I've disabled IE Enhanced Security for Users and Admins from the Server console, but when a user logs in the IE settings are set at the highest level and can't be changed.
I've tried to enable and disable the settings, but not luck.
↧
RDS 2016 how to disable Internet Explorer Internet Explorer Enhanced Security
↧
Audio e video playback in RDS
I was trying to improve video content when accessed in rdp session. As first step, I found that if I enable "Play on this computer" under settings of the mstsc client, and then I play a video on the session host, the video is much more flowing
than with this setting disabled. So, I configured a GPO to enable this setting and verified with rsop that has been applied. Then I connected with mstsc.exe with the setting disabled on my client and the video in rdp is still bad, so it seems that the setting
is really enabled when ticked on mstsc.exe?
↧
↧
RDS Connection broker error... has to be the same OS version as the active RD Connection Broker server
I am setting up an RDS 2016 Farm in Azure. I have built many farms, but this is my first in Azure.
When adding a 2nd connection broker to the farm I am getting an error stating "The server RDW01.domain.local has to be the same OS version as the active RD Connection Broker server rdscb.domain.local".
The servers are the same version and patch level.
What I think is happening is that the system is not able to validate the current brokers version using the HA hostname rdscb.domain.local. If you look at the screenshot it shows an access is denied error when trying to retrieve the OS version.
I was able to run the OS version query commands directly against rdw01.domain.local but not via the HA hostname rdscb.domain.local
I already tried re-deploying the farm from new server builds with the same results.
I also tried manually adding the CB role to the 2nd server like the van-gelderen blog suggested.
Anyone have any ideas on how to bypass this error?
I'd post a screenshot if I could but, the system is not allowing me.
↧
Windows Servr 2016 RDSH - Firewall rules created at every login.
Hi,
I have a setup with the following servers running Windows Server 2016
1x RDGW, RDCB, RDWA, RDLicensing.
5x RDSH
Im using UPD on the collection.
I have noticed very long login times, after policys etc are shown on screen it sits at a black screen for between 20sec and sometimes up to 5min.
I have also noticed that the svchost.exe that controls the Windows Firewall is using 25% to 50% when a user logs in and using around 1200Mb memory.
After I found this I checked the Windows Firewall with Advanced Security and found thousands of Cortana, Work or school account, Your account, Contact Support rules.
I found a script in this thread that could delete the rules https://social.technet.microsoft.com/Forums/windows/en-US/9aad7675-d1ba-4900-9d85-0cd117f5514f/new-firewall-rules-created-for-each-user?forum=win10itprosetup
This made the CPU usage and memory usage go down to normal levels, but after every login a user does it builds up the list of rules again. With many users logging in to the system the rules build up very fast and the login times gets high and every server gets slow.
Example on our RDSH01 server that have been running in production since 2017-04-13 the script found and deleted 66153 rules that it found with "$Rules = Get-NetFirewallRule -All | Where-Object {$profiles.sid -notcontains $_.owner -and $_.owner }"
The script also tryed to get rules with this command "$rules2 = Get-NetFirewallRule -All -PolicyStore ConfigurableServiceStore | Where-Object { $profiles.sid -notcontains $_.owner -and $_.owner }" but fails with an "not enough space error"
The script removes the rules from here with the content of $rules "HKLM:\System\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules"
and $rules2 was meant to clean up at "HKLM:\System\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\RestrictedServices\Configurable\System"
but doesnt do anything because of the error on the Get-command. If I try to access it with regedit it stops to respond, guessing there are too many items in that container for it to handle.
Anyone know a solution for this problem?
Regards Fredrik
↧
Server 2016 RDS Start Menu and Taskbar Issues
We're running a single RDS setup with Windows Server 2016 Standard and about 2 weeks back we started to experience Windows Start Menu and Taskbar issues where these functions would suddenly stop working for all of the RDS users. We are not using profile disks and each user connects to the RDS via our gateway server and their profile is stored locally on the RDS server. No desktop or Start Menu redirection is setup. We have 25 RDS CALs and there's normally about 20 users logged into the RDS server. The server is a physical server running a 12core Intel CPU with 32Gb of RAM and an NVME SSD Intel disk.
The desktop apps like Microsoft Office will continue to function fine but if you minimize the running apps, the user can not click on the minimized apps as the Taskbar doesn't respond along with the Start Menu. The only thing that currently works is to logout the user session using Task Manager or to reboot the server. When the user reconnects and gets a new session, the Start Menu and Taskbar will work for several hours before it goes back to the locked state.
I have read quite a few posts and I have re-installed the Windows apps with the following PS script:
Get-AppXPackage -AllUsers | Foreach {Add-AppxPackage -DisableDevelopmentMode -Register “$($_.InstallLocation)\AppXManifest.xml”}
I have run a full sfc /scannow and checked the health of the windows image. These all complete fine without issue.
Tonight I have found some older posts from 2017 about Server 2016 RDS black screens that are caused by duplicate Windows firewall rules getting created for each user every time they login. While we don't have the black screen issue, I'm wondering if our issues with the Start Menu and Taskbar could be related to this same duplicate firewall rules for each user. When I checkedHKLM\SYSTEM\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\RestrictedServices\Configurable\System on our RDS, I am seeing thousands of entries.
Does anyone know if these duplicate firewall rules can cause the Start Menu and Taskbar issues? If so, what's the proper way to delete them?
Thanks for any input.
Ken
↧
↧
Internet Explorer 11 on Windows Server 2016 RDS
Hey
I have this strange issue on our RDS farm. (Server 2016 + User Profile Disk (Store all user settings...))
1. logon: (Server 1 farm)
Open Internet Explorer : https://fqdn.domain.com/adfs/ls/IdpInitiatedSignon.aspx (my local ADFS)
It works...
2. logon: (Server 1 farm)
Open Internet Explorer : https://fqdn.domain.com/adfs/ls/IdpInitiatedSignon.aspx (my local ADFS)
It works...
3. logon: (Server 2 farm)
Open Internet Explorer : https://fqdn.domain.com/adfs/ls/IdpInitiatedSignon.aspx (my local ADFS)
It shows "Page Not found"
I'm only able to make work by deleting the cookies.
Anyone?
Mike
↧
Windows 2016 RDS - Redirected Start Menu problems
We have a 3 node Windows 2016 RDSH farm with UPD and user redirected folders enabled. After much trial and error we also managed to customise the start menu, exported it to an .xml and redirect all users start menu to this file. This seemed to workfor a few weeks but we are now seeing issues with the pinned tiles disappearing. 9/10 times the pinned tiles do not show but strangley on the odd occasion they do display correctly. There is no obvious pattern to this. It can be for any user on any RDSH server. We have tried deleting a users UPD and redirected appdata but the issue still occurs. We cannot see any errors within the RDSH event logs for this either.
We've seen and tried several methods for configuring start menus for Win10/Win2016. We would like to define a manditory start menu for all users. Is the a simple, tried and tested way of doing this in Win2016 with UPD and user redirected folders enabled?
↧
RDS Issue - The User Profile Service service failed the sign-in.
2 Windows Server 2012 Standard domain controllers
2 RDS Servers running Windows Server 2012 R2
We also have 2 Broker Servers and 2 Gateway Servers
From time to time we are running into an issue where the AD account logs in to Windows fine...but when it comes to our RDS login screen...some user accounts have issue where they login...see the published apps...click on one....the connection begins to handshake...then
after a few moments we get:
The User Profile Service service failed the sign-in.
User profile cannot be loaded
Can anyone help me to troubleshoot, please?
I can give any more info that is required. There is a file server where their home directories are stored and on the same server...there are roaming profile folders
The RDS servers load balance...sometimes a user would go on to one...then another session they might be on another.
On the users directory of the RDS servers...the particular user account that is getting this issue...we don't see a user account folder for them...it doesn't get created...it just gets...failed the sign-in?
↧
Remote Desktop ActiveX Control shadow sesion
Hello,
mstsc provides an option to connect to an existing session on remote machine. Does the Remote Desktop ActiveX Control also support this?
Thanks in Advance.
Best,
Sumit
↧
↧
RDP – Licensing
Hi all,
So we are running an RDS environment for our VMWare Horizon, have the CALS etc.
We now need a server that will be confined to a portion of the network, once on this server we can then access a bunch of equipment in a secure area. This server will need to be able to have 3-4 users logged on simultaneously, which regular RDP doesn’t handle (max of 2). Is there a way to tap into the CALS on the RDS server for a couple of licenses?
TIA
↧
Need help! I have to move a small RDS server from Win2008R2 to Win2016 this weekend! Easiest way?
i need to move Remote Desktop Services off of Windows Server 2008R2 and onto Windows Server 2016 over the weekend. It's a very basic server. It has just the "Remote Desktop Services" role installed, and the "Remote Desktop Session
Host" and "Remote Desktop Licensing" role services installed. Nothing else is installed related to RDS. The server does exactly one thing. It lets about 10 users log in with remote desktop
connection from their windows desktop and get provided a "remote desktop" that has exactly ONE application on the desktop. They run that ONE application and then log off. While the server is a member of our Active Director domain, the
users are local users (local to the server). I already have built the new Win2016 server and have installed Remote Desktop Services (with only Remote Desktop Licensing and Remote Desktop Session Host installed). I havent done anything else beyond
that. I suspect i will have to do at least a) migrate the user accounts (I dont care if i lose any user profiles as they shouldnt have anything in them of value); b) migrate the licenses. Can anyone help me get started? I have almost zero RDS experience!
:|
↧
unable to login and receive error “The User Profile Service service failed the sign-in. User profile cannot be loaded.”
Hi,
We have 7 RDS servers in the farm and single RD Conenction broker. We use USER PROFILE DISK and the UPD is configured via the file servers. None of the users are unable to login and receive error “The User Profile Service service failed the sign-in. User profile cannot be loaded.”all users expreicne the same issue
Also tried to login to the servers using the mstsc /admin or console issue and it is the same issue.Unable to open remote commd prompt, remote registry and eventvwr as well. Users are currently logged in and if they log out they cannot connect getting the same issue.
Last night we made te following GPO changes to fix the issues as users logged with Temporary profile.
Edit GPO “Terminal Server GPO Computer – RDS Session Host Settings” and apply the following settings:
Configuration\Policies\Administrative Templates\System\ Logon - "Always wait the network at computer start up and logon" -> Enabled
Configuration\Policies\Administrative Templates\Windows Components/Remote Desktop Services\ Remote Desktop Session Host\RDSH\Connections "Automatic reconnection" -> Disabled
Configuration\Policies\Administrative Templates\Windows Components/Remote Desktop Services\ Remote Desktop Session Host\RDSH\Connections "Configure keep-alive connection interval" -> Disabled
Configuration\Policies\Administrative Templates\Windows Components/Remote Desktop Services\ Remote Desktop Session Host\RDSH\Connections "Restrict RDS users to a single RDS Session" -> Enabled
Configuration\Policies\Administrative Templates\Windows Components/Remote Desktop Services\ Remote Desktop Session Host\RDSH\Temporary Folders "Do not delete temp folders upon exit" -> Disabled.
Post the GPO changes everything was working fine and after 7-8 users started reporting this issue.
Please advise
We have 7 RDS servers in the farm and single RD Conenction broker. We use USER PROFILE DISK and the UPD is configured via the file servers. None of the users are unable to login and receive error “The User Profile Service service failed the sign-in. User profile cannot be loaded.”all users expreicne the same issue
Also tried to login to the servers using the mstsc /admin or console issue and it is the same issue.Unable to open remote commd prompt, remote registry and eventvwr as well. Users are currently logged in and if they log out they cannot connect getting the same issue.
Last night we made te following GPO changes to fix the issues as users logged with Temporary profile.
Edit GPO “Terminal Server GPO Computer – RDS Session Host Settings” and apply the following settings:
Configuration\Policies\Administrative Templates\System\ Logon - "Always wait the network at computer start up and logon" -> Enabled
Configuration\Policies\Administrative Templates\Windows Components/Remote Desktop Services\ Remote Desktop Session Host\RDSH\Connections "Automatic reconnection" -> Disabled
Configuration\Policies\Administrative Templates\Windows Components/Remote Desktop Services\ Remote Desktop Session Host\RDSH\Connections "Configure keep-alive connection interval" -> Disabled
Configuration\Policies\Administrative Templates\Windows Components/Remote Desktop Services\ Remote Desktop Session Host\RDSH\Connections "Restrict RDS users to a single RDS Session" -> Enabled
Configuration\Policies\Administrative Templates\Windows Components/Remote Desktop Services\ Remote Desktop Session Host\RDSH\Temporary Folders "Do not delete temp folders upon exit" -> Disabled.
Post the GPO changes everything was working fine and after 7-8 users started reporting this issue.
Please advise
↧
RDWEB Clients on Server 2012 R2 cant print unless you manually log them out of the Collection in Remote Desktop Services and then rename the local printer
When users attempt to print to their local printer via RDWEB, nothing prints out. If you log into the Server, manually log them off in the Remote Desktop Services Collection portal, and then rename their local printer to a different name, they can print again. However, this cycle repeats and I have to keep renaming the local printers in order for them to print. Anyone have any clue as to how to remedy this?
Frustrated in NY
↧
↧
Windows 2016 - HP Shared printer name displays incorrectly in Windows (Model / Driver is displayed instead of share name)
Recently I'm facing a problem with a shared HP printer. Once connected, the model (driver) is displayed instead of not the share name Other printers are OK, for now.
This should be fixed since 2012...: https://support.microsoft.com/en-us/help/2965350/shared-printer-name-displays-incorrectly-in-windows
A regression of recent patchs ?
(The print server runs W2008 R2)
↧
Configuring remote desktop external connector Windows server 2019
Is there a document describing how the RDS external connector can be activated under Windows server 2019?
There is a document describing the activation under server 2008: https://support.microsoft.com/en-us/help/887432/how-to-install-and-to-configure-the-external-connector-for-a-terminal
The same settings under 2019 gives in de RDS session a popup with the text: There is a problem with your Remote Desktop license, and your session will be disconnected in 60 minutes.
↧
rds 2016 end disconnected sessions
hello, i have setup rds 2016 server and was noticing that some of the user sessions are stuck in "disconnected" status for a long time. where do i get to set this policy to end these type of sessions after 24 hours?
↧
can't able to reset the user name password for the Active directory users using RD web console session
I have enabled the RD web and console session in Active Directory and tried to reset user password using web session, however i am getting the following error
Your new password does not meet the length, complexity, or history requirements of your domain. Try choosing a different new password.
I made changes in the password policy and updated the group policy but the still the issue is persisting. When I tried to change the password after disabling/not defined state of the password policy the issue occurring again.
When we set the user must change the password during first log on, we could change the password without any hurdles.
↧
↧
How to setup HDD's for RDS Host computer
I've got a server that I need to setup for RDS. I have 8x 2.5" bays and I bought 8 1.2 TB 10k rpm 12gb sas drives to use. The raid card is a Dell H730 with 1GB cache.
I am planning on setting up the following in VM's on this server
-RDS Broker with license role
-RDS Host
What would be the best configuration for the hard drives? I was thinking of doing 2 drives in raid 1 for the host and then 6 drives in raid 10 for the VM's to run on. Or would I be better running all 8 drives in raid 10?
Thank you
↧
Task Bar Freezes on 2016 RDS Servers
Hello,
We have 8 RDS, One Broker, Windows 2016 Std., on a Farm.
We have GPO's Policies on those servers.
From Time to Time, some users are experiencing task bar freezing.
The desktop icons are working, but the task bar is freezing and you can not do nothing on the Task Bar.
The only way is to log off and log in again.
It there a solution ?
With Best Regards,
Haim
↧
Windows Server RDS Freezing with Flickering "Not Responding" in the top bar
We have around 15~ Remote Desktop Session Host servers of varying versions (2012 R2, 2016 and 2019) which are experiencing freezing and flickering issues with "Not Responding" appearing in the top bar and the program being unresponsive when switching between tabs. Other symptoms include screen flickering and, when in Task Manager, the tabs sometimes disappear until you roll the mouse over them. These issues started appearing after the weekend of 23rd March 2019 (23/03/19).
I have been scouring forums looking for other people with the same issue but can't find anyone with similar symptoms except someone called Chris_UKDE and his questions haven't been answered either.
At first, we thought that this was caused by a Windows Update but we have been through all of the updates and cannot find any consistent update or lack of update across the servers that seems to have caused the problem. We thought it might have been KB4489889 but after uninstalling this, the problem still remains.
We have opened a case with Microsoft and we are waiting for them to analyse some logs that they gathered on Friday and they have advised various registry fixes and disabling hardware acceleration but none of these have worked. I am taking to the forums to see if anyone else is a. having any luck with their diagnosis and b. having these issues at all(!) and c. if we manage to fix it, to share it with you so you don't have to experience the same pain we have.
The issue does NOT appear to happen in Safe Mode BUT when running a Selective Startup from MSConfig, these issues still happen, eluding that it's still a Microsoft element causing the problem. We are mainly seeing the problems in Microsoft Office programs but we do get a few issues in other Microsoft programs, such as Internet Explorer/Task Manager and also Chrome.
Most of the servers are running on VMWare ESXi 6.0-6.5 but we do have one native Windows Server with the problem. We have tried updating/uninstalling VMWare tools but this does not seem to fix anything. We also thought this might have been related to the video driver, so we booted the server with "Base Video" options in MSConfig but this still didn't fix the problems.
I am hoping that there are others in the same position as me, looking for an answer but having no forum to discuss it on, hence this post. Any advice greatly appreciated.
Lewis
↧