Hi.

When launching published applications, this undefined process sometimes goes to the foreground.

The result is that you can not interact with the newly started application before you:
a) Use the mouse to click in the newly started application window
b) Alt+Tab back to the newly started application window

In either case, the undefined process dissapears and you can go back to work as normal.

RDSH = Server2016
Client = Windows 10

.\ Lars Olsen

Hello there!

Tha last couple of days I created a Lab-Environment with 1 DC, a Remotemanger with Gateway, Licencing and Broker Role installed and a Session Host. After a little Troubleshooting everything worked great.

After that I created a second DC and a Subdomain and a second SessionHost as well. The Second SessionHost (SessionHost2) joined the Subdomain. I managed to add the SessionHost2 to the Remotemanger in the rootdomain and installed the Sessionhost Role.

At that point, I'm pretty much stuck. My users from the sub domain can connect via Web Client without any problems, but I can't open any apps from my collection. I get this error pretty much constantly:

2019-02-08T09:40:41.703Z Connection(ERR): 
The connection generated an internal exception with disconnect code=ConnectionBroken(8), extended code=<null>, reason=WebSocket closed with code: 1006 reason: 
 Thrown in thread 396952 at:
    websockettransport.cpp(330)
Call Stack:
        at Rjb
        at Ojb
        at rp
        at Ugd

Now I tried pretty much everything I could think of. This all happens in the same Subnet with Windows Firewalls turned off.

Is this some kind of missing priviliges of the Subdomain-Users to authorize against the remotemanger in the root domain? Or is there a general Problem with a remotemanger in another domain as the session host?

For explanation: Iur company wants to offer hosted services in the future and wants to make sure, that different customers absolutely can't establish any connection to another company's hosts. If there is another way to acomplish that I would be very happy.

Thank you very much for your interest and input !

Hi,

We have Windows server 2012. When I remote desktop to my server connected PC (happens both from another pc on our network and from home), the connection is fine for around 30 seconds then freezes. 

I couldn't see any error logs relating to this on the server, where should I look? Any suggestions to help fix this. All was working fine until a month or so ago.

Thanks, Tim

Hi, I'm wondering if it's possible in RDS on Windows Server 2012 or 2016 to make some sort of reservation on a session for a specific user? A customer asks this to be sure that an operations user always can connect to a session on a RDS server in case the connection was lost somehow.

I don't have very much in-depth RDS knowledge, until now I only worked on basic RDS configurations, so that's the reason I post this question here, hoping that someone can explain the possibilities to me. Many thanks in advance!

I am getting the most annoying error with my RDS 2012 Setup.

certificate mismatch and double password prompts when trying to connect to my RDS setup.

I have tried all that's out there and have got no positive results.

All roles are on identical on 2 servers. the RDCB is in HA Mode.

I keep getting the Certificate mismatch error.

Already have a public or external SAN certificate assigned to all roles.

Ran the powershell and wmi query to ensure the correct url is used when connected to gateway but I still get the double prompt when launching the remoteapps.

I even tried the approach by cleaning IE's history, data to get the RDPSHplugin and its not helped in my case.

All servers run 2012.

I need some urgent assistance, please and thank you

I have also checked and rebooted the RDS environment multiple times.

All certs show valid. the mismatch also goes to another cert in my environment which is utilized by OWA.

Please help me.

Hi all,

Currently we have 1 RD Web Server, due to the fact that we are testing new MFA software we have to install this on the RD Web Server.

Does anyone know if it is possible to have 2 RD Web Servers with one running on a different URL?

Hello,

We have developed a .net program that is usually usable within a TS environment.
Many of our customers with a single TS 2012R2 are using this program with multiple accounts at once with no problem.

Now we have one customer with a couple of dozen Terminal Servers with the following problem:

As long as two separate accounts are logged on to two different Terminal Servers, each of the accounts can start and use the program without any problem.

As soon as both accounts are logged on to the same Terminal Server, only the account, who opened the program first, can use the program; When the second account tries to start the program, nothing happens.

Unfortunately I don't know much more.

I did some tests already and was able to reproduce the problem using a Server 2012 (non R2 and without the TS Role) and two RDP sessions.

But in a Server 2012R2 with the TS Role installed I could not find any problem with multiple users using the program at the same time.

Does anyone have a suggestion?

thanks in advance

iwdniw

Hi All,

I had a new deployment for RDS environment, a new Windows 2016 RDS license server configured for per user license. The RDS license server was not activated until this week, and the RDSH, which run Citrix XenApp , no longer accept any connection. We tried just regular RDP to the console and always got the following error, on the event log of the RDSH.

But when run the RD Licensing Diagnoser on the RDSH and everything is good, see the following

I could not find any troubleshooting document for Windows server 2016 all I found was for Windows 2008 R2/2003/2000 which was outdated.

Thanks in advance for your help.

Altan

I've been having this error for while now, I connect to one of the servers and it starts doing its thing apparently going through every step just fine but then I get this Access is denied message:

Normally I wouldn't bother trying to fix it because I don't have the time nor the resources to throw at it, I just snapshot the machine back to a working state, files will are centralized in non-Microsoft redundant servers, they are safe. However, when I tried snapshotting back this VM way back to the beginning of the month the error was still there. I figured, it's a domain issue then, so I took it out of the domain and it still wouldn't let me in.

I connected to the machine's console (via Fusion, it's hosted on ESXi) and checked the log.

There was nothing descriptive except for a "reason code 12" which I knew meant basically nothing because I had looked for it before when this started happening, so I went deeper since my snapshot safety is over I need to know how's it fixed.

Most of the RDS related branches in the tree were empty but in Microsoft/Windows/RemoteDesktopServices-RdpCoreTS/Operational I found some data, actually a ton, 50+ events per connection attemp. They all occur in the same second. I started following the messages, the one where everything fails is:

Disconnect trace:CUMRDPConnection Disconnect trace:'calling spGfxPlugin->PreDisconnect()' in CUMRDPConnection::PreDisconnect at 4477 err=[0xc], Error code:0xC

Here's a table of the logs I made copying them one by one, I tried adding it here but exceeded the message length: http://fetch.vitanetworks.link/stationary/technet/eventlogerror.pdf it's a PDF, so it should show right in the browser.

Using the system with another account reveals the user that failed to log in, tho whom access was denied, is somehowstill logged in. I was informed this when I tried to restart the computer and the warning I would kick other users out showed up. No configuration has been changed on the server, on DCs/GPOs, on the client, nor on the hypervisor. And of course I have no idea what does that graphics thing mean.

The other directory with events was on Microsoft/Windows/RemoteDesktopServices-SessionServices/Operational with a way more decent 2 events per connection attempts:

1    Error        The RDP display control module failed to change the session monitor layout. The operation failed with error code 0xFFFFFFFF.
2    Information    The RDP display control module successfully changed the session monitor layout. New layout has 1 monitors.

And that's all the info I have. Could you point me where to go next to get more information or how to proceed from here? I don't want to reinstall Windows, I put way too much time on these machines. :/

Thanks for your help!

I bet you think this post is about you. Don't you…don't you. ♪

Hello,

I'm having the RemoteApp spinning issue for a while. I couldn't get it fixed. wanted to check again by providing RemoteApp rdg file to see if everything looks fine.

the following brk01.rds.local is the local broker server name 

broker.rds.com is the CN name and will not resolve from outside. but it will resolve internally

gt.rds.com is the gateway, license and web server will resolvable internally and externally.

I wanted to check with you that is the below rdg looks correct or not?

Shekar-Technet

Hi Team,

I unable to delete GracePeriod (HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Terminal Server\RCM\GracePeriod)in registry after expired terminal server.

I checked permissions in that GracePeriod option , it doesn't  have permission and i tried to give the permission but no luck, error getting like "unable to give the permission".

I have tried with different logins (Local Administrator,Domain Administrator and Domain admin account)

Please help on this , how to reset GracePeriod to 120 days.

Best Regards,

Bhaskar B

Bhaskar B Exchange Administrator

Hello,

I'm attempting to setup an RemoteApp environment on AWS using EC2 instances for the Server Roles and an AWS RDS SQL Instance for my Connection Broker HA SQL Database. 

I know this kind of setup works for Azure SQL Databases, as the step by step walkthrough here shows using the managed SQL Instances in Azure to hold the RD Connection Broker DB:

https://blogs.technet.microsoft.com/hybridcloudbp/2016/11/15/new-rds-capabilities-in-windows-server-2016-for-service-providers/

In there it shows creating the SQL DB and using a Database User account to authenticate the connection brokers to the SQL DB rather than the usual Domain Group containing the connection broker computer accounts. The link doesn't go into much detail about the permissions needed in the database or even show the complete connection string used.

When I try the same setup in AWS with their RDS SQL Instances I have had quite a few challenges getting it working. 

List of issues I encountered:

- Since the required permissions on the SQL Database are not discussed in the walk through I had to guess what permissions to grant. After much trial and error we determined we have to grant our SQL Account SetupAdmin permissions, create the DB manually, then grant the SQL user DB Owner rights on the database

- Links on the web discuss using both the SQL ODBC 13 driver as well as the SQL Native Client 11, I tried using both with the same results.

- During the install you select the shared database option which requires a connection string to login as the SQL user. To validate the connection string is working we create a UDL file, set the provider to ODBC for SQL and enter the string in the Connection String box. We only used strings that were able to login to the AWS SQL Instance from BOTH Connection Broker servers.

Here's where it gets weird...

I'm able to add the connection broker HA configuration to the first connection broker with no issues. This works in both the Server Manager GUI as well as when using the New-RDSessionDeployment cmdlet. 

However, when you go to add additional connection brokers you get the following error message: 

This issue occurs no matter which of my two connection broker servers is added to the deployment first. The first broker added to the deployment with HA works, the second is unable to be added to the deployment

These servers have no other roles installed on them and are wholly dedicated to being connection brokers.

I have verified the SQL Port and all other ports are open between the Connection Brokers and the SQL Instance

I have verified the connection string works to connect to SQL from both connection brokers when using a UDL file to test the connection.

During an attempt to add the second connection broker I watched the SQL Logs and saw no failed logins or anything else of note

A SQL trace shows no TSQL is being sent to the RDSFarm database during the attempt to add a connection broker.

I put Wireshark on the second connection broker and can see NO connection attempt being made from that connection broker to SQL. This leads me to believe the issue is not related to my connection string, networking or SQL permissions.

I have redeployed this RDS Deployment using the dedicated SQL Server option pointed to an EC2 SQL server and with no changes to the connection brokers I'm able to add additional Connection Brokers without issues. 

The best unsubstantiated guess I have is it's trying to use the Dedicated SQL Server option due to it asking about the computer accounts being a member of the RDS Management local group on the SQL Server. That is the only suggestion in the error I can't do on the AWS SQL Instance since we don't have access to the underlying OS, but I would think the same is true for Azure SQL. 

What I don't understand is how it could be failing to login to SQL with the connection string when everything seems to indicate no connection attempts are being made!

I've run out of ideas at this point and I'm hoping someone can get me back on the right track.

I have done a bunch of searching on this and havn't found an answer to my exact problem.

Running Windows 7 Professional, Copy and Paste works fine, until I open a remote desktop to one certain VM (lets call it VM1), all other RDP sessions work fine.

If I close the remote desktop to VM1, my copy and paste starts working on my desktop.  If I open an RDP to another VM (lets call it VM2) my copy and paste works fine.

I have run sfc /scannow on my desktop but nothing has shown up.

I am confused as to why this one RDP causes my copy and paste to stop working.

Hello,

Recently my laptop was upgraded to Windows 10. I work in an enterprise consulting company and when connecting to a Windows Server 2016 of one of our customers via RDP, I am not able to copy/paste between my laptop and the server in the RDP session.

In my RDP connection I have activated "Printers" and "Clipboard" to be used in the remote session.

On the server side the customers IT team tried to fix the copy paste problem but was not able to. They mentioned that on all Windows 2016 server Copy/Paste is not working properly via RDP sessions.

I tried to find a solution online but was unsuccessful.

PS: On the Windows 2016 Server the fDisableClip Registry entry is set to 0. That is correct, afaik.

PPS: Also since I have Windows 10, the passwords are not being saved in the RDP connections, I have to enter them every time I access any host via RDP.

Hi All,

I have this issue.

I am using a Windows server 2008 SP2 machine from which i am trying to remote desktop a Windows server 2012 R2 machine.

I am able to RDP the machine but i am unable to copy & paste the files as in the below screenshot.

When i paste the file the paste option is grayed out.

When i initiate the Remote desktop connection i checked all the options in the Resources TAB:

Also the connection quality is set to LAN 10Mbps or Higher.

I also tried killing the rdpclip process in the destination server which i am taking the remote desktop connection and restarted the process but still no luck.

Can any one tell me how do i fix the issue.

Gautam.75801

Hello everyone,

We are having the "can't connect, RD Gateway server temporarily unavailable" on RDWeb, only when accessed externally. Internally, the same external URL works. Server 2016.

This feature was working externally some time ago and we are not sure of what exactly broke it.

BPA's only warning is:

"The RD Gateway server SSL certificate must be configured with a valid certificate subject name

Severity: Warning

Problem:
The Remote Desktop Gateway (RD Gateway) server Secure Sockets Layer (SSL) certificate may not have a valid certificate subject name.

Impact:
If the RD Gateway server is configured to use an SSL certificate with a certificate subject name that is not valid, users cannot connect to internal network resources (computers) through the RD Gateway server.

Resolution
Use the RD Gateway Manager tool to select a valid SSL certificate for the RD Gateway server to use."

We have tried other certificates and the result is the same. All other certificates are also ok, they are valid and were made from Let's Encrypt.

Any help will be highly appreciated!

How to enable User Input Delay per Process or User Input Delay per Session.in windows 2012 server.

After following this link : https://docs.microsoft.com/en-us/windows-server/remote/remote-desktop-services/rds-rdsh-performance-counters#download-windows-server-insider-software

Still could not find that option.

Hi,

We are facing an issue when enabling RDS services on a new Windows 2016 Standard Server as seen below.

Tried removing the role and then doing the installation again after restarts and still the same error.

Enabled TLS 1.0 which i saw in another newsgroup was causing this error but still didn't solve for me.

Appreciate, if someone can help with this issue.

Regards

Rajesh CI