Quantcast
Channel: Remote Desktop Services (Terminal Services) Forum
Viewing all 27656 articles
Browse latest View live

RDS from Internet with MFA/RADIUS with exceptions from specific external IP-adresses

$
0
0

Hi all,

I'm trying to set up an RDS environment where users who are connecting from the internet are provided with Multi-factor authentication, but with the possibility to bypass MFA when connecting from specific IP-addresses.

The MFA-part is working, however, I can't seem to figure out how to bypass MFA for specific IP-addresses.Does any of you have experience with this?

Regards,

Sebastiaan


How can I force a fixed group of Users to connect alwais to a certain Session Host and another group of Users alwais to another certain Session Host ?

$
0
0

In a Windows Server 2016 RDS Session-based desktop deployment, until now I have one only RD Session Host named RD01.

All RDS roles are managed by this server:
- RD Connection Broker
- RD Session Host
- RD Licensing
- RD Web Access

All User's data are stored in the C:\Users folder located in the RD01 (RD Session Host). It is not a share folder.

Now I need to move some Users on a new RD Session Host named RD02.

My goal is to have some Users that still connect with RDS client to RD01 and some Users that connect to the new RD02.
I can manually move the Users's data from RD01 to RD02 for the migrating Users.

My problem is that I can't understand how can I force a fixed group of Users to connect always to RD01 Session Host only and the rest of Users alwais to RD02 Session Host only.

The old RD01 and the new RD02 Session Hosts have their C:\Users folder, not a share.

Please can someone help me?

Thank you in advance,
Ivano C.


Ivano Carrara

RDP Client disconnect results in files unavailable

$
0
0

We have a Windows 2012r2 HyperV Host with 4 x 2012r2 VM's - DC, RDS, Application/storage x 2

Configuration has been in place for a considerable time and was working well until the end of last week. 

Intermittently, 1 - 2 times daily, users receive errors in our ERP application about missing files. On investigation, some files are not accessible from the RDS server (and therefore RDS users). This files are fully accessible from all other servers/LAN clients. The files are located on an application server share and we have been using admin access to the RDS server. The files are showing in the directory listing however any attempt to copy the file(s) results in an error "an unexpected network error occurred". The same file(s) can be accessed/copied etc from all other servers/LAN clients. It is solely the RDS server that cannot access the file(s). 

We have disabled Windows 2012r2 internal firewalls and AV software but so far the only, temporary, resolution is to reboot the RDS server. We can find nothing relevant to this error in the server logs. 

One user has reported that they believe the issue happens after a number of RDS disconnects due to possible intermittent broadband at clients end. However, this has not yet been substantiated. 

Any help would be greatly appreciated.  

Server 2019 RemoteApp (Terminal Services) and Splash Screens (Hang / Stuck)

$
0
0

Hello all,

 

We have been transitioning some of our remote servers from 2012 R2 or 2016 to 2019 when we recently saw this issue. We have an application that is installed on the server and published as a RemoteApp for the users. When the application launches, there is a Splash Screen that shows the version and information about the app while it is loading. As the Login dialog box for the app is opened, the Splash Screen is closed several seconds before it opens. The problem is that the Splash Screen is stuck on the screen. If the Advanced RemoteFX setting in Group Policy is active, the screen will remain in full and if it is disabled, it will leave a Black Box in the exact location that the Splash Screen had been. 

There is another thread about this in Terminal Services and there are no answers or responses since May (except what I have recently added). This is exactly what we are also seeing. (I cannot post the link as the system will not allow me)

 

Really do not want to have to pay Microsoft for an incident to get an answer as to why this is not working as it does in 2012 R2 and 2016 without any issues. The version of 2019 is Version 1809 Build 17763.652. For the Client PC, this happens with Windows 10 Version 1809 Build 17763.503 and Windows 7 Version 6.1 Build 7601 SP1.

Any help would be appreciated.

 

Thank you,

Stephen

WMF logo in header doesn't show up in Remote Desktop session

$
0
0

We use WMF files for our logos in the header of our documents. These go back maybe 10 years.

I have a few users that, when they Remote into their office workstations (Dell Precisions, Windows 10 updated, 32GB RAM - decent specs) and they open a Word file (both .doc and .docx) they do not see the WMF logo. They say they can click it like it's there, but it doesn't display and they can't print it to PDF either (and it doesn't display in the print preview dialog either).

I as an admin have logged into their machine under my own account, and I can see the WMF logo in all documents.

I then had the user log into MY computer in the office (same spec and same general office image) and the user STILL cannot see the graphic.

We have compared Remote Desktop settings and they all match. We are using SonicWall's NetExtender for our VPN connection.

Can anyone think of why this might be happening? Could the WMF be tripping a security something or other on a user account and not on an admin account?

Win 10 1903-1909 RDP (Remote Desktop) not retaining window/taskbar positions on reconnect (multiple monitors)

$
0
0

Hello,

This is still a problem since windows 10 update 1909 20-1, originally 1903,  so I'm branching out into other forums.  Please excuse the duplicate posts.

[Not-so-]Recently my remote systems were updated to windows 10 1903 and since then every time I reconnect (hit the close button, re-establish a remote desktop session) all of my windows, and the task bar, that I re-locate to my other monitors are all crammed back on the center monitor.  I have three monitors.  Note that this all worked fine before this 1903.



Setup (can provide exact details if needed):

Main computer:
Win 10 pro 1909 20-1  (originally started happenign on 1903) 
i7 8700k
nvidia 1060
3 monitors (1080p, 1440p, 1440p)

Remote Computer 1:
Windows 10 pro 1909 20-1  (originally started happenign on 1903) 
i7 4770
intel integrated graphics
2 Monitors (1080p, 1080p)

Remote computer 2:
Windows 10 pro 1909 20-1  (originally started happenign on 1903) 
xenon 13...
AMD hd 400 or something (dell)
No monitors currently (headless)

Remote computer 3:
Windows 10 pro 1909 20-1  (originally started happenign on 1903) 
i7 8700
intel HD 600 integrated
No monitors currently (headless), have tried with single monitor connected 1080p


Newer example before and after pictures from Main Computer to Remote Computer 3 after connecting, organizing, and simply closing/disconnecting the remote session (x button) and re-connecting:
#1: https://i.imgur.com/cYYasFy.png
#2: https://i.imgur.com/opqmeF9.jpg



Things I've tried:
 - I upgraded all of my computers/VMs to 1903 originally and kept them on the same version since then (currently 1909 20-1).
 - Checked graphics drivers are up to date on all PCs.
 - I tested remoting in from two other computers on windows 10, one with two monitors (both 1080p), one with three (I believe they are all 1080p), same issue.
 - I looked at the windows logs on the computers and there doesn't seem to be any error logs created by the remote connection event (like a graphics driver crash or similar)
 - I ran sfc and similar to check for corruption and nothing of note came up anywhere.

Observations:
This seems similar to what happens when you clean install a graphics driver where it bumps to one monitor low res and back.
I am aware of the black screen issue with RDP and 1903.  The fix is to use a default windows display adapter which only supports low res and one monitor so its kind of pointless to try that.
Given the range of hardware spanning 4 generations it seems unlikely to be a "old computer, not compatible" issue.

Links to other posts as they have replies with potentially useful info on them:

https://social.technet.microsoft.com/Forums/en-US/5128b7f0-d2d2-43fb-8076-674b6aad1658/win-10-1903-rdp-remote-desktop-not-retaining-window-positions-or-task-bar-positions-multiple?forum=win10itprogeneral

https://answers.microsoft.com/en-us/windows/forum/windows_10-networking/win-10-1903-rdp-remote-desktop-not-retaining/4855e9f2-a775-4bc1-94be-f5f408aee87f?messageId=978adfdb-b732-4f2a-a7f4-28f261663fe8&auth=1


Any help or nudge in the right direction as to where I should look next would be appreciated.


Thanks for your time,
"Reload"

      

2012 RD Gateway Server Sessions Performance

$
0
0

 Is there any way to view individual connection performance (what resources each connection is using) on an RD Gateway server?

I use RD Gateway manger to view active connections but it does not show how much CPU or RAM activity for each connection / session. Is this information available on the server or  through a third party app?

RemoteApp Event 1026

$
0
0

WS2012 RDSH/RDCB/RDG/RDWEB. The RDSH is dedicated; other RDS roles are on another server.

On the RDSH, the logs have many of these events:

Log Name:      Microsoft-Windows-RemoteApp and Desktop Connections/Admin
Source:        Microsoft-Windows-RemoteApp and Desktop Connections
Date:          4/10/2016 11:50:36 PM
Event ID:      1026
Task Category: None
Level:         Warning
Keywords:     
User:          DOMAIN\Username
Computer:      RDSH.DOMAIN.LOCAL
Description:
The installation of the default connection has been cancelled. A default connection cannot be used on a system that is part of a Remote Desktop Services deployment.

User: DOMAIN\Username

They repeat every 1.5-2 hours for each logged on user.

My web searches so far have turned up only one way this can happen: If a user tries to use RemoteApp and Desktop Connections to set up a feed from the RDCB...but that's not happening.

Misconfiguration? Or just log noise?

TIA



RDP with SSL Certificate Issues

$
0
0

Our server is configured with Secure RDP certificate from an Internal CA.

When we connect to the servers it works flawlessly from the old Remote Desktop application (mstc.exe), but when trying with the New Remote Desktop App (Windows Store) and iOS devices (even though the CA and Subordinate CA were successfully imported as a Profile and granted full trust on the devices, it reports certificate issues before connecting!

from the computers it says: "It might not be safe to connect to this PC: certificate revocation unknown"

from the iOS devices it says: Not Verified"

Both shows the proper certificate (with the correct thumbprint)

Any help would be greatly appreciated!

VDI RDS Stop redirection of Print to PDF, XPS Document writer and other printers

$
0
0

Hi Guys,

So the setup first. 

Windows 2012 R2 VDI environment running windows 10 desktop. Windows 2016 Gateway and Webserver. This is all working correctly. I have also setup two RDS Profiles to Allow only some user to get printer redirect and block other users, which is working correctly. 

The issue I have is for user that are getting there printers directed I am getting multiple printer redirect that are windows standard printer. EG Microsoft printer to PDF, Microsoft XPS Document Wrinter, send to onenote 16

What I would like is for only a real printer to be redirected, or a way to stop at least the microsoft PDF, XPS printer from being redirected.

If anyone has a method to do this I would love to hear it?

Thanks

Craig 


Craig G

Best practice in Publishing all in one RDSH/Terminal server roles to the internet for remote workers?

$
0
0

Hi All People,

I have deployed the new Windows Server Terminal Server across 5 of my data centre location to support remote workers.
https://docs.microsoft.com/en-us/windows-server/remote/remote-desktop-services/rds-deploy-infrastructure

The above is one of the server configurations that is deployed in my internal network and then access via the browser: 
https://RDSH-VM01.domain.com/RDWeb/
https://RDSH-VM02.domain.com/RDWeb/ 
...
up to https://RDSH-VM05.domain.com/RDWeb/


Can anyone please confirm if the above is secure and can be deployed since there is no Best practice documentation to follow?

If not what is the suggested ways to deploy to allow secure remote users to login while minimizing the cost and server deployment?
Thank you in advance.


/* Server Support Specialist */

Remote desktop users groups members unable to authorized for domain users

$
0
0
The connection was denied because the user account is not  authorized for remote login.  error when accessing the remote desktop form domain users.

RDS gateway unresponsive

$
0
0

Hi,

Just configured Some RDS Site and I noticed that some times the RDS gateway is not redirecting any connections to the RDS session hosts.

the gateway servers had also the CB role. And it is a farm. It can work for weeks and than sudden the GW shows the Name instead of the IP a reboot helps but this is not a great solution.

First I thought it is the load so I used a bigger VM <> nope

Made sure the DNS and IP layers are ok <> nope

Upgraded the maxports en TCPIP stack <> nope had around 2000 connections

IIS worker process and application pools fixing <> nope 

And the strange thing is it happened during heavy load but also with only 2 users.

the screenshot is from the connection broker. and there are no event errors that makes this most frustrating.

The gateway page is running in debug mode but even there is no error as the user can connect to the gateway but not point the user to the right server.

https://robertsmit.wordpress.com/


Greetings, Robert Smit Follow me @clustermvp http://robertsmit.wordpress.com/ “Please click "Vote As Helpful" if it is helpful for you and Proposed As Answer” Please remember to click “Mark as Answer” on the post that helps you

RemoteApps connect but wont launch after certificate renewal

$
0
0

*EDITED AS INITIAL INVESTIGATION WAS WRONG*

Windows Server 2016 standard - AD Environment - Clients are working from home

RemoteApps worked fine for a while; then we had to create a new certificate because it expired (used for RD connection Broker, RD Web Access, RD Gateway).

Certificate is installed on local machine, put into trusted root.

On some of my clients machines; the remoteapps will connect; but the app wont launch! (Then the client get disconnected after a few seconds.) They are machines were it worked great before the new certificate.

Here are some tests / investigation I did :

  • Not related to Windows edition (happened on a Win 7 pro, Win10 enterprise and some Win10 home)
  • Not related to AD profil the user uses to connect (Profiles work on a computer that doesnt have this problem; and every AD profiles will do the same on computer affected by the problem)
  • Does not seem to be network related (my own personnal PC has the same issue at my home; but my laptop works fine on my same network. NOTE : My laptop is not on their AD)
  • FOR ALL : the remoteapps says it connected to the Gateway; but the app won't launch. (I see the user poping-up on the server; then they get disconnected almost instantly.
  • FOR ALL : If I start their application before on a computer not affected by the problem; they CAN connected and see the app. Moreover; all additionnal apps will launch (from different rdp files)
  • FOR ALL : They were able to connect ONCE without problem; then the problem appeared.
  • I tried clearing the "cache" in HKEY_CURRENT_USER\Software\Microsoft\Terminal Server Client\Default. But the problem persist.
  • In one case (my personnal PC who had the problem); creating a new local Windows profile solved this issue. It didn't on 2 other PC I tried.

This has me racking my brain...

Thanks

(Sorry for original title who was wrong)

RemoteApp Launch Timeout

$
0
0

Hello all,

We've been having an issue lately with a specific app we use over RemoteApp - it's essentially a program built inside of FileMaker.
When people launch the RemoteApp, the FileMaker client can sometimes take 10-15 seconds before it actually shows any GUI (but the process launches immediately). When running as a full Remote Session, or directly on the server, this is no problem. However, it seems when that GUI doesn't show fast enough, the RemoteApp Connection Times out (The icon in the System Tray that shows we're connected to a Remote App Session disappears as well). If they relaunch the RemoteApp (via the RDP file), the process is already running since the user session was just disconnected and not logged off, and the app is fine.

It's not really too much of an issue, but obviously it does cause some frustration with users. I've been searching for an answer, but I can't seem to find one. Is there a configurable timeout for the RemoteApps that I can set?

This is in a Domain Environment.
All the client machines are running Windows 10 Pro. Servers are running 2016 Standard in a Hyper-V environment.
The app is FileMaker Pro 17 Advanced.

Any thoughts?


Issued CAL for Windows Server 2012 are Under reported on Licensing Manager

$
0
0

Hi ,

Recently we switched our terminal Server Licensing from 2012 to Server 2016 say server name (XXXX)

We have about 28 Servers which have the Above server (XXXX) configured to provide licenses for users.

The Number of concurrent users logged on is >300 and all our servers are 2012.

The number of CAL usage reported in around 75 .

We would like to know why this is under reported on the Licensing Manager


RDS Password Changes

$
0
0
When a password is expired RDWeb works to change it and passes the username but Webclient won't post Username to Password.aspx. It posts the domain but there isn't a username and the username form field is disabled. How can I make the username pass to the password.aspx with the domain?

Specify Access Database in RemoteApp RDP

$
0
0
I am trying to get Access to open a specific file when launching a RemoteApp.  I am using the following argument when creating the RDP.

 D:\Programs\%USERNAME%\folder\file.ade

Access reports that the file is not available.   It works through a shortcut on the desktop.  Does RemoteApp not recognize the %USERNAME%? 



P.S.  I have tried creating a installer with the same results. 

RDS Collection - The Connection Cannot Be Completed Because The Remote Server That You Reached is Not The One You Specificed

$
0
0

I have deployed a pretty simple RDS farm:

Server A hosts the RD Connection Broker, Gateway, License Server, and Web Access

Servers B, C, and D host the Sessions

After installing the roles, I have created a Collection and put Servers B, C, and D in them.  As soon as I add them, if I try to RDP to Servers B or D, I get an error:

The connection cannot be completed because the remote computer that was reached is not the one you specified.  This could be caused by an outdated entry in the DNS cache.  Try using the IP address of the computer instead of the name.

If I use the IP, it redirects me to the Server C which is already working.  If I try to use my Hyper-V console, it launches and then closes out.  Is this expected behavior?  As soon as I remove the Collection, I can RDP to the servers in a typical fashion.  Please advise.  Thanks.

remote desktop licensing service on windows server 2016 keeps crashing

$
0
0

Hello,

I have 3 standalone licensing servers in my environment, no RDS deployment.

All three of them are Windows 2016.

On all of them, the Remote Desktop Licensing service keeps crashing since 2 weeks or so.

Here is what i get in the Application log:

Faulting application name: svchost.exe_TermServLicensing, version: 10.0.14393.0, time stamp: 0x57899b1c
Faulting module name: lserver.dll, version: 10.0.14393.2155, time stamp: 0x5a9e240e
Exception code: 0xc0000005
Fault offset: 0x000000000002cb8d
Faulting process id: 0x13e4
Faulting application start time: 0x01d604db1c796fa3
Faulting application path: C:\Windows\system32\svchost.exe
Faulting module path: c:\windows\system32\lserver.dll
Report Id: ebc7fb84-ad19-4183-9f74-c96c3ab9703a
Faulting package full name: 
Faulting package-relative application ID: 

I did check with sfc /scannow and Dism /Online /Cleanup-Image /ScanHealth on all the servers, no issues found.

Also checked with Infosec team regarding any policy update on the antivirus and file audit, no changes there.

No windows patches have been installed in that time period as well.

What else can i check?

Thanks in advance!

Viewing all 27656 articles
Browse latest View live


<script src="https://jsc.adskeeper.com/r/s/rssing.com.1596347.js" async> </script>