Quantcast
Channel: Remote Desktop Services (Terminal Services) Forum
Viewing all 27656 articles
Browse latest View live

"Because of an error in data encryption, this session will end"

$
0
0

All of a sudden my Windows 7 x64 computer is unable to connect to random Windows 2008 R2 servers via Remote Desktop.

I can connect to the same servers from other Windows 7 machines.

The only fix I've come across so far is this, except that key doesn't exist on either my machine or on the server(s):

To resolve this issue, follow these steps:

  1. Start Registry Editor.
  2. Locate and then click the following registry subkey:
    HKEY_LOCAL_MACHINE\System\CurrentControlSet\Services\TermService\Parameters
  3. Under this registry subkey, delete the following values:
    • Certificate
    • X509 Certificate
    • X509 Certificate ID
  4. Quit Registry Editor, and then restart the server.

Does anyone have any suggestions please as I'm at a total loss what is happening here.

Thanks.


Need a solution for allowing Remote Desktop access for a limited number of users.

$
0
0

I've been searching and searching but I'm not getting all the pieces together.  Here is what I need to accomplish:

  1. A VM running a modern Windows OS to run a specific application suite.
  2. That VM needs to be able to handle up to 5 concurrent Remote Desktop connection actively using the application mentioned above. (The application suite is designed to be able to handle this.)
  3. Users will be connecting with tablets, laptops and desktops from the local network and from external connections as well.

The application suite runs a database and is normally installed on multiple desktops with one of them being the "master" running the DB.  Maintaining the multiple desktops is less practical compared to one VM that everyone connects to.  I've seen "hack" ways to run multiple remote connections to Windows 10 and such but I'm looking to do this right.  This application suite is going to be used for the foreseeable future and I don't want to hack it together waiting for an update to break the hack.

What I am asking for is help with what I need for this use case.  I'm ok with building multiple servers (in ESXi/VMware) if needed, though I would prefer only one.  I also would really rather use a per user license since the users are regularly changing out the devices they are connecting with.  

I have downloaded and build basic VMs with the eval versions of Server 2019 Essentials and Standard.

USB Drive redirection except local drives

$
0
0

hello every one 

i have a issue with RDP redirection

the problem is i can't redirect just usb drives but not the local drives

i think of some script to run when the rdp session is created on the server and map the usb on the user's computers

but i don't know where to start

i also tried redirection policies in group policy but when you Disable drive redirection it's also assume the usb drive as a drive so i can't use the group policy or other things except some script that map detect the PnP devices on user's computers and map it and prohibit the local drives redirection.

thank you in advance

Double Twice Credentials to login to farm

$
0
0

Hi all,

After the Collection Security settings on Windows Servers 2016 RDS, has been configured to -

Security Layer: RDP Security Layer,

Encryption Level: Client Compatible,

no check on "allow connections only from computer running..."

that changed was made in order to enable users to change their password when expired.

now users have to enter their password twice in order to login,

the GPO is configured with 'Always prompt for password upon connection‘ to disabled.

any ideas ?

thanks a lot!



Disconnecting RDP Session Causing Excel C++ Macro to Pause

$
0
0

Hi,

I'm kicking off an extensive Excel macro on a network machine via Remote Desktop Connection that takes roughly 50 hours to complete. The macro VB calls a DLL file to execute a chunk of code in C++ (I did not build it and am not well versed).  Running the macro in an active session works fine, but if I disconnect and return a good time later, I can tell the macro has made zero progress since when I disconnected from the session--I can tell from status bar communication in Excel.  Once I reconnect my session, the macro continues running like I'd never left and no error messages or code execution breaks messages to be found.

It gets weirder--I have 4 options of VMs to choose from, all of which have identical specs (Windows 10, 64-bit Office, 64-bit OS).  The macro will continue to run when I'm disconnected on only ONE machine. The only difference I can see on the one machine that's successfully running the macro, is that it's the least recent to have been rebooted (and therefore updated) of the lot.

I do not have local admin rights on any of the machines. Any incite would be greatly appreciated. 

I'll caveat that I'm kind of a layman in tech speak; I apologize if I chose the wrong categories to post on.

rds per device

$
0
0

dears,

I need your assistance with the below, i was deploying rds server. 

Configured rds hosts and rds brokers and rds licenses servers. I issued from the license server licenses per cal and per devices.

In the collection, i added a group that contains the users who are able to connect to the host.

After testing, more than one user were able to connect to the rds host therefore the testing was successful.

however when i went to test the per device cal, i did the following i added the server from where i want to access the rds host to the collection group created earlier. then i logged in to this device using anonymous user and tried to rdp the rds host from that server, however it returned an error : the connection was denied because the user account is not authorized for remote login which is true, the anonymous user is not added to any rds group but the server from where he tries to access the host is added to the group.

I need to understand the per device scenario, can anyone help me with how it its tested?

best regards

Remote Connection from Laptop to Desktop

$
0
0
Just updated my Desk top and work lap top to windows 10 pro I can not remote desk top from my lap top to my desk top when I am not on the same network? Am I missing a setting to connect ?

Remote Desktop not working

$
0
0
I am using a Windows 10 PRO 64bit laptop, I've been trying to connect using remote desktop to another Windows 10 Pro PC and I keep getting the message that remote desktop could not connect.  I have a Windows 7 PRO computer that can connect to the same Windows 10 PC so I know it works.  I've tried everything I can think of to get it to work.  Network discovery is turned on, the firewall is turned off, I've allowed remote desktop connection and I can see the target PC when I go to Windows Explorer/Network.  What am I missing???

TSE licenses

$
0
0
Hello team,

I have a windows 2016 server and I want to add more other RDP sessions.

I know by default, the system has 2 simultaneous sessions and I'm looking to increase the number of sessions by the user and want to purchase another three licenses.



Does it mean I will have 05 simultaneous RDP sessions or the TSE server will not include the default 2 sessions?



Thanks for your support

Regards


Enhanced Video Renderer - render failure in RDP session

$
0
0

Enhanced Video Renderer is used in my application.  It displays fine on Windows 7 thick client.  When this application runs on a Citrix server (Server 2016), EVR will not render at all, if the render window is on monitor 2 (right monitor).

Because Citrix runs on top of Terminal Services, we tried to check over RDP.  See the same symptom over an RDP connection.  Testing EVR capabilities using GraphEdit: EVR will render fine on Monitor 1 but not Monitor 2 (black window appears).  Without RDP, connecting over UltraVNC, there is no problem with EVR rendering on Monitor 2.  Another curious thing, is that if the graph is stopped, and the render window is dragged from one screen to the other, the window will render fine after the graph is restarted, so long as the window is at least 50% on the left monitor.  Seems like a rendering problem as the source filter is definitely not the issue.

Is there some reason for this to fail?  Is there any RDP configuration (or omission) that contributes to this problem.  Many thanks in advance for any knowledge on this.

Replaced SSL cert, now getting certificate error when launching remote apps

$
0
0

Set up:

Server2016 Hyper V Guest 
Remote Desktop Gateway
Remote Desktop Licensing
RD Web Access
RD Connection Broker

Server2016 Hyper V Guest
RD Session host

Internal FQDN: Domain.Company.Local
External FQDN: company.ca

SSL Cert Wildcard: *.company.ca

DNS redirects remote.company.ca > external IP on firewall

Firewall port forwards RDP requests to Remote Desktop Gateway via custom port :9999 (443 was taken and my firewall didn't redirect through a WAF well with RDP so this worked)
Custom Port was set in transport options on remote desktop.

Initial setup worked fine, imported the SSL certs (which are now expired) then I updated the server to the HTML 5 client.

That worked until the certs expired, I replaced the certs first in the remote desktop gateway manager then in the Server Manager > Remote Desktop Gateway Overview > Collection Properties (selected the new cert for each, hit apply)

Checked IIS binding, its now the new cert.  Did IIS reset, and rebooted server to make sure changes took.

The portal gets the new cert just fine back to secure padlock in browser.  When launching an app though I get a certificate error:

Your session ended because an unexpected server authentication certificate was received from the remote PC. Ask your admin or tech support for help.

Certificate information:

Server Name:
CN=*.company.ca
Certificate thumbprint (SHA1):

<THE CORRECT CERTIFICATE THUMBRPINT)

I verified the thumbprint against the cert and all was correct.  I hadn't changed the FQDN from the setup before, and even tried rolling back the server and checking, as soon as I swap the cert out in any of the places it breaks the FQDN external being different from internal hoops I had to jump through originally.

Oddly if I go to /rdweb and use the non-html5 method the remote apps fire up and launch just fine.

What am I missing here?


Black Screen on all new Connections, SessionHost has to be rebooted

$
0
0

hi,

we're suffering from session hosts that produce black screen errors in a RDS 2016 farm.

already connected users can mostly work, all new connections end up with a black screen.

to resolve the error the server has to be restarted.

i can say that

- this error appears after error 1534 (Fehler bei der Profilbenachrichtigung des Ereignisses Delete für Komponente {709E2729-F883-441e-A877-ED3CEFC975E6}. Fehlercode: Das System kann die angegebene Datei nicht finden.) starts appearing in the eventviewer.

- upon checking the registry for this SID i end up at "ProfileNotifyHandler Class app id {E10F6C3A-F1AE-4adc-AA9D-2FE65525666E} inprocserver32, C:\Windows\System32\gameux.dll".

- starting explorer.exe per taskmgr does not open an actual explorer window although the process appears in taskmgr

- tskmgr, eventvwr, cmd can be started without problems

- affected users appear as active in RDS management

- no third party security software is installed

- farm is fully patched

- HKLM\Software\Microsoft\WindowsNT\CurrentVersion\ProfileGUID and ProfileList are ok (no old or .bak entries)

looking forward on how to resolve this without  rebooting the server or a permanent fix

thank you

best regards


Remotedesktopgateway - Configuration issue

$
0
0

Hi everyone,

I have a Win Server 2016 with RD Services on it. Everything is running fine but Remotedesktopgateway cannot be configured by me. I installed the role without errors but configuration ends in the error:

RD Gateway Configuration Failed on [X] With Error: Unable to configure the RD Gateway server: [X] . The error is You cannot call a method on a null-valued expression.. (event-id 4119)

I found no solutions to resolve this issue on the web. I think the problem occurs already during the installation process because the RPC application is missing in the IIS. It's not the first installation of the RDG. Maybe there are some old entries in the registry what cause this failure but I do not know where to search ... Would be nice to get some help from the community ...

Thanks,
Chris

Installing RDS automatically using local credentials : Authentication issue : New-RDSessionDeployment : Validation failed for the "RD Connection Broker" parameter.

$
0
0

Hi all

I would like to setup RDS Session on new servers automatically.

The first step to join the server to the Active directory domain is ok

Now I would like to install RDS Roles Session automatically

When the server reboot, it runs a script using local admin account.

I know one need an Active directory account to deploy.

So I tried this :

    $user = "AD\User"    $pwd  = ConvertTo-SecureString "xxxxx" -AsPlainText -Force    $cred = New-Object System.Management.Automation.PSCredential($user,$pwd)    Add-LocalGroupMember    -Group "Administrators" -Member $user  | Out-File -Append $LogFile    Import-Module RemoteDesktop    #Enable-PSRemoting -Force    Invoke-Command -ComputerName $Env:Computername -ScriptBlock {                   $RDSSrvName = $Env:Computername + ".xxx.yyy.com"                   $LogFile = "$Env:ProgramFiles\Renault\RDS_Roles_setup.log"                   New-RDSessionDeployment -ConnectionBroker $RDSSrvName -WebAccessServer $RDSSrvName -SessionHost $RDSSrvName | Out-File -Append $LogFile    }     -Credential $cred # -Authentication CredSSP    $null = install-windowsfeature  -Credential $cred  RSAT-RDS-Licensing-Diagnosis-UI -LogPath $LogFile    Remove-LocalGroupMember -Group "Administrators" -Member $user  | Out-File -Append $LogFile

It returns

[

MYSERVER] Connecting to remote server MYSERVER failed with the following error message : Access is
denied. For more information, see the about_Remote_Troubleshooting Help topic.    + CategoryInfo          : OpenError: (MYSERVER:String) [], PSRemotingTransportException    + FullyQualifiedErrorId : AccessDenied,PSSessionStateBroken

If I add Enable-PSRemoting -Force before the command, I get

[

MYSERVER]Connecting to remote server [MYSERVER] failed with the following error message : Access is
denied. For more information, see the about_Remote_Troubleshooting Help topic.    + CategoryInfo          : OpenError: ([MYSERVER]:String) [], PSRemotingTransportException    + FullyQualifiedErrorId : AccessDenied,PSSessionStateBroken    + PSComputerName        : MYSERVER

Even if I try to run the command as the Active directory user being AD-User and Local admin , I get too :

PS C:\users\ad-admin\Desktop> $RDSSrvName = $Env:Computername + ".xxx.yyy.com"
PS C:\users\ad-admin\Desktop> New-RDSessionDeployment -ConnectionBroker $RDSSrvName -WebAccessServer $RDSSrvName -SessionHost $RDSSrvName


New-RDSessionDeployment : Validation failed for the "RD Connection Broker" parameter.
MYSERVER.xx.yy.fr Unable to connect to the server by using Windows PowerShell remoting.
Verify that you can connect to the server.
At line:1 char:1+ New-RDSessionDeployment -ConnectionBroker $RDSSrvName -WebAccessServe ...+ ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~    + CategoryInfo          : NotSpecified: (:) [Write-Error], WriteErrorException    + FullyQualifiedErrorId : Microsoft.PowerShell.Commands.WriteErrorException,New-RDSessionDeployment


Could some tell me what I missing ?

The Active Directory user has no right on the active directory

Thanks


ML








Redirecting certain local drives to RDS collection desktop

$
0
0

Hello everyone,

We currently have an RDS collection set up with high availability connection brokers.

In our collection settings, we have redirection enabled for any type of drives and shown here:

As expected, when a user logs into their RDS Desktop, all of their local drives get redirected to their remote desktop (including any network drives they have mapped locally):

What we're looking to do is to only redirect the C: drive, the D: drive, and the E: drive. Our network drives begin on F: so that we have room for USB drives on D: and E:.

As a quick test, I've tried to redirect only the C: drive. So, I went on to our connection broker and typed in the following PowerShell command:

Set-RDSessionCollectionConfiguration -CollectionName "CollectionTest" -CustomRdpProperty "drivestoredirect:s:C:"

The command ran successfully and since we have two connection brokers, I went to make sure that the registry got updated on both connection brokers. And alas, it replicated on both connection brokers (as expected):

I logged into our desktop published by our RDS collection and found out that this didn't work.All of our drives are still being redirected. I went ahead and rebooted the remote desktop session host (RDSH) and all network drives are still being redirected.

I tried entering the command in again, however this time, I added the other two drives that I want to be redirected:

Set-RDSessionCollectionConfiguration -CollectionName "CollectionTest" -CustomRdpProperty "drivestoredirect:s:C:D:E:"

I followed the same process, making sure that the registry had updated on both connection brokers, etc. and still no results. All of the local drives are still being redirected.

Is there a part I'm missing here? Am I typing in the wrong command? Any insight would greatly be appreciated.

Thanks


Is it possible to drag and drop using RemoteAPP and Explorer?

$
0
0

Hi everyone,

We use Terminal Services Remote Desktop and Remote Apps. Actually no remote desktops, only RemoteApps are available to users. Is there anyway I can allow users to drag and drop files from their desktop into the RemoteApps? or for example maybe running Explorer windows and allow them to upload or download to/from their shared folder?

Or am I out of luck and must use something like FTP?

Thanks

Loss of power button options on remote computer after Bitlocker encryption

$
0
0

Hello:

I recently Bitlocker encrypted the system drive of a remote computer and afterwards lost a few of the power button options I would expect to see during a remote session of a Windows 10 1903 computer.

Here are pictures of the options seen before the encryption (during a remote session):

And here are pictures of the options after the system drive was encrypted on the remote computer:

As you can see I have lost the options of sleep, shutdown, and restart after Bitlocker encryption.  Very strange.  If I turn off bitlocker on the remote machine the options are restored, back to normal.  Is this by design or a bug?  I can reproduce problem on two differenct computers.  Not a big deal as I know I have other options to sleep, shutdown or restart, but I would like to know what is going on here.

Thanks in advance,

ssorgem

Issues with RD Gateway and MFA

$
0
0

Hi All,


I am trying to configure multifactor authentication with Azure MFA on my remote desktop gateway. I followed this article:

https://docs.microsoft.com/en-us/azure/active-directory/authentication/howto-mfa-nps-extension-rdg

All seems ok but it is not working as expected. When I try to access a remote desktop I get the notification on my phone. When I approve, the remote desktop keeps trying to connect and I get the notification on my phone 2 more times. Eventually the RDP just times out.


On my NPS server with the NPS extension I can see in the eventlog that access has been granted. On my remote desktop gateway in the NPS logs I can see this:

The RADIUS Proxy received a response from server X.X.X.X with an invalid authenticator.

Where X.X.X.X is my NPS server.

All servers are windows server 2019. My testuser has an Azure AD Premium P1 license (and an office365 business premium).

Any ideas on what could be wrong with my setup?

Access denied rds farm

$
0
0
Best regard.

I have the following inconvenience, when trying to connect remotely to a server belonging to a farm. I receive this message.

"Cannot verify that the two remote computers belong to the same farm"



When trying to enter the server using the mstsc.exe / admin option I get the following error.

"The access to the requested resource has been denied"

The servers in the farm are server 2012 R2, the group of users who wish to allow remote access to these servers and are added to the local remote access permissions, if the user is an administrator, they can enter correctly. Also with permissions in the "collection"

Request your help to verify that users who belong to this group cannot access the server.

Thank you.

Windows 8.1 and RDS 2019 not working

$
0
0

Hello,

I can log into my RDS session on Windows 10 without issue, however using the exact credentials in the exact network on a Windows 8.1 PC, the RDS session will not connect. 

Are there any other configurations or patches required for 8.1 to work?

Thank You,


Franjisk 

Viewing all 27656 articles
Browse latest View live


Latest Images

<script src="https://jsc.adskeeper.com/r/s/rssing.com.1596347.js" async> </script>