Quantcast
Channel: Remote Desktop Services (Terminal Services) Forum
Viewing all 27656 articles
Browse latest View live

Users CAL Pool for RDS

May 6, 2019, 7:12 am
$
0
0
Hello,
I have a SPLA contract with RDS licenses per user. I have to declare 1 license each time a user logs on to the service.
I would like to know if I can do the following: declare a license pool for a specific AD group. For example: 10 users in an AD group with the right to 4 simultaneous licenses. I can create my 10 users, but declare a maximum of 4 licenses actually used per month.

Is it possible to do this via the RDS license manager and AD groups?

Thank you
Search

RDSH Farm on Windows Server 2019 but Windows 7 users are not able to connect to RDSH 2019 farm

May 3, 2019, 3:36 am
$
0
0

Hello Friends, 

i have deployed new RDSH 2019 farm with 2019 RD Web , Gateway & Broker server farm in my local infrastructure. we have couple of user who are still on Windows 7 SP1, but when they try to access  new 2019 RDSH farm they are not able to access with warning as below.

[Window Title]
Remote Desktop Connection

[Content]
Your computer can't connect to the remote computer because an error occurred on the remote computer that you want to connect to. Contact your network administrator for assistance.

[OK] [Help]

my Windwos 7 computer is fully updated and  i have also applied  RDS version 8.1 to my windows 7 computer. still no luck, let me know if any one else is facing simile issue.  

Thank you, 

@mar




RemoteApp connection window - Cancel button not visible

May 9, 2019, 8:16 am
$
0
0

Hi, on some clients when connecting to a remoteapp the abort button is not displayed correctly. 

On one of the clients where this problem is occurring is Windows 10 Enterprise Version 1809 (Build 17763.437) installed. The OS of the RDS-Server is Windows Server 2016 Standard.

 

Any ideas how to solve the problem?


Log for remote desktop services

May 12, 2019, 9:07 pm
$
0
0

Recently my server has been remotely accessed by unknown users. Do I get some log of remote access information from which I could know who has been tampering with my server?

Thank You so much

i have one windows 2008 rd server but after 3 month can use only 2 user, how it enable multy user?

May 10, 2019, 12:19 am
$
0
0

i have one windows 2008 rd server for use my online accounting students for multy user tally software using my students. students are training own house different location , different time. i create one user for one student, i have 40 students at this time, so i have create 40 user for tally using via rdp login.

but after 3 month my server is block. it can display license problem. after i request my server team please reset my server, but after reset can use only 2 user 1 admin and another one, this two admin only use at a time one person only. 

MY QUESTION IS   how can create another user my server? which licence i can purchase? Device CAL ? or User CAL?  HOW MANY USER CAN CREATE AFTER PURCHASE 1 USER LICENSE ?

ONE USER CAN USE (USER ID AND ONE PASSWORD) DIFFERENT PLACE, DIFFERENT DEVICE AT A ONE TIME AFTER PURCHASE LICENSE ? PLEASE REPLAY ......

Multiple RDS License Server with Split licenses

May 8, 2019, 9:04 pm
$
0
0

Hello

We have 2 RDS License server in the domain with 40 Per User CAL on each server with OS Windows Server 2016 DataCenter. and we have GPO in place as well point RDS license server But only one RDS License server is allocating the licenses. Second server is not allocating. 

Both server are activated for RDS license.

Need help in this.

Thanks & Regards,

Sapan Shah

Set a default remoteapp based on the user

May 11, 2019, 5:39 am
$
0
0

Hi there, 

Using remote desktop, is it possible to set some kind of default remote app instead of a full desktop environment for a specific user ? 

Currently, I'm able to do this using 2 ways :

- by creating an RDP file which contains some remoteapp* parameters, and pass it to mstsc.exe

 - using a Custom User Interface policy for a dedicated app user (for example calc@demo.com user will have win32calc.exe as custom user interface) thanks to security filters.

The first way involves client-side configuration. I don't want that.

The second way works but creates an empty fullscreen background around my custom user interface program. If I close my program, the user is now facing a background without any further action possible but closing RDP session. I could build a wrapper around my program to call shutdown -L but it requires more work. I don't want to use a batch file.

So ideally, I want the best of both worlds : a server-side configuration only, and where only the app must be visible to the end user. Without any empty fullscreen background around it.

I'm using Windows Server 2016


Many thanks for your help.


Server Self Certificate not renewing and possibly stopping RDS working

May 11, 2019, 7:34 am
$
0
0

I am having issues with RDS 2016, I have just renewed the SSL certificate and imported in but it is erroring out saying

Your session ended because of an unexpected server authentication certificate was received from the remote pc

I have confirmed the new SSL certificate is correct and working, I have checked the local certificate store under personal and noticed the local server has expired and it will not let me renew it, it gives me an error of no certificate templates available.

Can anyone assist?

Regards

MattRose

Search

RDS 2012R2 Issue

April 29, 2019, 6:55 am
$
0
0

1.We have installed RDS (RDCB, RDSH, RDWeb) on one host. RDS service is working well without any errors. But if we open Server Manager->RDS we're getting "A Remote Desktop Services deployment does not exist in the server pool.
To create a deployment, run the Add Roles and Features Wizard and select the Remote Desktop Services installation option."

2. We get the same error after Get-RDServer - "The RD Connection Broker server is not available"

3. If we add Roles-> RDS Installation, the next error - "could not retrieve the deployment information from the rd connection broker"

4. If we add this server to Server Manager on another host we receive - "Kerberos Security Issue". All hosts was added to Trusted.

All RDS services are running (including WID). ServerManager and Posh running by Administrator.

How to resolve it?

Adding another icon/ rdp shortcut to the RDWEB Page

May 7, 2019, 5:13 am
$
0
0

Hi,

I have set up a Windows Server 2016 RDS environment which is as follows:

1 RD Gateway Server (RDGW1)

1 RD Web Server (RDWeb1)

5 RD Session Hosts (RDS1 to 5)

1 RD Broker (RDBroker1) - also does licensing.

gateway url is: gateway.domain.com which points internally and externally to the RDGW1 server.

The RD gateway and RD Web servers are in the DMZ.

We now want to implement Azure MFA using the NPS Extension as described here: https://docs.microsoft.com/en-us/azure/active-directory/authentication/howto-mfa-nps-extension-rdg  

To minimize impact, I set up another Gateway server in the DMZ called RDGW2, along with an NPS server in the LAN (NPS1). Following the documentation linked to above, I was able to successfully set this up.

To test, I have downloaded the RDP icon from the RDWeb page and edited it to direct via RDGW2 rather than RDGW1. I also created an External DNS entry for gateway2.domain.com pointing to the WAN IP for RDGW2.  This works fine from outside of the network and I get MFA prompts and can see connections going through RDGW2.

I now need to publish 2 RDP shortcuts. One would be using the old non MFA gateway (RDGW1)  - this is already there. The second would be the edited RDP Shortcut that uses the new MFA configured Gateway (RDGW2).

Is there any way I can publish the second RDP icon? Perhaps by editing the relevant web page or locating where the original icon is located? Publishing via RemoteApp is not an option. The reason for having both is to provide a transition environment and possible future DR environment (in case there are issues with Azure).

Thanks,

RemoteApp cant seem to write to Program Files (x86)

May 9, 2019, 1:30 am
$
0
0

I have a (old) ERP system setup as a RemoteApp.

When you go to spool invoices etc and display them, it goes to generate them, brings up WordPad but then comes up with the following message:


"\\ServerFQDN\c$\Program Files (x86)\Application Folder\Sub Folder\Filename.txt

Cannot find this file

Please verify the correct file name and path are given."

It has never written the file.

If I open WordPad as a RemoteApp and manually browse to that location I have full access and create and modify a file there so I dont believe its a permissions issue.

Any advice would be greatly appreciated.

Windows 2016 Terminal Server - Application Error in Explorer.exe

May 13, 2019, 4:02 am
$
0
0

I already posted this question in Server2016 section - they had no idea - but they suggested to try and find a solution at the RDS-Section

I have 3 Win2016 Terminal-Server - all show the same Problem:

Sometimes Windows Desktop is not responding - no Startmenu reaction, no right-click on taskbar. But i can double-click Desktop-Icons and the program starts. I also have this problem when i log on locally as admin.

In the Eventlog i get:

Information: The Desktop Window Manager has registered the session port.(EventID 9027)

followed by

Error: Application Error - EventID 1000

Faulting application name: explorer.exe, version: 10.0.14393.2879, time stamp: 0x5c89ec44
Faulting module name: ntdll.dll, version: 10.0.14393.2608, time stamp: 0x5bd133d4
Exception code: 0xc000041d
Fault offset: 0x000000000002138e
Faulting process id: 0xf51c
Faulting application start time: 0x01d505941f3bf9c4
Faulting application path: C:\Windows\explorer.exe
Faulting module path: C:\Windows\SYSTEM32\ntdll.dll
Report Id: f943abdf-c7c2-4b2e-9906-e5ea5e358841
Faulting package full name: 
Faulting package-relative application ID: 

The faulting module name changes between: ntdll.dll and user32.dll

I have no idea why this happens - hope you can help me

Thanks

Arnold

Issues with resource redirection and server management on 2008 R2, 2012 R2 and 2016

April 23, 2019, 7:46 am
$
0
0

Hi All

We are encountering a rather strange issue on a few of our VMs. We are running a Hyper-V environment on 30 physical hosts. The hosts are made up of 4 different models, from 2 different manufacturers (Dell and Cisco). All our VMs are Server 2008 R2, 2012 R2 or 2016. They are either Enterprise or Datacentre edition and full desktop installs, nothing running core edition. We run Symantec Endpoint Protection on all physical and virtual servers.

The issues we are having seem to manifest themselves in 2 main ways, although both seem to be connected. The first thing we notice is issues with resource redirection. We run an RDS environment for clients. With some of the VMs, the clients are unable to see their locally connected printers. On some of these machines, restarting the spooler seems to sort this. On the rest, a full server reboot is required. Following the reboot, it seems to work fine for that day, then it drops off again requiring another reboot. No errors or warnings in the event logs. It just doesn’t seem to work. We tested the drive redirection, and this also seems to drop off when the printers fail to connect. However, if the printers failing to work is fixed by the restarting of the spooler alone, the drive redirection is not affected and always stays working. This seems to happen on all 3 releases of Windows Server. It happens on different physical hosts from different manufacturers and ranging from 4-year-old hosts to 2-month-old hosts.

The other issues we have noticed is in the Server Manager. When you select the All Servers tab, you get a box in the middle showing the list of the servers that are online or offline, and deeper details if its online but cannot talk. Some servers seem to show up as “Online – Cannot get role and feature data”. These servers we cannot manage properly remotely or indeed locally for things such as RDS Broker that requires the Server Manager. We are unable to change any of the roles or features, to remove or add new ones. We are unable to install or uninstall any applications or Windows Updates. We are also unable to access Disk Management, the VDS being unavailable. We reboot the affected server and that will bring it back online, but the issue will come back, it may be an hour, or it may be a few days.

I have taken copies of VMs that are struggling and removed the AV, and removed all updates installed in the last month. The issue persisted. What is interesting, I took another copy of the same VM and popped it into an isolated network (Private Network) and it didn’t seem to be affected by the issue. I am running this test again and will update this with the results to confirm, but that does seem to be hugely out of the pattern, purely by isolating it. Now this may be due to another VM causing issues, or a lack of WAN access but I am pretty much out of ideas. I have tried as many iterations of this as I can think of, removed and tried various versions of it. I cannot see what is causing this. It seemed to start badly 3-4 weeks ago. It is not affecting all servers, and it is affecting different clients with their environments ranging from Workgroups to Domains, each client having their own space on the hosts. However, the network is one large subnet, so it is possible that something is passing across the LAN. As I say, I have tried everything that I normally would and done lots of digging online and found nothing.

Many Thanks

James

RWW via a Mac or IOS

May 6, 2019, 5:23 pm
$
0
0

Hello support,

I have Windows 2012 R2 standard server as a RDS clients on it.  it runs an applications on it called ACT! and 7 users login to it to access the Act! program and their individual email outlook. There are three users that have Apple devices that use RDP client for Mac that access the server.  I want to close port 3389 and use Remote Web Access (via a ssl certificate) and using essential experience to access the server instead of RDP.  But when I go to browser (Safari) and put in the remote link.  https://remote.domain.com/remote,     I am able to log in and the remote client is downloaded and when I click on it, it wants to open it with an app and it cannot find and goes to App Store but all the programs there are greyed out or not available.  

The same process for iPad and iPhone. How can safely access the server?  I appreciate your help.

Jamshid  

USB visible to all

May 13, 2019, 8:07 am
$
0
0

We have a RDS user whose local USB drives are visible to all RDS users.  I am new to RDS and I would like to know where to change the USB settings?

Thank you,
Mike

Search

Configure RDP Client to initiate communication on port 443

May 13, 2019, 8:09 am
$
0
0

I have setup an 2016 RDS farm and I am trying access RDSH servers from outside the internal network through an RD Gateway server. I currently have it configured where users are directed to a WAP server (on port 443) in the DMZ that does pass through to the RD Gateway server (on port 443) on the internal network (The RD Gateway server also has the RD Web Access role on it). When I test connecting to an internal server through RD Gateway from a Win10 client on the internal network I can successfully RDP to an internal server. When I try to RDP from a Win10 client outside of the internal network through the RD Gateway nothing happens. I performed a wireshark capture from the WAP server and found that the external client never even gets to the WAP server. The internal client initiates the RDP communication on port 3389 to the WAP server and from WAP to RD Gateway on port 443, when initiating internally port 3389 is not blocked to WAP which is why it seems to work. I have configured the RDP client to use a gateway server address both internall and externally but the client keeps trying to initiate communication on port 3389.

My question is how do I configure the RDP client on a Win10 computer to initiate an RDP connection on port 443?

2016 RDS issue - Single user | Windows cannot find local profile.

May 8, 2019, 10:00 am
$
0
0

Hello, 

I'm receiving a few errors with my RDS 2016 build. Randomly a user, upon logging in will be given a temporary profile. I do the normal remediation steps by deleting the temp profile in the registry and Advance User options, the server is rebooted and they can log in fine. But after a while the error comes back again. All other users can remote in fine with no issues, it only effects one user at a time. A few errors I see....

1. Windows cannot find the local profile and is logging you on with a temporary profile. Changes you make to this profile will be lost when you log off.

2. 

The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID 
{D63B10C5-BB46-4990-A94F-E40B9D520160}
 and APPID 
{9CA88EE3-ACB7-47C8-AFC4-AB702511C276}
 to the user (xxxxxxxxxxxxxxxxxx) SID (S-1-5-21-3444666529-4500789-23435591xx-xxxxx) from address LocalHost (Using LRPC) running in the application container Unavailable SID (Unavailable). This security permission can be modified using the Component Services administrative tool.

The RDS server shows this error

3. Remote Desktop Services could not apply a user desktop for a user account with a SID of S-1-5-21-3444666529-4500789-23435591xx-xxxxx. A temporary profile was enforced for the user. Verify that the user profile disk settings are correct. The error code is 0x15.135

4. Remote Desktop Services could not attach a user profile disk for a user account with a SID of S-1-5-21-3444666529-4500789-23435591xx-xxxxx. The error code is 0x15.135

Thanks.

Please assist, 

Seneb

Maximizing apps in RDS session.

May 13, 2019, 9:02 am
$
0
0
We run an app using "alternative shell" in RDS on a Windows 2016 server.  When the user starts the app there is no desktop.  This app opens documents using Office 2016.  Our problem is that the office apps always start behind the main app making it hard to see that the open document function was successful. 

There is no desktop and thus shortcut to edit.  I've tried opening, maximizing, and then closing Excel/Word but they always open windowed and behind everything else.  I assume without Explorer running, there is no memory of last position?  I've looked for command line options to force Word/Excel maximized to no avail.  My only workaround is to use alt-PageUp to bring them to the foreground.  That is more of a band-aid than a solution.

Is there any way for apps started by another app in an RDS session to start maximized?  

Albion

Hyperv enhanced session and RDP

April 29, 2019, 9:48 pm
$
0
0

I have a windows 10 computer and it has a hyperv windows 10 VM within it. When I try to log into the VM using enhanced session mode of HyperV, which requires RDP support, my logon is refused with the classic 'you need the right to sign in...".

I have verified the following:

The account I am using to logon is an administrator account and also has the User right 'allow logon on through terminal services'

Remote desktop connection is enabled through control panel system.

Firewall port for RDP is open and allows anyone in.

Is there something I have missed?

Thanks

David Z

Ongoing cert mismatch error with RDS & Webclient on Server 2019

May 13, 2019, 10:37 am
$
0
0

Scenario....

Single server hosting all roles, RD Connection Broker, RD Session host, RD Gateway, RD Licensing, RD WebAccess.

All webclient pieces installed without error.

Cert is official SHA2 cert from InCommon. The cert has been imported into IIS. In the Deployment Properties, Under "Certificates", the cert is showing as "Trusted" and "OK" for all role services.

In the RD Gateway Manager mmc, on the SSL Certificate tab for the server properties, the cert is showing the certificate from InCommon as being installed. 

Problem....

The error is reproducible on Chrome or the new IE Dev (chromium) browser. I navigate to the page secured with SSL. I successfully authenticate. I select the calculator app. It shows "Opening Port"...."Establishing Connection", then in the browser I get...

Oops, we couldn't connect to "Calculator"
Your session ended because an unexpected server authentication certificate was received from the remote PC. Ask your admin or tech support for help.
Certificate information:
Server Name: myserver name blah blah blah.

The thumbprint is showing the same as the cert I have installed.

If I run a browser in dev mode....I can see the error as...

2019-05-13T17:22:25.555Z Connection(ERR): The connection generated an internal exception with disconnect code=CertMismatch(7), extended code=<null>, reason=The cert from the remote server did not match the expected certificate (length mismatch).
Thrown in thread 396952 at:
tls/ossltransport.cpp(511)
Call Stack:
at Rjb
at Ojb
at Ip
at Vgd

Where is the mismatch error coming from? I have read so many articles on this and have re-installed the server so many times, I can't figure out for the life of me what I am doing wrong.

Please help!

I'm Micahel

Viewing all 27656 articles
Browse latest View live
Search
<script src="https://jsc.adskeeper.com/r/s/rssing.com.1596347.js" async> </script>