Quantcast
Channel: Remote Desktop Services (Terminal Services) Forum
Viewing all 27656 articles
Browse latest View live

Event-ID 20491 while user logoff with UPD

$
0
0

Hi,

normaly the event-id 20491 issue should be solve with this update: KB3192404 (Preview of Monthly Rollup)

But we have this problem still. (on Windows 2012 R2 fullfixed)

Addressed issue where the user profile disk (UPD) does not get unmounted when a user logs off. Therefore, users get temporary profiles and are not able to work with their own profiles during their next logon. The Event ID 20491 with a description of“Remote Desktop Services could not disconnect a user disk for the user account with a SID of <SID>. The error code is 0xAA.93 (or error Code: 0x91.38)will be logged

The behavior after event ID 20491 is different for us. Either a temporary profile is created or the profiles are given consecutive names such as <username>.001, <username>.002 and so on.

BUT the effect does not occur every time you log off. There are days/hours when the logoff works including deleting the local userprofile!

Hint: The UPD is stored on a SMB V3.x share. Offline-Cache and other tricky features are disabled on this share.

How can I fix this error?

Thanks for your help!


Danke und liebe Grüße Oliver Richter


Max number of servers in RDS farm (Windows Server 2019)

$
0
0

Hello. What is the maximum number of servers in a collection of a RDS farm (Windows Server 2019)?

Thank you!

RDS Reset Password (Security)

$
0
0
RDS Reset Password (Security)

Hi,

I already implemented the RDS Web for password reset with 2016, but I did the basics.

What level of security can we apply to ensure bruteforce attacks for example on the RDS Web page?

What is the best security configuration strategy? DMZ? Use a captcha?

Thank you.

Host linux VMs in Microsoft RDS - VDI

$
0
0

We have all windows in our company but some users need linux for product testing and RnD. Some of our security tools do not support linux like DLP and USB access so we cannot give linux as VM in their laptop/desktop. Can we host Linux (Ubuntu/CentOS/OEL etc) in RDS - VDI (Pooled or personal)? or any plans in near future?


Thanks, Rishi Pandit.

RDS2019 default printer change after disconnection / reconnection

$
0
0

hello guys,

i have a big problem with my rdp users.

context :

server2019 RDS, full update

Printers : i use GPP users for add printers from printer server

@ logon : users have the good default printer

@ logon after logoff : users have the good default printer

@ disconnection / reconnection : users loose the good default printer for another printer of soft printer (microsoft to pdf, or another)

i don't know why server2019 delete all printers at disconnection and recreate after reconnection.


i don't find how to resolve this problem

king regards

Install RDS on an existing MS SQL Server & Application Server

$
0
0

Hello Everyone,

A client of ours has an application for industrial food processing. It's running on a Windows 2012R2 server together with MS SQL Server 2017 (the APP Server). The APP server also has a SAGE50 client with an EDI component for SAGE.

The application's client does not use a client-server software design. Instead, the client exe file is on the APP server and it's is run from a UNC shortcut from each workstation. The latency has increased as we have scaled up, so we installed an RDS server on the same network segment as the APP server to reduce inter-network traffic.

Although the speed and network traffic issues have been resolved by the RDP server, the client executable crashes periodically when it's run from the RDP server. It does works fine when run from Windows 7, 8.1 or Windows 10 desktop PC's.

The developer is saying that in order to use RDP, the RDP/TS has to be integrated into the APP server. He is asking me to install RDP/TS roles on to the existing APP server.

Could installing RDP/TS roles on an existing production server break some of applications?

I am worried about SQL and RDS on the same server. Has anybody seen that before?

Any suggestions?


Miguel Fra
Falcon IT Services
https://www.falconitservices.com

 








The RD Session Host server received large number of incomplete connections. The system may be under attack.

$
0
0

Hello,

When working remotely from home, users recently encountered a remote connection error to their computers: "Internal error occurred."

In Event viewer: The RD Session Host server received a large number of incomplete connections. The system may be under attack.

After searching the web and finding no way, I turn to you for help

Thanks in advance

Blurry App

$
0
0

Hi,

I had fixed a blurry app by setting the compatibility "high dpi" to "Application".

Was OK for at least two users (admin and a regular user). So far so good.

After enabling the RDSH role and restarting the server, the fix doesn't work anymore.

I checked the corresponding key is still there

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\AppCompatFlags\Layers

REG_SZ : <path to myApp>

Value : ~HIGHDPIAWARE

Any hint ?




RemoteApp Connection Spinning

$
0
0

Hello,

Sometimes when connecting to the RemoteApps from RDWeb site connection is freezing and had to manually kill the connecting screen. If I relaunch the application it would work.  The below screen keeps spinning.

RDS is on windows server 2012 R2. When users trying to launch they noticed <g class="gr_ gr_14 gr-alert gr_gramm gr_inline_cards gr_run_anim Grammar multiReplace" data-gr-id="14" id="14">this issues</g>.



Please suggest me how can I fix this issue


Shekar



RDGateway Pluggable Authorization | Local Drive not available

$
0
0

Hi,

I am using RDGateway Pluggable Authorization for multi factor authentication using below sample-

https://github.com/microsoftarchive/msdn-code-gallery-community-m-r/tree/master/Remote%20Desktop%20Gateway%20Pluggable%20Authentication%20and%20Authorization%20Sample

Everything works fine. But the local drives of client machine are not available in RDP machine when used pluggable RDGateway Authorization.

Done all the configuration necessary to allow local drive to be shared.

1. In Rdp file ->Local Devices and Resources.

2. Allow all device redirection in Connection Authorization policy.

While with native RDGAuthorization, it's working fine. I can access the Local Drive of client machine in RDP machine.

Can anyone please help, what am I doing wrong?

Remote Desktop Session Services from a Single VM in Azure for remote 3rd Party Erp solution(Tally)

$
0
0

Hello All,

I need a solution on below:

Is it possible to run Remote Desktop Session Services from a Single VM in Azure and Use Azure AD services instead of provisioning of separate VM as a domain Controller and DNS server.

This has a reference to run Tally ERP(Single User) application from a Azure VM and accessed from multiple user PC. Also to keep in mind that the client will need to buy additional additional RD CAL licenses for multiple remote sessions from their PCs.

As we need to provide cost effective solutions to as many as new probable clients to work from home in these COVD19 situations. So we will have to go with single VM solution to run the application only.

Thanks and Bye

Ranjit S

Problem connecting via RDP

$
0
0

Hello

I have a computer (Mango) that is unable to connect to another computer (Kiwi) via RDP.  Mango is able to remote into all other domain computers and all other domain computers are able to remote into Kiwi.  Mango can ping Kiwi via FQDN and IP and gets a normal response, however RDP tries to connect for a few seconds then says it is unable to connect.

I have tried disabling virusscan and firewall on both computers.  I have confirmed that both computers are using the correct RDP port.  I repaired my windows installation with DISM and sfc.  I still am unable to connect via RDP between these two computers.  Any help is appreciated.

Remoteapp slow on RDS Server 2019

$
0
0

Ok so after battling a few config options I finally have a new RDS environment running. Its on Server 2019 hosted in Azure, sitting behind an Azure WAF v2, with MFA authentication on the Gateway (using NPS extension). 

So evrything is working now, users can connect and all is behaving as it should, except for a small few users who are experiencing performance issues with slow performance, but only with published Remoteapp's. 

Just to confirm, the RDS servers are all very high spec and none of them are remotely approaching resource limits (none even going above 40%). Also one of the test machines experiencing performance is my own Desktop, an AMD Ryzen 9 3900X CPU with 64gb ram, 11gb RAM video card. Im pretty certain the local resources on this desktop are not a problem. However if I try to connect to a published remoteapp the redraw rate is very bad and it appears as if the connection is very laggy. Yet, it I connect to a remote desktop session (same environment, same servers, same everything) the performance is lightning quick. This lag only occurs with remoteapp.

Also to confirm its not a connection speed issue. I have 3 other Windows 10 devices here and performance on remote app and remote desktop session is fine, so theres no bandwidth issues from where Im connecting from.

If it helps, the clients experiencing issues are all Windows 10, fully patched and latest W10 build. However there are many other devices also W10 same build, same patch level that are fine. 

Has anyone experienced this before with Remoteapp's? Any suggestions?

2008R2 RDS Servers Unresponsive - Please Wait for Group Policy Client

$
0
0

In recent months we have had various RDS servers experiencing recurring issues with becoming unresponsive, in the sense that no users are able to log on to the RDS servers until the affected server(s) are power cycled.  

Overview: When the servers experience the issues RDP connection to the affected RDS server(s) will immediately display the "Please Wait for the Group Policy Client" message, and will hang at this message indefinitely until the server is power cycled.  When attempting to connect to the vCenter console of the affected server(s) a logon screen is displayed.  However, when attempting to log on to the console using either a Domain Admin or the server's local Administrator account it will indefiinitely hang at the "Please wait for the User Profile Service..." screen.  

When this issue occurs we are still able to remotely connect to the Event Viewer and Services console of the affected server(s), although we are unable to log on to the server.  The chain of events leading up to the issue in the event log always appears to start with the following unresponsive service error in the System log.  

"A timeout (30000 milliseconds) was reached while waiting for a transaction response from the ShellHWDetection service."

While this is always the first error event that seems to occur, there are also various other services displaying the same errors subsequently.  These events will continue recurring in the log, until the server is power cycled.  

A timeout (30000 milliseconds) was reached while waiting for a transaction response from the ShellHWDetection service. A timeout (30000 milliseconds) was reached while waiting for a transaction response from the wuauserv service. A timeout (30000 milliseconds) was reached while waiting for a transaction response from the BITS service. A timeout (30000 milliseconds) was reached while waiting for a transaction response from the CertPropSvc service. A timeout (30000 milliseconds) was reached while waiting for a transaction response from the Schedule service. A timeout (30000 milliseconds) was reached while waiting for a transaction response from the seclogon service. A timeout (30000 milliseconds) was reached while waiting for a transaction response from the SessionEnv service.

Additional Details: 

- When this issue occurs the CPU and RAM resource utilization on the server will be normal, and there will be a normal amount of user sessions on the server(s).  

- This issue has happened repeatedly for some of the same servers, but has happened for various RDS servers in multiple different 2008R2 RDS environments. 

- The resource utilization on the Domain Controllers is normal, and there are never any error or otherwise suspicious events in any of the logs on the Domain Controllers when this occurs.  

- When domain users log on to the RDS servers some redirected folders are in use at a DFS path.  We have tried restarting the DFS services when the issue occurs to no avail, although DFS was originally not a suspect since the issue only seems to happen to one server at a time.

- The problem seems to only happen to about one server at a time in an environment.  The remaining RDS servers in the farm(s) will allow users to log on to them normally.

- It has been reported that when the issue happens existing sessions for users on the affected server(s) will also become frozen and unresponsive, although we have not had a test account logged on at the time that the issue starts to confirm.  

- We tried disconnecting the NIC on the VM in vCenter so that it would not be able to attempt to contact a domain controller, and then logging on with the local Administrator account, but still get stuck at the same "Please wait for the User Profile Service..." screen.  

- We have tried disabling all GPOs that are linked to the OUs that the servers are in while the problem is happening, but it does not change anything. 

- Aside from the unresponsive service errors, no other obvious error events appear to be present when the problem starts.  

- The services that state show as being unresponsive in the event logs actually appear to be in a running state when the problem happens.  

- There are no individual users who have been logged on to the server each time when the problem happens. 

- The problem seems to have started within around the last 1 - 2 months (the first reports that we are currently aware of began coming in in Mid-October 2017.   

- Aside from regular Windows patching and application maintenance we are not aware of any notable changes in the environments in the recent past.  

We identified older articles which stated that issues with very similar, if not identical, issues had in the past been addressed with certain hotfixes.  However, the hotfixes referenced in the older articles no longer appear to be applicable, as they are outdated, and we have not been able to locate any newer hotfixes for these issues.  

For reference, the old hotfixes that both say that they are no longer applicable when attempting to install them are: 

https://social.technet.microsoft.com/Forums/lync/en-US/2c4b8121-da1c-4c11-b11d-2dff099ba245/windows-server-2008-r2-sp1-rds-hang-and-stop-responding-new-rdp-session-already-connected-session?forum=winserverTS

https://support.microsoft.com/en-us/help/2622802/the-group-policy-client-service-crashes-on-a-terminal-server-that-is-r

https://support.microsoft.com/en-us/help/2653810/security-group-filter-in-group-policy-preferences-does-not-remove-a-us

Has anyone recently seen any issues such as these and been able to identify fixes for them?



2019 RDS CAL

$
0
0
It seems I can create a COLD FUSION reactor easier than buy 2019 Server RDS CALs!  Their are dozens of scam license sites.  Where can you buy 2019 Server RDS CAL.. licenses?

Slow Remote App Launch due to CRL Checking - Fix?

$
0
0

Server 2012 RDS Deployment.

Users have been facing slow remote app launches for months, so when they first log-in to RD Web and launch a remote app for the first time, it will take around 2-4 minutes for the app to open. After spending hours on this , I have found that when logging in for the first time of the day or first time in a while, the Remote Desktop Gateway and RD Broker are trying to access the internet to check Certificate Revocation status using port 80. We do not allow outbound connections to the internet on port 80, so there are around 5/6 processes each time we log-on for the first time trying to reach the internet via HTTP, we then need to wait for these to time out one by one before the app launches. I have seen this first hand, right after the processes timeout, the app launches. I have found this document on MS, which seem to suggest to disable CRL checking, but this did not work. https://docs.microsoft.com/en-us/previous-versions/windows/it-pro/windows-server-2008-R2-and-2008/dd883258(v%3dws.10) I guess my question is, how do I turn this off when using Remote Desktop Services as it is causing a major delay in log-on times, we do not want to open up outbound access on port 80.

I have yet to see a sold resolution to this question asked on technet either. 


RD Gateway with Azure Multifactor Authentication Dont Work - RADIUS Proxy received a response from server with an invalid authenticator

$
0
0
Hi all,

I implemented a RDS lab with 2 Windows 2012 R2 Servers:
- RD WA, RD GW and RD CB roles on the RDS-GW Server (10.150.1.11)
- RD SH on RDS-SH Server (10.150.1.12)
With no MFA authentication, the RDWeb access work very well. When I connect via RDWeb with an test account and open an RemoteApp, the RD GW verify CAP policy, then authenticate the user then verify the RAP policy and finaly the app is open.

Next I installed Azure MFA Server on the RDS-SH server to implement Multi-Factor Authentication. I configured RD GW, NPS and MFA Servers following the steps on http://www.rdsgurus.com/step-by-step-using-windows-server-2012-r2-rd-gateway-with-azure-multifactor-authentication/ (Step By Step – Using Windows Server 2012 R2 RD Gateway with Azure Multifactor Authentication).

Now, when I connect via RDWeb and open a RemoteApp, after aproximadly 10 seconds I receive the MFA call on my phone, I reply with # but RDWeb continues showing the waiting Window with “Starting…” and the remote app don’t open. After 1 minute RDWeb show the message error indicating that can’t connect to remote computer. Meanwhile after the first call I continue receiving more 3 calls from MFA service.

I tested the MFA directly on the MFA Server and it works well with the same test account used on RDWeb access.

Aparently RD Gateway forwards the RADIUS request through NPS to MFA server then MFA perform the two factor authentication sequence with the user (via phone call in my case). User reply, but the MFA server apparently don’t send back an ACCEPT to RD Gateway as expected.

Firewalls on RDS-GW and RDS-SH server are disabled. The RDS-GW server shows 4 times the NPS event ID 28 “The RADIUS Proxy received a response from server 10.150.1.12 with an invalid authenticator.” and 1 time the NPS event ID 38 “The remote RADIUS server 10.150.1.12 has not responded to 5 consecutive requests. The server has been marked as unavailable.”.

I can’t figure out why this doesn’t work.

Any help?

Slow response with lots of collections

$
0
0
Hello,

We have a Large RDS platform, which includes over 500 collections on server 2016, after publishing 5 applications to 150 of the collections we are now getting slow response times via power shell ie Get-RDSessionCollection. Is there a limit to the total number of published applications this does not appear to be documented anywhere?

Operationally the connection brokers plus SQL appear fine memory, disk cpu.

We are planning to roll out the applications to remaining collection shortly apart from a slow response via powershell we have no other problems apart from the power shell slowness.

Thanks

RDP stuck at "Configuring Remote Session" WS2016

$
0
0

Hi. We have a new WS2016 RDS deployment (VMs on Hyper-V):

 - 2x WS2016 RDGW in NLB

 - 2x RDCB in HA configuration

 - couple RDSH servers

The problem is that in 30-50% of the connection attempts via these gateways, the connection is stuck at the "Configuring remote session" message. The connection is never successfully estabilished when this happens and it is closed without any error couple minutes later. When you try again (or just immediatelly cancel the connection and reconnect), the connection may or may not go through.

When this problem happens, I can see there's single HTTP connection on the RDGW that accepted the connection with 0 bytes transferred in either direction. There are no related errors at this time.

Can anyone help? Btw. this problem also happens when connecting to a different single-host RDS deployment through these gateways.

I suspected the problem might be in the NLB, but removing either of the gateways from the NLB configuration (and from RDS farm) doesn't help, the issue is still there.

Rebooting the gateways helps for a short while (hours), but then the issue is back.

There are some other errors on the gateways, but these don't correlate to the connection attempts (event 210, source terminalservices-gateway: "Http transport: IN channel could not find a corresponding OUT channel" with no other details).

RDP clients are various ... W8.1, W10, Mac...

RDP Web Client Not Displaying Correctly

$
0
0

I just installed RDWebclient on our Windows Server 2016. I have it fully patched and have restarted the server since installing again. I uninstalled and reinstalled RDWebclient on the server. However, the web page is not displaying correctly. For instance, instead of display "Username" above the username input field, it says "USER_NAME_LABEL" and for password it says "PASSWORD_LABEL". In the top left hand corner, it says "ALL_RESOURCES_TAB_LABEL". Any help would be greatly appreciated. Thanks! (Sorry, I can't post a picture of it because my account is not validated).

Viewing all 27656 articles
Browse latest View live


Latest Images

<script src="https://jsc.adskeeper.com/r/s/rssing.com.1596347.js" async> </script>