Quantcast
Channel: Remote Desktop Services (Terminal Services) Forum
Viewing all 27656 articles
Browse latest View live

application permissions not working at all in remote access configuration

April 2, 2020, 6:06 am
$
0
0

I trying to explain my setup, i have a fully functioning and working internal RDWEB with published apps, all permissions are working totally fine. (version 2012R2).

Apps only appear when permissions are given etc. call this Domain A

during this current situation with Covid-19 , we want to share the apps to another domain (call it Domain B), which is currently trusted (oneway) we trust the accounts from Domain B.

So we enabled RDWEB in the firewall, and now a few of us who are testing RDS works ok in Domain B, can see all applications that are published even ones i have taken myself off, if i check on our domain A i don't see the apps, but going to rdweb on domain B i see all the apps and can even access them !! its interesting when browsing to RDWEB from domain B it doesn't ask for credentials etc. 

in IIS on the rdweb server Windows authentication is enabled. i don't understand how it can be displaying all the applications and allowing me to access them (when i click excel for example it does ask for my login and opens excel fine but i have removed my self from the app permissions. i am a domain admin on domain A if this has anything to do with it.

any ideas or suggestions would be gratefully received.

many thanks

Mark

Search

Remote Desktop Connection App for Android and iOS with 2FA

March 8, 2020, 10:32 am
$
0
0

Good Day,

I have a remote desktop services deployment using RD Web Access and RD Gateway. I want to secure the RD Web Access portal with 2FA. With 2FA disabled users are able to add the resource feed URL to the Remote Desktop Connection app for iOS and Android and access the published apps on their mobile devices with no issues.

When i enable 2FA the connection to the resource feed is blocked. When i contact my 2FA provider they indicate that they currently do not support the RD Connection app. Their response was:

if one is using the Microsoft Remote Desktop smartphone app to connect to apps published via the remote apps feed hosted by a our 2FA-protected RD Web server, then this will no longer work as our 2FA service for RD Web application blocks access to the remote apps web-feed URLs. 

Does Microsoft support any 2FA service with the RD Connection app?

Long delay to launch first published application in RDS environment

March 9, 2020, 2:59 pm
$
0
0

Good Day,

We have an RDS deployment with the RD Web Access and RD Gateway roles on a single server in the DMZ and two RDS Session Hosts on the internal LAN.

Once we sign into the RD Web Access portal and click a published application (Word for example) it takes on average 26 seconds to open. Subsequent applications within the same session opens immediately.

What can we check/tweak to reduce this initial logon time?


Un-necessary bandwidth usage in Serve 2016

April 2, 2020, 7:09 am
$
0
0

Dear Folks,

I have hosted Server having public IP and I have configured DNS/DC role on it and using clients to use

Remote Desktop connection to service via ADDS users previlages, I'm getting warning from hosting provider that you have cinsume 47 GB data yesterday , so i'm surprised , that when I checking logs there is no one logging to that server but the bandwidth may consume.

Can you guide me how can control/ restrict un-nessary bandwdht usage @ server.

I'm attaching link of Network adapter it's sending  & recieving un-nesssary traffic

https://paste.pics/8IS5K

https://paste.pics/8IS6V

Please help me how can resolve this issue .. 

Thanks 

RD gateway is not reachable after clicking icon published in rds

April 2, 2020, 7:14 am
$
0
0
I am having RDS environment  where 2 web server and 4 gateway and 2 connection brocker and multiple farm , after login to rds website and then clicking the published icon we are getting rd gateway not reachable error. This issue occure for soem users only

Shadow session indicator

April 2, 2020, 7:31 am
$
0
0
Hi.
Users want to know when shadow session starts and when it ends. Red frame around screen or icon on taskbar.
Is there some way to indicate that user session is shadowing?


RemoteApp repeatedly prompting for password

March 30, 2020, 8:51 am
$
0
0
I'm trying to work remotely at the moment, for the first time. I can log into RemoteApp fine, but when I try and open any apps or my desktop I am repeatedly asked for my password, over and over again. What can I do to stop this glitch? I tried a diff browser, I reset internet explorer and rebooted my computer. I'm using Windows 10 Home at the moment, on a laptop that's only a few months old, which I keep regularly updated. Please help, I can't get hold of my work's IT guy!

Black Screen on all new Connections, SessionHost has to be rebooted

June 21, 2017, 2:31 am
$
0
0

hi,

we're suffering from session hosts that produce black screen errors in a RDS 2016 farm.

already connected users can mostly work, all new connections end up with a black screen.

to resolve the error the server has to be restarted.

i can say that

- this error appears after error 1534 (Fehler bei der Profilbenachrichtigung des Ereignisses Delete für Komponente {709E2729-F883-441e-A877-ED3CEFC975E6}. Fehlercode: Das System kann die angegebene Datei nicht finden.) starts appearing in the eventviewer.

- upon checking the registry for this SID i end up at "ProfileNotifyHandler Class app id {E10F6C3A-F1AE-4adc-AA9D-2FE65525666E} inprocserver32, C:\Windows\System32\gameux.dll".

- starting explorer.exe per taskmgr does not open an actual explorer window although the process appears in taskmgr

- tskmgr, eventvwr, cmd can be started without problems

- affected users appear as active in RDS management

- no third party security software is installed

- farm is fully patched

- HKLM\Software\Microsoft\WindowsNT\CurrentVersion\ProfileGUID and ProfileList are ok (no old or .bak entries)

looking forward on how to resolve this without  rebooting the server or a permanent fix

thank you

best regards


Search

Failing to deploy Remote Desktop Services on fresh Windows Server 2019 domain

January 14, 2020, 10:02 am
$
0
0
Hi

I am having trouble deploying an RDS environment. My deployment plan was this:
1. Install RD Connection Broker, RD Licensing, RD Web Access and RD Gateway role on my domain controller (dc01)
2. RD Session Host on my other virtual server (rds01 - fresh install, only joined to domain)

Step-by-step of how I installed this:
(on dc01)
1. Manage > Add Roles and Features > Next
2. Select "Remote Desktop Services installation" > Next
3. Select "Standard deployment" > Next
4. Select "Session-based desktop deployment" > Next > Next
5. Add "dc01.corp.contoso.com" as RD Connection Broker server > Next
6. Add "dc01.corp.contoso.com" as RD Web Access server > Next
7. Add "rds01.corp.contoso.com" as RD Session Host server > Next
8. Select "Restart the destination server automatically if required"
9. Confirm rds01 is online and reachable
10. Hit "Deploy"
* at this point it takes about 5 minutes before the first error shows up

RD Connection Broker role service: dc01.corp.contoso.com - Failed
    Error message: "Failed: Unable to set the RD Session Host server running in redirection mode because the RD Connection Broker server is unreachable."
    Event viewer error: "RD Connection Broker Configuration Failed on DC01.CORP.CONTOSO.COM With Error: Unable to save the RD Session Host server redirection settings."
RD Web Access role service: dc01.corp.contoso.com - Succeeded
RD Session Host role service: rds01.corp.contoso.com - Succeeded

Continuing, I try to install RD Gateway role on dc01:
Step-by-step of how I installed this:
(on dc01)
1. Server Manager > Remote Desktop Services > Overview
2. Click "RD Gateway" (big green plus + sign)
3. Add "dc01.corp.contoso.com" as RD Gateway server > Next
4. Set SSL certificate name to "rdgw.contoso.com" > Next
5. Configm selections > Add
* at this point it takes about 2 minutes before the first error shows up

Remote Desktop Gateway role service: dc01.corp.contoso.com - Failed
    Error message: "Failed: Unable to create a Remote Desktop resource authorization policy on dc01.corp.contoso.com. The error is Object reference not set to an instance of an object.. Please check the eventlog on RD Gateway server for more info."
    Event viewer errors(e) and information(i) (order old to newest)
    Error:          RD Gateway Configuration Failed on dc01.corp.contoso.com With Error: Failed to create RAP for Domain Computers group. Error = 0
    Information:    The resource group "RDG_RDCBComputers" was created.
    Error:          RD Gateway Configuration Failed on dc01.corp.contoso.com With Error: Failed to create new RD Connection Broker Computers group. Error = 0
    Information:    The resource authorization policy "RDG_RDConnectionBrokers" was created.
    Error:          RD Gateway Configuration Failed on dc01.corp.contoso.com With Error: Failed to create RAP for RD Connection Broker Computers group. Error = 0
    Error:          RD Gateway Configuration Failed on dc01.corp.contoso.com With Error: Unable to create a Remote Desktop resource authorization policy on dc01.corp.contoso.com. The error is Object reference not set to an instance of an object.. Please check the eventlog on RD Gateway server for more info.

Now you see the informations doesn't really add up with the errors. If I go to RD Gateway Manager application all RAP and CAP are created as well. However, 

Additional information:
* The environment consists of one domain controller (dc01.corp.contoso.com) and one remote desktop session host (rds01.corp.contoso.com)
* The environment is totally fresh, have only installed AD DS beforehand (was going to use this deployment internally for techs)
* The servers are volume licensed
* Both servers have internet connection
* DNS is working

What I have tried:
* Rebooting
* Re-installing all remote desktop services roles
* Re-installing OS on both servers
* Re-installing domain
* Windows Update
* Disable any GPO that hit the domain controller
* Checked to see if any local group policies exist on the target server
* Installing from PowerShell
* Installing with another domain administrator account
* Installing the role on the rds01 server
* Using DISM to repair from original image
* Quick start deployment
* Standard deployment
* This exact deployment procedure was used at a customer last week, where everything is working just fine.

Does anyone have a clue what is going on? What am I doing wrong...

Thanks in advance.



RemoteApps connect to host, but the App won't launch

April 2, 2020, 12:26 pm
$
0
0

Windows Server 2016 standard - AD Environment - Clients are working from home

RemoteApps worked fine for a while; then we had to create a new certificate because it expired (used for RD connection Broker, RD Web Access, RD Gateway).

Certificate is installed on local machine, put into trusted root.

On some (very few) of my clients machines; the remoteapps will connect; but the app wont launch! (Then the client get disconnected / signe out after a few seconds.) They are machines that worked great before the new certificate.

(Machines are not part of the AD since they are external)

Here are some tests / investigation I did :

  • Not related to Windows edition (happened on a Win 7 pro, Win10 enterprise and some Win10 home)
  • Not related to AD profil the user uses to connect (Profiles work on a computer that doesnt have this problem; and every AD profiles will do the same on a computer affected by the problem)
  • Does not seem to be network related (my own personnal PC has the same issue at my home; but my laptop works fine on my same network.)
  • The remoteapps says it connected to the Gateway; but the app won't launch. (I see the user poping-up on the server; then they get disconnected 1-2 min after.)
  • If I start their application on a computer not affected by the problem; they CAN connected (over me) and see the app. Moreover; all additionnal apps will launch and work once one is working. (from different rdp files)
  • They were able to connect ONCE without problem; then the problem appeared and any profile I try for their computer, result in the same issue.
  • I tried clearing the "cache" in HKEY_CURRENT_USER\Software\Microsoft\Terminal Server Client\Default. But the problem persist.
  • I tried installing an old / different mstsc; to no avail.
  • In one case (my personnal PC who has the problem, apparently); creating a new local Windows profile solved this issue. It didn't on 2 other PC I tried.

This has me racking my brain...

Thanks

Web client SSL issue

April 2, 2020, 12:52 pm
$
0
0

The (third-party) SSL certificate on our RDS server expired. I replaced it with a new one (from same company with same server name). If I connect with a Remote Desktop Connection, and specify the server name and rd gateway, it connects fine. If I connect using the web client, when I select the application to run (after logging in) it says,

Oops, we couldn't connect to "application"

Your session ended because an unexpected server authentication certificate was received from the remote PC. Ask your admin or tech support for help.

Certificate information:
Server Name: CN= name.domain.local
Certificate thumbprint (SHA1):
<hex number string>

Does anyone know what i can check to fix this?

saggy performance internally.

April 2, 2020, 2:52 pm
$
0
0

have a new deployment of server 2019 terminal services.  We are sharing just the applications, not the full vdi, also i have the session host and the gateway/broker as two separate virtual machines using hyper-v.  The session host is using a direct attached graphics card.  The gateway/broker is configured w/ two nics, one internal, and the other in a DMZ.  The session host just has the one internal nic.  

The issues is that when i connect from my internal network, that is when the performance is awful.  The best i can describe it is that it's lagging behind.  For example the calculator app, after i move the mouse over it and click some numbers, over the course of the next 30 seconds i can see just where i moved my mouse all over the app and click the numbers.  Also when i move the app's windows it moves about 30 seconds after i move it.  However if i remote in from the outside world it works perfect.  Hardware performance is not getting taxed at all, it feels very much like a connection thing.  I had meraki verify that all the traffic was staying local on that switch, and the there was no lag coming from the switch, but he did note that he felt there was an excessive amount of udp traffic given the task at hand. 

Any idea's on where else i could even look to trouble shoot this, or better yet a solution>?

many thanks! 

IT guy

Remote Desktop Licensing Manager: Workgroup, Single server, RD Licensing Manager (per device CAL) NOT Issuing License

April 2, 2020, 3:00 pm
$
0
0

QUESTION 1: I setup a Server 2019 single server that serves RD connections. Purchased per DEVICE RD CAL's, more than 3 remote connections work but the RD Licensing Manager does not show the licenses as ISSUED. I know if it is setup as per USER that the counter will not change by design but I have everything set to per DEVICE as I am only using a WORKGROUP and not a DOMAIN.

I followed these directions: https://support.microsoft.com/en-sg/help/2833839/guidelines-for-installing-the-remote-desktop-session-host-role-service

RD Licensing Diagnoser doesn't show any issues. It shows licensing type as per DEVICE

Server 2019 is activated and Online

I tried to upload screenshots but Microsoft says I can't do this until my account is verified. Checked my email but nothing to verify was sent. ???

QUESTION 2: Another peculiarity is on the welcome screen, all I see is OTHER USER and I have to manually type in the username and password of a particular user. I went through all the local security and group policy settings as described elsewhere and everything is defaulted to show usernames. I'm stumped. This behavior only changed after installing the RD Session Host and RD Licensing Manager after reboot.

Much Appreciated during these trying times.


RD Licensing server setup error - "unrecognized response"

March 30, 2020, 7:09 am
$
0
0

Hi all,

I get the following error when trying to activate an RDS Licensing server.

The specifications...

  • Brand new Windows Server 2019 Standard VM
  • Domain joined
  • Server Activated with MAK key via telephone method as this environment is not allowed to get general internet.
  • Proxy configured to allow server access to https://clearinghouse.one.microsoft.com

The error...

I can't find any event logs that correspond to this error message popping up? The only thing I can think is wrong here is the proxy config and or I am missing additional URLs required for successful RDS licensing loading / activation tasks?

P.S> I am also correct in believing I can have many RDS licensing servers in many networks so long as I do not exceed my enterprise agreement RDS user CAL limit as assigned to my agreement?

E.G. when you activate an RDS License server it asks you how many CALS do you want to load into the server...

Thanks in advance...

durrie.

Windows Server2016 RDS CAL license not available

April 3, 2020, 1:47 am
$
0
0

Hello,

for my Windows Server 2016 I installed RDS via Server Manager, roles based installation. The server is deactivated, but still without a license, I first use the grace period. The Windows Server 2016 is used as a workgroup server, Active Directory  is not installed.

At the Local Group Policy Editor I  set  "Use the specified Remote Desktop license server" and the "Set the Remote Desktop licensing mode".



But the RD Licensing Diagnoser indicates an error.

What is missing?

Thanks,

Ottilie

Search

What privledges for Remote Access

April 3, 2020, 3:58 am
$
0
0

Hi,

This is my first post here and I'm also doing my first Powershell script.

Small background to the project. As everyone knows COVID-19 is spreading around the globe and we are suggested to work from home. With this my manger asked me if I could do a dashboard for VPN users. Which I've done in python and php.

But we also have a couple of Direct Access servers which I would like to monitor aswell.

I've found the following cmdlet which does what I want Get-RemoteAccessConnectionthe question I have now is. What privledges does require for me to run this command on a remote server.

I want to set up a Service Account that only have read rights to get the remote access information.

Best Regards,

Robin

Remote Desktop Gateway issue

March 30, 2020, 5:49 am
$
0
0

Hi!

I've installed a Remote Desktop Gateway on Windows Server 2016, it worked perfectly last week. Today some users are having issues trying to connect to their workstations through RDG, but when they try to connect rdp directly (connected to the VPN) it works, and then became available and starts to work trough RDG again. 

Any ideas? 

Thanks!

Windows Remote Desktop Service license backward compatibiltiy

April 3, 2020, 1:56 pm
$
0
0

Hi,

We are using windows service 2019 with RDS CAL 2019. The session host is windows server 2016. This microsoft page shows Windows Server 2016 session host can use RDS CAL 2019. After RDS license server setup and license imported. Notice the windows server 2016 session host check out the license, however the available number under 2019 doesn't get count down shown as below. Should I see available 9 because one is issued out? Is there something configured wrong?

Appreciate someone can help.

Jun




OpenGL and Remote Desktop

January 28, 2011, 9:37 am
$
0
0

We have OpenGL application working on a server computer.  If later we connect via RDP to this server, OpenGL application continues to function without any problems. Obviously RDP just transfers image from server to remote computer.

If we start the same OpenGL application on the same server from RDP session, it runs OpenGL not on server but on the remote computer. Application crashes on operations that require OpenGL 2.0 or higher.

Is there any way to force RDP to run OpenGL code always on server no matter how it was started, directly on server or from remote computer?

Upgrading RDS 2016 to RDS 2019 (Broker cannot be readded to HA)

April 5, 2020, 12:36 am
$
0
0

Hey Guys,

I have a RDS Broker HA setup and wanted to upgrade the first broker to Server 2019. 
I removed the broker from the farm. Maybe i didnt have to do that, but i saw an article telling me to remove the broker from the farm in order to maintain availability to the RDS environment. So i did.
Once removed i upgraded the server to Server 2019. Now, when i try to readd the server to the farm i get a failure message saying "The list of joined servers could not be retrieved on server <servername of 2019>. Priviledge not held".

I wonder what priviledge its talking about? 
Did i brake the setup with the removal of the broker from the farm? I know, once broken, i have to rebuild everything. Is that the case?


Viewing all 27656 articles
Browse latest View live
Search
<script src="https://jsc.adskeeper.com/r/s/rssing.com.1596347.js" async> </script>