on to my session host server either locally or thru RDP, I am always logged in with a Temporary profile. It does not mater what user account I use. Even logging on locally as the administrator I get a temporary profile.

All windows updates are installed and current.

I have removed the server from the domain, deleted the account, and rejoined it to the domain.

I have deleted all .bak registry entries from here:

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList

There is a hotfix here for a similar issue on 2012 but it does not apply to 2012 R2

The only event viewer errors are:

1515 (Windows has backed up this user profile. Windows will automatically try to use the backup profile the next time this user logs on.)

1511 (Windows cannot find the local profile and is logging you on with a temporary profile. Changes you make to this profile will be lost when you log off.)

Any suggestions to resolve would be greatly appreciated.

Russ

RDP service down and "access denied" when trying to restart

July 16, 2018, 10:46 am
$
0
0

I cannot connect to my PC via Remote Desktop. Seems the reason for this is that 3389 port is not listened by anyone (as reported by netstat -a -o), and the Remote Desktop Services is not started - which seems to be the problem. 

When I try to start the service, I get "Access denied" Error #5.

The Remote Desktop Service settings list NetworkService account as the one to be used to launch the service. I tried to "update" it in the settings (with no password entered) - however the result is the same.

Please let me know what is the correct way to setup the RemoteDesktop Services service wrt credentials used by it, or what could be other issues with this error.

Thank you!

Search

Outlook 2013 on RDS server sends Private Key prompt to the console instead of the users session

July 16, 2018, 12:37 pm
$
0
0

Hello,

I have a Win2k12R2 single server RDS environment with Office 2013 Pro installed.

All works fine except when a user is trying to open an email that was sent encrypted. On a local version of
outlook 2013 this opens fine, however in the RDS environment when the user clicks on the email, it doesn't open. No errors and a blank preview pane.

But...I noticed that on the console of the RDS server, a prompt is displayed when the users selects the encrypted email, which says:
"Windows Security

Credential Required

Do you want to allow the app to access your private key?"

There is no app listed. Just a blank area with the lock icon (see attachments).

If we click Allow, the users email in his RDS session opens fine and will continue to do so until they logoff of the
RDS server. This is bizarre behavior as an application in the users session is causing a prompt on the console of the RDS server.

Any help would be greatly appreciated.

Screen shot of users Outlook showing selected encrypted email which does not open or display anything in the preview pane:

Screen shot of RDS server console of popup which appears when the user clicks on the encrypted email above.

Screen shot of users Outlook now showing the encrypted email, AFTER clicking allow on the RDS server console:

Launching an application in an RDS session automatically

July 16, 2018, 2:55 pm
$
0
0

I want to be able to launch an application inside an RDS session when the session launches while still being able to see the desktop. Is this possible?

I edited the remote desktop icon I downloaded from the Work Resources\RemoteApp and Desktops in RDWeb so only a desktop would show:

remoteapplicationmode:i:1 to i:0
...
alternate shell:s:||epds
remoteapplicationprogram:s:||epds
...
remoteapplicationname:s:EPDS

and removed EPDS from the last three

I would rather be able to launch the EPDS application and be able to expose the desktop simultaneously. Is this possible

If I have to reconfigure the Remote Desktop Connection icon, what are the steps to do this?

2012 RDP / RDS Remote Desktop Terminal Server incompatible with Windows 2016 Domain Controllers? Access Denied

July 7, 2018, 11:11 pm
$
0
0

So we have a few 2012 R2 Terminal Servers at my company that were working fine until we started the process of replacing our Domain Controllers with new Windows 2016 Servers.

Since then our users are getting intermittent "Access Denied" errors when they try to RDP to these terminal servers.

Generally the "Access Denied" error occurs when a terminal servers starts to use one of the newly added 2016 domain controllers. We can workaround the problem by sending an command telling the terminal server to use one of the older 2012 R2 domain controllers instead. Then things work again.

So the question:

Is there a misconfiguration with the new 2016 domain controllers or can an adjustment be made with the 2012 Terminal Servers?

Is the problem that Windows 2016 Domain Controllers are not compatible with 2012 R2 Remote Desktop Services servers?

We are having problems finding documentation on this.

What we do know is that if we decide to start upgrading to new 2016 Terminal Servers we will have to purchase new 2016 RDS Cals (not sure if we are budgeted for that...)

For those interested, you can find out the domain controller you are using by running the following elevated PowerShell command (this assumes the command is run remotely as you might be locked out due to the RDP access denied error):

nltest /Server:<your-terminal-server> /DSGETDC:<ad domain>

to specify the domain controller you want to be on (in our case we want to switch to back to a 2012 R2 domain controller), the command is:

nltest /Server:<your-terminal-server> /SC_RESET:<ad domain>\<specific domain controller>

Only Domain Admins can access RDS 2016 webfeed.

February 7, 2018, 12:29 pm
$
0
0
I have an RDS 2016 collection setup on a single VM with some AD tools published out. All authorized users can access the tools through the web interface. However, only accounts that are Domain Admins can access the /feed/webfeed url using the Mac client or the Remote Desktop app.

Black Screen on all new Connections, SessionHost has to be rebooted

June 21, 2017, 2:31 am
$
0
0

hi,

we're suffering from session hosts that produce black screen errors in a RDS 2016 farm.

already connected users can mostly work, all new connections end up with a black screen.

to resolve the error the server has to be restarted.

i can say that

- this error appears after error 1534 (Fehler bei der Profilbenachrichtigung des Ereignisses Delete für Komponente {709E2729-F883-441e-A877-ED3CEFC975E6}. Fehlercode: Das System kann die angegebene Datei nicht finden.) starts appearing in the eventviewer.

- upon checking the registry for this SID i end up at "ProfileNotifyHandler Class app id {E10F6C3A-F1AE-4adc-AA9D-2FE65525666E} inprocserver32, C:\Windows\System32\gameux.dll".

- starting explorer.exe per taskmgr does not open an actual explorer window although the process appears in taskmgr

- tskmgr, eventvwr, cmd can be started without problems

- affected users appear as active in RDS management

- no third party security software is installed

- farm is fully patched

- HKLM\Software\Microsoft\WindowsNT\CurrentVersion\ProfileGUID and ProfileList are ok (no old or .bak entries)

looking forward on how to resolve this without  rebooting the server or a permanent fix

thank you

best regards


Viewing all 26837 articles
Browse latest View live
Search
<script src="https://jsc.adskeeper.com/r/s/rssing.com.1596347.js" async> </script>