Quantcast
Channel: Remote Desktop Services (Terminal Services) Forum
Viewing all 27656 articles
Browse latest View live

RD Desktop Environment - Shared Applications

May 7, 2019, 3:39 am
$
0
0

We have two W2019 Servers running both with the Server RD Session Host role installed. Lets call them Server A and Server B.

  • Server A is used as a RD Desktop Environment
  • Server B is used for Shared Applications like Word, Excel etc.

Our idea is that the user does logon on Server A, accessing the Applications from Server B.

Basically this does work well however file type association seems not to be working in this environment. We are getting the following event on Server A:

Event ID: 1026

Source: RemoteApp and Desktop Connections

 "The installation of the default connection has been cancelled. A default connection cannot be used on a system that is part of a Remote Desktop Services deployment."

Default connection to webfeed.aspx has be configured via GPO and has been applied successful, file type association is configured for the shared Application also.

On Server A the file type association is not working so the user can not open a file from Windows Explorer directly.

As the Event Log Warning does it say really clear is it not possible to use shared Applications on a Desktop Environment with working file type association ?

Search

Remote Desktop web client exception with disconnect code GatewayProtocolError 52 , extended code=, reason = Gateway tunnel authorization failed with error code = 2147965403

May 1, 2019, 11:33 am
$
0
0

Scope of this is that out of dozens of accounts that work fine for rdwc sessions, there are two that do not.  The connection starts but within a few seconds fails with, user facing side, 'we couldn't connect to gateway because of an error.'  When running a capture, the key error appears to be:

"The connection generated an internal exception with disconnect code=GatewayProtocolError(52), extended code=<null>, reason=Gateway tunnel authorization failed with error code=2147965403"


This is what’s in the nps log from the RD server:

"orgRD","RAS",04/05/2019,15:22:31,1,"DOMAIN\SAMACCOUNTNAME",,"UserAuthType:PW",,,,,,,,,,,,5,,,12,,,0,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,"TS GATEWAY AUTHORIZATION POLICY",2,"TS GATEWAY SERVER GROUP","xxx.xx.xxx.xx",,
"orgRD","RAS",04/05/2019,15:22:31,11,,,,,,,,,,,,,,,,,,,,,0,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,"TS GATEWAY AUTHORIZATION POLICY",2,"TS GATEWAY SERVER GROUP","xxx.xx.xxx.xx"",,

And this is from the NPS server:

"FILES","IAS",04/05/2019,15:22:31,1,"DOMAIN\USERNAME","domain.org/Users/FirstnameLastname","UserAuthType:PW",,,,,,,0,"xxx.xx.xxx.xx","orgrd",,,5,,,12,7,"RDpolicy",0,"311 1 xxx.xx.xxx.xx 03/19/2019 04:54:59 292",,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,"RDGWauth",1,,,,
"FILES","IAS",04/05/2019,15:22:31,11,,"domain.org/Users/FirstnameLastname",,,,,,,,0,"xxx.xx.xxx.xx","orgrd",,,,,,,7,"RDpolicy",0,"311 1 xxx.xx.xxx.xx 03/19/2019 04:54:59 292",,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,"RDGWauth",1,,,,

Any pointers in the right direction, or if anyone else has seen these errors, would be much appreciated!

RDWeb - password change not working with cross forest trust - 2012r2

April 16, 2014, 1:47 pm
$
0
0

Hello Everyone,

I have a RDS implementation working with 2012r2 in a domain A.
Users from domain B (With an external two-way non-transitive trust with A) can access, log-in, use remoteapps, rds sessions, etc..

The problem is when I enable the RDWeb password reset feature. For example, taking 2 users with the "User must change password at next logon" option enabled:
If the user is from domain A, I get prompted to change the password and it works great.
If the user is from domain B, I get prompted to change the password, but after writing the new password it says that the user name or password is not valid.

Any clues?

I found this issue that I don't know if it's somehow related
http://social.technet.microsoft.com/Forums/en-US/cf14fc3e-2a4a-4f4e-8dd6-fed2ecdf7d7b/cross-forest-password-reset?forum=ilm2

Thanks

RDS Broker Refuses a connection until an AD Account is unlocked

May 14, 2019, 7:12 am
$
0
0

A user (AA) in the main site is allowed an RDP connection through an RDS Broker. When user AA goes to another site and initiate an RDP connection thought the same RDS Broker, he gets "logon attempt failed" for three times then the account locks. On the forth time (when an account it locked) the Broker opens a connection but shows error "The referenced account is currently locked out and may not be logged on to". When a user clicks ok on this message and wait for his account to be unlocked in AD, he is able to login to the RDS.

This is affecting all users in this site. They have accessed the RDS servers through the Broker in the past (till early April)

All other sites are able to access the RDS servers thought the Broker with no issues. Can you help me narrowing this issue and fine a resolution please

YRK

RD Web Access Apps only displaying after hitting Show Details.

April 25, 2019, 9:07 am
$
0
0

Hello,

We currently have a setup where we have a server with the web access and RD gateway roles installed.  They point back to a broker that has multiple applications defined that users can use through a browser (using the web access URL.)  The issue we are having is that the user will click the application, it will establish a connection, but hang until you click show details.  Once that has happened it will show the domain page and load the application.  Does anyone know how to make the application automatically display instead of having to click show details?

Thanks

Sign in option

May 7, 2019, 12:04 pm
$
0
0

Can i add custom sign in option in addition to already available sign in options (password, smart Card) ?

Custom sign in option is related to smart card but without reading certificate on smart card. Rather it will perform sign in on other attributes fetched through smart card and comparing them againstemployee ID attribute of AD?

Rox_Star

Non-Admin Users Cannot R-Click or Access On WinSvr2016Datacenter

May 9, 2019, 2:40 pm
$
0
0

Good afternoon,

We had some contract work done by a MITS company to deprovision our old RDS VMs and build a new one. Once the new one was in place, we started letting users into it, but we found a couple of strange problems I haven't encountered before.


-Right-Clicking doesn't work. I've checked the local GP, and the File Explorer context menus are not disabled. Neither is it disabled in the registry.

-In File Explorer, users do not see the "This PC" section in the left navigation pane, where they would normally select local and mapped drives. They can still access these drives by typing the file path in the navigation bar.

We do not have these problems with domain admins, only non-admin users. It happens if we RDP into it or use any other remote software, such as vsphere's remote in or Jade's ScreenConnect. These problems are not occurring on all of our other VMs, which are all WinSvr2012R2.

The crew who deployed this VM were not instructed to implement any special security measures, our previous GPOs and ACLs were sufficient for access control.

Cannot RDP from domain-machine to Workgroup Win2K12

May 14, 2019, 8:30 am
$
0
0

Hi,

as suggested on my previous topic (https://social.technet.microsoft.com/Forums/windowsserver/en-US/b1b0cc9e-461f-4bb3-b497-ef139093f195/cannot-rdp-from-domainmachine-to-workgroup-win2k12?forum=winserver8gen), I'm here to ask about my problem in a more dedicated forum.

My computer is part of a domain. I want to RDP on a server hosted in datacenter (Win2K12, part of workgroup, standalone server). When I try to connect, I enter the remote server administrator credentials and I have the error message (translated from french) :

"Your system administrator is refusing connection to this remote computer. Contact your system administrator or technical support for assistance".

- All domain joined computer can RDP on the domain but they can't RDP this remote server.

- A non-domain-joined computer in my LAN is able to connect to the remote server.

- My user is member of "Domain User" & "RemoteDesktop User".

What's wrong ? 

Thanks for help.

Vincent

Search

Can I install into Environment with Breaking Anything?

May 14, 2019, 12:00 pm
$
0
0

I created a VM in vCenter 6.5 for "development" that I want to test RDS with on a Win2016 server. I needed to add it to my domain to get the correct options for installing RDS.

We already have Citrix XenApp etc. I don't want to accidentally push out any clients or rules or steal any cals or break any current functionality.

Is it safe to setup RDS services, standard, session based, with Remote Desktop Connection Broker, Remote Desktop Web Access and Remote Desktop Session Host and whatever is needed to test with that (temp or MSDN cals) without breaking any current functionality I have with Citrix?

I've seen plenty of RDS setup guides but nothing about installing into my type of environment.

Thanks everyone.

Windows Server RDS Freezing with Flickering "Not Responding" in the top bar

April 1, 2019, 1:51 am
$
0
0

We have around 15~ Remote Desktop Session Host servers of varying versions (2012 R2, 2016 and 2019) which are experiencing freezing and flickering issues with "Not Responding" appearing in the top bar and the program being unresponsive when switching between tabs. Other symptoms include screen flickering and, when in Task Manager, the tabs sometimes disappear until you roll the mouse over them. These issues started appearing after the weekend of 23rd March 2019 (23/03/19).

I have been scouring forums looking for other people with the same issue but can't find anyone with similar symptoms except someone called Chris_UKDE and his questions haven't been answered either.

At first, we thought that this was caused by a Windows Update but we have been through all of the updates and cannot find any consistent update or lack of update across the servers that seems to have caused the problem. We thought it might have been KB4489889 but after uninstalling this, the problem still remains.

We have opened a case with Microsoft and we are waiting for them to analyse some logs that they gathered on Friday and they have advised various registry fixes and disabling hardware acceleration but none of these have worked. I am taking to the forums to see if anyone else is a. having any luck with their diagnosis and b. having these issues at all(!) and c. if we manage to fix it, to share it with you so you don't have to experience the same pain we have.

The issue does NOT appear to happen in Safe Mode BUT when running a Selective Startup from MSConfig, these issues still happen, eluding that it's still a Microsoft element causing the problem. We are mainly seeing the problems in Microsoft Office programs but we do get a few issues in other Microsoft programs, such as Internet Explorer/Task Manager and also Chrome.

Most of the servers are running on VMWare ESXi 6.0-6.5 but we do have one native Windows Server with the problem. We have tried updating/uninstalling VMWare tools but this does not seem to fix anything. We also thought this might have been related to the video driver, so we booted the server with "Base Video" options in MSConfig but this still didn't fix the problems.

I am hoping that there are others in the same position as me, looking for an answer but having no forum to discuss it on, hence this post. Any advice greatly appreciated.

Lewis

RWW via a Mac or IOS

May 6, 2019, 5:23 pm
$
0
0

Hello support,

I have Windows 2012 R2 standard server as a RDS clients on it.  it runs an applications on it called ACT! and 7 users login to it to access the Act! program and their individual email outlook. There are three users that have Apple devices that use RDP client for Mac that access the server.  I want to close port 3389 and use Remote Web Access (via a ssl certificate) and using essential experience to access the server instead of RDP.  But when I go to browser (Safari) and put in the remote link.  https://remote.domain.com/remote,     I am able to log in and the remote client is downloaded and when I click on it, it wants to open it with an app and it cannot find and goes to App Store but all the programs there are greyed out or not available.  

The same process for iPad and iPhone. How can safely access the server?  I appreciate your help.

Jamshid  

Winodws server 2019 unexpected shutdown

May 14, 2019, 4:20 pm
$
0
0

Hello support,

I have a new Windows server 2019 standard installation.  It is a Hyper -V host and has a VM for RDS.  whenever I reboot the host server it comes up with the Unexpected shutdown Dialog box.  I do not see any errors in the event viewer like 6008 or 41.

I appreciate any help or input.

Thanks,

Jamshid

Set a default remoteapp based on the user

May 11, 2019, 5:39 am
$
0
0

Hi there, 

Using remote desktop, is it possible to set some kind of default remote app instead of a full desktop environment for a specific user ? 

Currently, I'm able to do this using 2 ways :

- by creating an RDP file which contains some remoteapp* parameters, and pass it to mstsc.exe

 - using a Custom User Interface policy for a dedicated app user (for example calc@demo.com user will have win32calc.exe as custom user interface) thanks to security filters.

The first way involves client-side configuration. I don't want that.

The second way works but creates an empty fullscreen background around my custom user interface program. If I close my program, the user is now facing a background without any further action possible but closing RDP session. I could build a wrapper around my program to call shutdown -L but it requires more work. I don't want to use a batch file.

So ideally, I want the best of both worlds : a server-side configuration only, and where only the app must be visible to the end user. Without any empty fullscreen background around it.

I'm using Windows Server 2016


Many thanks for your help.


Local printer only prints intermittently through remote desktop

May 10, 2019, 9:39 am
$
0
0

Hi,

We have a very odd issue with our RD setup, and I have searched high and low for a solution, but no luck so far.

So, here's the problem.

We have a local domain with a local server running win server 2016, 5 workstations with win 10 pro and a shared network printer. Locally everything works fine and as expected. Every user also have a remote desktop into an off site server running win server 2012 to access a specific application.

Printing to our locally shared network printer through this RD session works fine sometimes, and sometimes nothing happens at all. Sometimes restarting RD helps, sometimes not. Sometimes restarting the local workstation helps, sometimes not...

The same thing happens even if we set the workstations up with locally installed printer drivers, and not run it through our local print server.

What gives me the headache is that it sometimes work, and sometimes not. There doesn't seem to be any particular pattern either. It can work well for a whole week, and then fail 3 times in a day. All the users fail to print independent of each other, meaning that even if two users can't print, the other three still can...

 

I hope some of you may have an idea of what the underlying problem may be or where to start troubleshooting.

Thanks a lot!


Thomas

Server Self Certificate not renewing and possibly stopping RDS working

May 11, 2019, 7:34 am
$
0
0

I am having issues with RDS 2016, I have just renewed the SSL certificate and imported in but it is erroring out saying

Your session ended because of an unexpected server authentication certificate was received from the remote pc

I have confirmed the new SSL certificate is correct and working, I have checked the local certificate store under personal and noticed the local server has expired and it will not let me renew it, it gives me an error of no certificate templates available.

Can anyone assist?

Regards

MattRose

Search

Maximizing apps in RDS session.

May 13, 2019, 9:02 am
$
0
0
We run an app using "alternative shell" in RDS on a Windows 2016 server.  When the user starts the app there is no desktop.  This app opens documents using Office 2016.  Our problem is that the office apps always start behind the main app making it hard to see that the open document function was successful. 

There is no desktop and thus shortcut to edit.  I've tried opening, maximizing, and then closing Excel/Word but they always open windowed and behind everything else.  I assume without Explorer running, there is no memory of last position?  I've looked for command line options to force Word/Excel maximized to no avail.  My only workaround is to use alt-PageUp to bring them to the foreground.  That is more of a band-aid than a solution.

Is there any way for apps started by another app in an RDS session to start maximized?  

Albion

Ongoing cert mismatch error with RDS & Webclient on Server 2019

May 13, 2019, 10:37 am
$
0
0

Scenario....

Single server hosting all roles, RD Connection Broker, RD Session host, RD Gateway, RD Licensing, RD WebAccess.

All webclient pieces installed without error.

Cert is official SHA2 cert from InCommon. The cert has been imported into IIS. In the Deployment Properties, Under "Certificates", the cert is showing as "Trusted" and "OK" for all role services.

In the RD Gateway Manager mmc, on the SSL Certificate tab for the server properties, the cert is showing the certificate from InCommon as being installed. 

Problem....

The error is reproducible on Chrome or the new IE Dev (chromium) browser. I navigate to the page secured with SSL. I successfully authenticate. I select the calculator app. It shows "Opening Port"...."Establishing Connection", then in the browser I get...

Oops, we couldn't connect to "Calculator"
Your session ended because an unexpected server authentication certificate was received from the remote PC. Ask your admin or tech support for help.
Certificate information:
Server Name: myserver name blah blah blah.

The thumbprint is showing the same as the cert I have installed.

If I run a browser in dev mode....I can see the error as...

2019-05-13T17:22:25.555Z Connection(ERR): The connection generated an internal exception with disconnect code=CertMismatch(7), extended code=<null>, reason=The cert from the remote server did not match the expected certificate (length mismatch).
Thrown in thread 396952 at:
tls/ossltransport.cpp(511)
Call Stack:
at Rjb
at Ojb
at Ip
at Vgd

Where is the mismatch error coming from? I have read so many articles on this and have re-installed the server so many times, I can't figure out for the life of me what I am doing wrong.

Please help!

I'm Micahel

RemoteApp connection window - Cancel button not visible

May 9, 2019, 8:16 am
$
0
0

Hi, on some clients when connecting to a remoteapp the abort button is not displayed correctly. 

On one of the clients where this problem is occurring is Windows 10 Enterprise Version 1809 (Build 17763.437) installed. The OS of the RDS-Server is Windows Server 2016 Standard.

 

Any ideas how to solve the problem?


Stuck at Establishing Connection Quality in 2016 and error message on broker -"RD Connection Broker failed to process the connection request for user Error: Cannot create another system semaphore."

May 8, 2019, 4:38 pm
$
0
0
I have users that use remote desktop to connect to a DNS farm name that has all the session host IP addresses. In Server 2016 RDS, I have the Collections setup with all the Session host in it.  I have a HA broker environment setup. I have one Licensing server.
If I use the DNS farm name to connect to Remote Desktop Session Host, randomly the Session host will stop the user at Establishing Connection Quality. It mostly happens when alot of users are logging in during shift change. I have around 10 Session host. If I only have two session host IP addresses listed in DNS farm name, only those Session host will stick at Establishing Connection Quality. The other session host are not affected. I do not see error messages in the event viewer for the session hosts. I do see error messages in the broker server called: 
"RD Connection Broker failed to process the connection request for user Error: Cannot create another system semaphore. "
I delete the Collection that is setup in RDS. And recreate the collection. The problem goes away for about a day and comes right back.
I created another collection that does not use DNS farm name connections. It only uses RDweb apps. The session host in this collection never lock at Establishing Connection Quality.
When stuck at Establishing Connection Quality, I have to restart the server to allow users to connect again. I had this problem in 2012 r2, but in 2012 r2 I would have a Blank user in Task manager when Session host locked at Establishing Connection Quality. I would have to connect to user in task manager and see that the user was stuck at Signing out. Once I disconnected from the session, 2012 r2 would then remove the blank user from task manager. A blank user does not appear in 2016 under Task manager but it still gets stuck at Establishing Connection Quality. I would have to do an Ipconfig /flushdns to make the user point to a different host listed in DNS in order to log in. 
Why does using the DNS farm name with Session Host IP addresses cause only those Session host to stick at Establishing Connection Quality?

RemoteApp cant seem to write to Program Files (x86)

May 9, 2019, 1:30 am
$
0
0

I have a (old) ERP system setup as a RemoteApp.

When you go to spool invoices etc and display them, it goes to generate them, brings up WordPad but then comes up with the following message:


"\\ServerFQDN\c$\Program Files (x86)\Application Folder\Sub Folder\Filename.txt

Cannot find this file

Please verify the correct file name and path are given."

It has never written the file.

If I open WordPad as a RemoteApp and manually browse to that location I have full access and create and modify a file there so I dont believe its a permissions issue.

Any advice would be greatly appreciated.

Viewing all 27656 articles
Browse latest View live
Search
<script src="https://jsc.adskeeper.com/r/s/rssing.com.1596347.js" async> </script>