Quantcast
Channel: Remote Desktop Services (Terminal Services) Forum
Viewing all 27656 articles
Browse latest View live

Azure MFA with Azure AD and RDS

April 27, 2016, 1:50 am
$
0
0

I have setup the following lab in Azure and i need your help.

A server (Domain controller) and Remote desktop services.

And another server with Multi factor authentication server.

I have setup everything following this one http://www.rdsgurus.com/uncategorized/step-by-step-using-windows-server-2012-r2-rd-gateway-with-azure-multifactor-authentication/

and when im connecting i got the following error.

The user "domain\username", on client computer "xxx.xxx.xxx.xxx", did not meet connection authorization policy requirements and was therefore not authorized to access the RD Gateway server. The authentication method used was: "NTLM" and connection protocol used: "RPC-HTTP". The following error occurred:"23003".

Also on the security log i've got the following

Authentication Details:
Connection Request Policy Name: TS GATEWAY AUTHORIZATION POLICY
Network Policy Name: -
Authentication Provider: RADIUS Proxy
Authentication Server: test.test.local
Authentication Type: -
EAP Type: -
Account Session Identifier: -
Reason Code: 113

Reason: The remote RADIUS (Remote Authentication Dial-In User Service) server group does not exist.

I have setup CAP to allow Domain users... Register the NPS to active directory....

I don't know what else to do.

Can someone help on that?

Thanks


Search

Can't create self signed certificate for RD Gateway

April 21, 2016, 12:05 pm
$
0
0

I'm trying to set up an RD Connection Broker for RemoteApp, but I'm getting an error when I try to create a self signed cert for the RD Gateway:

The self-signed certificate has been successfully created, but RD Gateway cannot store the certificate in the directory C:\Users\myuserid\Documents. Please specify a different directory, and try again."

I tried other directories, all of which I have full rights to, but still no dice. I can't find anything with this error. Any idea how I can get past it?

FWIW, I have no problem logging into this server through RDP.

Thanks.

in which step RD licensing server is contacted

April 25, 2016, 8:16 am
$
0
0

Hello

i need to know in a windows server 2012R2 VDI deployment, the exact step that the RD licensing server is contacted and verified ?

for example imaging a user want to connect to a virtual desktop located on RDVH1.

user ---> RDweb ---> RDCB ---> (RDSH1+RDVH1) (on one server)

whether RDweb or RDCB servers has any thing to do with RD licensing server ?

is it correct to say that only RDSH will contact RD licensing server ?

thanks in advanced

Printers not mapping on TS Session

April 26, 2016, 4:55 pm
$
0
0

Hello,

Please read the whole post before giving answers, because I spent 8 hours of search with no result.

Architecture:

- Print server: Windows 2008r2 : has 3 shared printers

- TS server: Windows 2008r2 ==> Distant

- TS clients: Windows 7 64 bit (notebooks + Desktops)

Everything was working fine the printers were mapped either on the laptops or the desktops until we had power problem on the building, the UPS did not hold for the whole period, So before I turned off the Print Server.

After the power returned, I switched the print server ON:

- The printers are mapped on all the desktops and laptops but:

When the users tried to connect to the TS server the problem begin :

- From the desktops ===> the printers are mapped on the user TS session

- From the Laptops ====> the printers are not mapped on the user TS session.

(I REPEAT: EVERYTHING WAS WORKING FINE BEFORE THE POWER WENT OFF)

I checked everything:

- Drivers on the TS servers match the one on the computers

- The client settings on the TS server

- Permissions on the Spool

- logs on the TS server does not shows errors related to the printers mapping

- On the print server: I see one error 1111 TerminalServices (But the drivers are matching)

-  Restarted the TS server : nothing

I need help to resolve this issue and understand why

Thank you




Network Load Balancing and RD Connection Broker

April 20, 2016, 6:30 am
$
0
0

I have a Dell VRTX server with 2 blades. Each blade has 2 hyperV VMs running on them consisting of - 1xDC, 1xFile/Print, 2xTerminal Servers.

The terminal servers are running Windows Server 2008 R2.

I have setup network load balancing and rd connection broker.

The problem I have is when I connect via my NLB IP it goes in fine, if I disconnect the session and try and connect again via NLB IP it might reconnect me to the same TS again or if it tries to connect to the other TS it times out. I thought this should redirect to the disconnected TS session? This is a problem as I don't want users repeatedly trying to login until it tries to connect them to the TS they had the disconnected session on.

Any help will be greatly appreciated.

Server 2012 R2 no longer serving Remote Connection web page after April 2016 update

April 25, 2016, 11:19 am
$
0
0

We have a Server 2012 install with Remote Web Desktop services enabled. Prior to the April 2016 update, users were able to go to the server's address on the internet, and were provided with a landing page where they could login, then either look at file shares, or connect to a desktop PC.

After the update, users are now presented with a dialog box that says 'The server is asking for your user name and password. The server reports that it is from Digest." The user name and password is accepted, but that's followed with "webpage cannot be found."

I've tried redeploying the remote desktop services, doublechecked the bindings in IIS, doublechecked the permissions in \Windows Server\bin\WebApps, and I can't quite figure out where to go from here.

Anybody else run into this? And how can I restore the old web desktop services?

Thanks

bkd

RDS on 2012 (RD Web link to show Host server to RD into)

April 27, 2016, 7:09 am
$
0
0

I am switching our currently 2008 RDS server over to a new 2012 server. I have it all setup but am looking to replicate the setting on 2008 called "Show a remote desktop connection to this RD Session host server in RD Web Access" under "RD Session Host Server".

Right now I just wanted a way for our users to login to the RD Web Access page and see a link to RD into the current host like we did with 2008. It should not be that difficult but for some reason I cannot figure it out or even search for what I am asking for...lol

Thanks,

Scott

Win32_LogonSession gives sessions which had ended weeks ago on 2008 R2 terminal servers

April 27, 2016, 7:38 am
$
0
0

Hello everybody,

at a customer's site, we monitor how many users are online on several 2008 R2 terminal servers by querying the Win32_LogonSession WMI class filtered by LogonType = 10. However, we get way too many entries, much more than the RDP manager shows. It turned out that WMI gives us entries for sessions which had logged off weeks (!) ago.

How can we get the correct number of RDP server users active via PowerShell on 2008 R2? How do we have to filter Win32_LogonSession correctly? Thanks for any enlightment.

Best Regards, Stefan Falk

Search

How do we migrate some of the remote desktop services (terminal services) licenses from one Windows 2012 R2 server to another Windows 2012 R2 server?

April 27, 2016, 10:14 am
$
0
0

We have one windows 2012 R2 server with 200 licenses available with only 20 terminal services licenses being used currently.

This server is not a license server that we want to licenses from.  We do not have a license server in our enterprise.  And we do NOT want to migrate all the licenses from the source server.  We only need to migrate some of the licenses.  note the server with all the 200 licenses is currently using 20 of these licenses so we want to continue to be able to add terminal services licenses on this server with the 200 licenses.  Note- we do not want to rebuild the licensing server database with the terminal licenses because we have user who use terminal services.

And we have a windows 2012 R2 server which needs some of these licenses.

How do we migrate some of the remote desktop services (terminal services) licenses from one Windows 2012 R2 server to another Windows 2012 R2 server?

dsk






Hyper V 2012 R2 Host & 2 VMs 2008 R2 - Application hangs

April 27, 2016, 11:42 am
$
0
0

Hi -

I have a Hyper V 2012 R2 Host that has 8 different VMs. 2 out of 8 VMs are running 2008 R2 as Terminal servers.

In the terminal server environment, we run a our one application which hangs out in the background even after closing the window. It happens on only that program.

I ran process explorer, process monitor - it doesn't point anything out to why the application is hanging under windows task manager under processes even after closing the application window.

Not sure what/where to take this issue, is it hyper-v? is it Terminal services? 

Thanks.



Access other users redirected printers from a 2012R2 RDS server

April 9, 2014, 6:59 am
$
0
0

Hi,

We recently upgraded a client's server from Win2003 to 2012R2. The server is now hosted externally, and is not a domain controller (workgroup only). 

With the old 2003 server, the Mac and iPad clients using the official remote desktop client were able to print to each other redirected printers. 

Now with the new server, they can only access their own local printers. I saw on the web that adding the users to the "print operator" group should work but that didn't. Even the machine administrator can't see other users printers. 

Any idea ?

Many thanks in advance. 

RDWeb apps keep appearing as RDP files.

April 25, 2016, 8:52 am
$
0
0

Hi All,

Currently have a server 2008 r2 machine running rdsh & rdweb services (no broker or gateway installed).

I recently started customizing our RDWeb page - a few changes i made were to remove the remote desktop access option from the rdweb menu (showdesktop from true to false), comment out the help link once logged into rdweb and added in compatibility options for IE when viewing RDWeb on IE11 - X-UA-Compatible IE=9.

Once i did these i then tried publishing some apps using the App Manager, however now when i publish any apps, as shown in the pictures, they seem to appear as RDP icons even when i dont have any custom RDP options set. I also seem to get 'The Remote computer could not be found' even when executing both the 'paint' file or the custom rdp files i created.

Any help would be much appreciated.

Regards, sas_786

"The connection was denied because the user account is not authorized for remote login"

April 20, 2016, 7:05 am
$
0
0
We have RDS 2012 R2 that consist of;
- 3 RDS Session Host 2012 R2 (rds01.contoso.com, rds02.contoso.com, rds03.contoso.com)
- 2 HA RDS Session Brokers (rdsbroker01.contoso.com, rdsbroker02.contoso.com, HA name = rdsbroker.contoso.com)
- 2 HA RDS Web Access (rdswa01.contoso.com, rdswa02.contoso.com, HA = rdswa.contoso.com)

We create a session collection "remoteapplications" 
HA DNS round robin name = rdsbroker.contoso.com
Trusted 3rd party certificate (*.contoso.com)
No gateway
User Group = Domain Users
Security Settings = Negotiate & Client Compatible
Client settings = no redirection
No User Profile Disk

We configured SSO for domain joined machines as per "http://www.rdsgurus.com/ssl-certificates/windows-2012-r2-how-to-create-a-mostly-seamless-logon-experience-for-your-remote-desktop-services-environment/"
So the GPO's for 
Delegate credentials
SHA1 for rdp file sign
Editted web.config/authentication for the Remote Web Access Server

So SSO is working we start the IE goto rdswa.contoso.com and start the remote app and get the application
But when we login with 6 users we start the IE goto rdswa.contoso.com and start the remote app but most users get the application.
Some users get error "The connection was denied because the user account is not authorized for remote login"

I've checked and the "domain users" is member of the local remote desktop users on all RDS Session Host.
Also this error is not consistent received on the same workstation or for the same user it's at random, so it cannot be a user or workstation problem.
Next to this we drained RDS Session Host server leaving 1 RDS Session Host and same problem occurs for some random user. 
We drained this 1 RDS Sessions Host and enabled another one and exact same issue for another random users.



2012 r2 Server Manger cannot manage RDS: Collections, Host Servers, and Connections won't display

April 1, 2015, 8:20 am
$
0
0

Hello,

We have a 2012 r2 server running RDS publishing a number of RemoteApps.

When we go to the Server Manager and drill down to the Remote Desktop Services area we are seeing a number of the sections that will not display their information and we can no longer manage RDS via Server Manager.

Starting at Server Manager\Remote Desktop Services\Overview the "Deployment Servers" window shows a red banner with "Could not refresh the list of servers"

Going to the Server Manager\Remote Desktop Services\Collections, all three of the windows, Collections, Host Servers, and Connections will eventually display the similar type of error message, stating to check the status of the services for Remove Desktop Connection, Windows Remote Management and Windows Internal Database.

server manager error

 

The server is fully patched, event logs don't show anything of note.

We've rebooted the server and confirmed all those services and all "Remote Desktop *" services are running.

We're still able to access the RDWeb instance to use the published applications. 


This had been working previously, not sure when it last was though as we don't always go into Server manager. We can manage the remoteapps via powershell, but are curious why Server Manager no longer functions.


Any assistance would be greatly appreciated.

thanks...

NO ENOUGH STOARGE TO COMPLETE THIS OPERATION

April 27, 2016, 4:32 am
$
0
0

Hi Sir,

we have window server r2 2012 standard but I am unable to do RDP.Its giving error NO ENOUGH storage TO COMPLETE THIS OPERATION. My ram is 12 GB and HDD is 600GB.  I am unable to do parallel access to this server from five different user account.

Please give your valuable solution as soon as possible.

Thanks,

Anil



Search

Update/Refresh remoteapps on clients

April 28, 2016, 4:42 am
$
0
0

Hi,

Got two collections for RDS. One for remoteapp, one for desktop. When I change/add an app to the remoteapp Collection, the Remoteapp gets displayed the next day on my Clients after the scheduled task (update Connections) is run. This task takes sometimes up to 30 minutes to finish running. (Windows 10 Clients) The task default is run at 00:00. But when the Client starts the task scheduler recognizes it hasn't run, so it runs it for the logged on user.

I am looking for a way to trigger this update/refresh by GPO or something.

Anyone got an idea?

yours sincerly, Robin E. Turpijn Microsoft System Center Specialist @ Atea, Norge.

Windows 2012 R2 Freezes every 2 - 3 minutes and reconnects the RDP session

April 26, 2016, 2:28 am
$
0
0

We have about 15 Windows 2012 R2 servers, virtual and physical

Systems are patched until 14-04-2016.

Eventlogs seems clean.

other systems like Windows 2008 R2 do not have this problem.

    RDS Session Deplyment Fails - Cant associate with RD Management Server

    April 28, 2016, 9:22 am
    $
    0
    0

    I am trying to do a quick start session installation and I am getting this error for the connection broker

    • Current security context is not associated with an Active Directory domain or forest.

    I manually added the roles and its working except it says there is no deployment server.

    I then switched over to using the admin account that was migrated over from the Windows Server 2003.

    I removed the manual installation of the RDS roles. I rebooted, then I tried using a standard session deployment. I am now running into this error:

    • The RD Connection Broker cannot be joined to the RD Management server.

    The active directory services are now non existent as I can't see the database anymore. It says the domain is not available even though it has been migrated over from an old server.

    I am not onsite to reload the database and I am starting to question if the transfer came over successfully because I should be able to cut off the old server and this server will be the primary. It also has the FSMO roles as well.

    Update:

    I restarted the AD DS services and now DNS is encountering an issue with Active Directory services. I tried to open up the Active Directory forest and here is the error message:

    • Naming information cannot be located for the following reasons: The server is not operational.

    I find this very confusing because the server was working yesterday when I took it back to my facility. I just couldn't get RDS to install correctly.



    User Profile Disks with Windows Search

    January 6, 2015, 6:37 am
    $
    0
    0

    We have 2 RDS Servers (2012R2) and work With User Profile Disks

    We use outlook cached mode (Outlook 2013 SP1) because the link to our head office is to slow

    The problem is that the outlook search isn't working properly.

    Every time the users logs on, search indexes are recreated
    This proces never finishes because the server is under a constant load, therefore search never works as it should.

    In eventvwr, we see this error alot:

    Crawl could not be completed on content source <winrt://{S-1-5-21-xxxxxxxxxxxx}/>.

    Context:  Application, SystemIndex Catalog

    Details:

    The parameter is incorrect.  (HRESULT : 0x80070057) (0x80070057)

    Windows Search Index and User Profile Disks

    October 2, 2014, 9:42 am
    $
    0
    0

    Hi All,

    I have two RDS servers (A 2012 and a 2012R2) working with User profile disks and I'm getting what I think is an issue.

    When a user logs on for first time and configures its outlook profile all is indexed, OK.

    But when the user logs off there's an event saying "Windows Search Service indexed data for user 'domain\user' successfully removed in response to user profile deletion.", so I assume that when user logs off, the UPD is unmounted and then the RDS server eliminates their cached index due to a profile deletion.

    Is there any option to not to having to rebuild the index every time the user logs into the server? maybe by storing the index data into their respective UPD? This is so annoying, because the index process needs to index an average of 6GB profile every time the users logs in, and the server performance gets impacted.

    Any response will be appreciated.

    Thank you


    Viewing all 27656 articles
    Browse latest View live
    Search
    <script src="https://jsc.adskeeper.com/r/s/rssing.com.1596347.js" async> </script>