Quantcast
Channel: Remote Desktop Services (Terminal Services) Forum
Viewing all 27656 articles
Browse latest View live

RD Web Feed does not work anymore after uninstalling .net Framework 4.6.1 (KB3102467)

March 2, 2016, 4:09 am
$
0
0

Hello,

it is already known that RD Gateway Manager crashes in clr.dll if .net Framework 4.6.1 (KB3102467) is installed on Windows Server 2012 R2.

However, when uninstalling KB3102467 RD Gateway Manager is working again as expected but the RD Web Access Feed service does not work anymore.

When trying to add RD feed from /RDWed/Feed/webfeed.aspx I get the following warning in the Application Log and an error connecting to work resources on the client system.

Event code: 3005

Event message: Es ist eine unbehandelte Ausnahme aufgetreten.

Event time: 02.03.2016 12:59:41

Event time (UTC): 02.03.2016 11:59:41

Event ID: 312941b716b442c1a68b6fffa8445d72

Event sequence: 2

Event occurrence: 1

Event detail code: 0

Application information:

    Application domain: /LM/W3SVC/1/ROOT/RDWeb/Feed-1-131013935663217676

    Trust level: Full

    Application Virtual Path: /RDWeb/Feed

    Application Path: C:\Windows\Web\RDWeb\Feed\

    Machine name: PIHRDG1

Process information:

    Process ID: 3148

    Process name: w3wp.exe

    Account name: IIS APPPOOL\RDWebAccess

Exception information:

    Exception type: MissingMethodException

    Exception message: Methode nicht gefunden: "Void System.Security.Claims.ClaimsIdentity..ctor(System.Security.Claims.ClaimsIdentity)".

   bei System.Web.Security.FormsIdentity..ctor(FormsIdentity identity)

   bei System.Web.Security.FormsIdentity.Clone()

   bei System.Security.Principal.GenericPrincipal.AddIdentityWithRoles(IIdentity identity, String[] roles)

   bei System.Web.Security.FormsAuthenticationModule.OnAuthenticate(FormsAuthenticationEventArgs e)

   bei System.Web.Security.FormsAuthenticationModule.OnEnter(Object source, EventArgs eventArgs)

   bei System.Web.HttpApplication.SyncEventExecutionStep.System.Web.HttpApplication.IExecutionStep.Execute()

   bei System.Web.HttpApplication.ExecuteStep(IExecutionStep step, Boolean& completedSynchronously)

Request information:

    Request URL: https://rd.pih.at:443/RDWeb/Feed/webfeed.aspx

    Request path: /RDWeb/Feed/webfeed.aspx

    User host address: 10.0.1.254

    User: 

    Is authenticated: False

    Authentication Type: 

    Thread account name: IIS APPPOOL\RDWebAccess

Thread information:

    Thread ID: 8

    Thread account name: IIS APPPOOL\RDWebAccess

    Is impersonating: False

    Stack trace:    bei System.Web.Security.FormsIdentity..ctor(FormsIdentity identity)

   bei System.Web.Security.FormsIdentity.Clone()

   bei System.Security.Principal.GenericPrincipal.AddIdentityWithRoles(IIdentity identity, String[] roles)

   bei System.Web.Security.FormsAuthenticationModule.OnAuthenticate(FormsAuthenticationEventArgs e)

   bei System.Web.Security.FormsAuthenticationModule.OnEnter(Object source, EventArgs eventArgs)

   bei System.Web.HttpApplication.SyncEventExecutionStep.System.Web.HttpApplication.IExecutionStep.Execute()

   bei System.Web.HttpApplication.ExecuteStep(IExecutionStep step, Boolean& completedSynchronously)

Custom event details:

Solution:

After Uninstall KB3102467 uninstall these .net Framework Updates as well (probably all .net Framework Update for 4.6.1 need to be uninstalled!)

Per 18-Mar-2016 on German Windows Server 2012R2 these are:

KB3102473

KB3122660

KB3127231

KB3098785

KB3135998

Best Regards,

Lothar

Lothar Lindinger


Search

RemoteApp disconnects

May 4, 2016, 1:35 am
$
0
0

We encounter a reconnection problem to disconnected RDP sessions.
We have 9 users connecting to a RemoteApp this works.
All the 9 users close the app and leave a disconnected session, disconnected sessions are not logged off and is set to 'Never'.
When all the 9 users reconnect to the RemoteApp approx 6 to 8 users reconnect to their disconnected, we see on the broker it redirects them to their disconnected session on the terminal server.
But approx 1 to 3 users are redirected to their session by the broker to their session on the terminal server but they get almsot disconnected instant , the remoteapp does not start/open.
When we click for a second time on the remoteapp in the RDWeb it opens instant.

In eventvwr on the TS we see "The Desktop Window Manager has exited with code 0xd00002fe"

Problem: broker redirects user to their session on the TS but user gets disconnected.

What we tried:
- Use TCP only for RDP
- NTLM v2
- installed all updates on all TS servers
- installed all applicable recommended hotfixes on all TS and broker and RDweb server
- disabled NLA
- disable Receive Side Scaling 
- disable chimney
http://support.citrix.com/article/CTX117374


mstsc /multimon and 2x 4k displays

June 25, 2015, 12:56 pm
$
0
0

Hi,

I'm trying to understand the limits of the screen resolutions of the mstsc /multimon option of the remote desktop client. I have 2 displays at 3840x2160, Win8.1Pro with a 2012R2 RDSH server. If i understand it, the supported resolutions are 4096 X 2048 per monitor with a maximum of 16 monitors, those were the specs for Win08R2 in 2009 at least.

But i have some results that are a bit puzzling to me;
- if i use 2x 3840x2160 with /multimon, i only get one RDS display
- if i set my main display to 2560x1440 and the second to 3840x2160, /multimon works as expected (showing 2 RDS displays)
- if i set my secondary display to 2560x1440 and the main to 3840x2160, i only get one RDS display.
- if i use /span, i get a session with 7680x2160 (not sure thats relevant, but mentioning it).
- if i use xfreerdp on ubuntu, i get the same results.

So why can't i use 2x 3840x2160 and why does it work when i set my main display to 2560x1440 (with the second being 3840x2160). Can anyone enlighten me?

Trouble showing 2 monitors with 4K resolution using Remote Desktop Services (Windows Terminal Server 2012) from Windows 10

November 30, 2015, 8:23 am
$
0
0

Hi,

I have installed 2 monitors with 4K resolution on my Windows 10 PC. I have tried to get both screens to work bye using Remote Desktop Services on at Terminal Server (Windows 2012 Server). It Works verry well on the Windows 10 PC. I have check the button for Connect all screens.

It will only Connect 1 monitor with this high resolution.

If i reduce the resolution on one monitor (one with 2560x2048 and one with 3840x2160), then both monitors will work in the Terminal Server Connection. But this is not good to work with.

It seems that the Remote Desktop Connection can`t use 2 monitors with 4K resolutions (3840x2160)?

Anybody that has a solution for this?

Windows Server RPCSS service used all of my memory.

May 9, 2016, 11:07 pm
$
0
0

Hello.

My Windows Server is so slow and when I open it then it show me that "RPCSS" service use more than %80 of my Physical memory :

How can I solve it? I used Windows Server 2008 R2 and I can't change it.

Thank you.

Failed Logon Attempts on RD Gateway

May 11, 2016, 7:24 am
$
0
0

We have a terminal server farm configured with a few RDS session hosts, and a gateway server. All servers are 2012 R2. The Gateway server is named "RDGateway". The Gateway server hosts the roles of connection broker, gateway, and RDWeb. 

In our monthly audit reports we see there is a very high volume of failed login attempts on the gateway server using the computer name account. Our reports show the account of 'ourdomain\RDGateway' has had over 2000 failed login attempts over the past month. 

It is normal for us to see user accounts have some failed login attempts as it is usually a legitimate authentication failure (ie wrong password). However, we are concerned about the high number of failed attempts, and not sure how to track as it shows the computer account, not a user name. 

Is this normal expected behavior for a public facing gateway server? I was considering throwing on the EVLWatcher software but was interested in opinions first.

The event shown thousands of time is below:

-----------------

An account failed to log on.

Subject:
Security ID: NULL SID
Account Name: -
Account Domain:-
Logon ID: 0x0

Logon Type:3

Account For Which Logon Failed:
Security ID: NULL SID
Account Name: RDGateway$
Account Domain:OURDOMAIN

Failure Information:
Failure Reason:An Error occured during Logon.
Status: 0xC000006D
Sub Status: 0x0

Process Information:
Caller Process ID:0x0
Caller Process Name:-

Network Information:
Workstation Name:RDGateway
Source Network Address:-
Source Port: -

Detailed Authentication Information:
Logon Process:
Authentication Package:NTLM
Transited Services:-
Package Name (NTLM only):-
Key Length: 0

This event is generated when a logon request fails. It is generated on the computer where access was attempted.

The Subject fields indicate the account on the local system which requested the logon. This is most commonly a service such as the Server service, or a local process such as Winlogon.exe or Services.exe.

The Logon Type field indicates the kind of logon that was requested. The most common types are 2 (interactive) and 3 (network).

The Process Information fields indicate which account and process on the system requested the logon.

The Network Information fields indicate where a remote logon request originated. Workstation name is not always available and may be left blank in some cases.

The authentication information fields provide detailed information about this specific logon request.
- Transited services indicate which intermediate services have participated in this logon request.
- Package name indicates which sub-protocol was used among the NTLM protocols.
- Key length indicates the length of the generated session key. This will be 0 if no session key was requested.

------------------

How to set up remote desktop licensing mode in windows server 2012

September 5, 2012, 5:18 am
$
0
0

Hi,

I've deployed yesterday a windows 2012 server (RTM) and set up the license server for my 10-CAL licenses. That's ok.

But I can not see a way to point my server to see the license server. Every time I log in, I receive a message that the RD services will expire in 119 days.

Using the diagnosis tool it says that licensing mode isn't set up.

Where I can find the tool to set up this licensing mode? In windows server 2008 this question was asked in the setup wizadr.

Thanks a lot!

Ricardo Almeida

Deployment of License Server for 2012 via PowerShell

May 4, 2016, 10:41 am
$
0
0

Through reading web pages and this forum, I have found that you can configure a license server by doing the following...

cd Import-Module ServerManager
Add-WindowsFeature -Name RDS-RD-Server -IncludeAllSubFeature -Restart
Add-WindowsFeature -Name LicenseServer
cd RDS:LicenseServer\Configuration\
set-item FirstName -Value John
set-item LastName -Value Doe
set-item Company -Value Acme
set-item CountryRegion -Value "United States"
cd RDS:LicenseServer
set-item .\ActivationStatus -Value 1 -ConnectionMethod AUTO -Reason 5
cd RDS:\LicenseServer\LicenseKeyPacks
new-item RDS:\LicenseServer\LicenseKeyPacks -InstallOption INSTALL -ConnectionMethod AUTO -LicenseType AGREEMENT -AGREEMENTTYPE 0 -AGREEMENTNUMBER abc -PRODUCTVERSION 2 -PRODUCTTYPE 1 -LICENSECOUNT 5

but I can't find descriptions for the settings for the last command?  what are they

Search

Need help for estimated hardware requirements for RDS

May 11, 2016, 3:37 am
$
0
0

Hello,

I'm looking for some hardware requirements to run Remote Desktop Services for about 20 users who generally run simple applications like Microsoft Office (Word and Excel), Internet Explorer and Google Earth. Anyone who can help me estimate the necessary hardware requirements for this setup? Or anyone who can refer me to something where I can calculated my hardware needs?

Much appreciated!

Nicolai

Server 2008 RDP security

May 11, 2016, 8:54 am
$
0
0

I recently had a PCI Compliance scan on our system we had one vulnerability that I am having issues with.  When the scan was done this is what came up.

Microsoft Windows Remote Desktop Protocol is affected by a private key disclosure vulnerability.

Now I have added a 3rd party certificate for extra security and have set the Security layer to SSL (TLS 1.0) and the Encryption level to high.

I don't have the "Allow connections only from computers running Remote Desktop with Network Level Authentication" check box ticked off but I didn't think that would change anything.  If I do check that off what settings would I have to do on the users side.  Last thing I want is to have the user not be able to get onto the system.

If you know of any way of fixing this please let me know so I can get things cleared up and not have to worry about having this issue.

I have attached a picture of how I have my settings set up for our RDP.  We are currently using Windows Server 2008

Configuring end to end SSO in an 2012 RDS environment.

May 11, 2016, 12:20 pm
$
0
0

Our long term goal is to configure RDS to work with  Kerberos Authentication as provided by our APM module in our F5 Big-IP.  As we see it the first step is to get RDS to function by itself with Kerberos authentication End to End without password prompts.  We have tried following multiple documents on the web, but none of them get us to where we want to be. 

We currently have one Windows 2012 R2 test server providing the Web, gateway, broker and session host roles.  We are testing with Windows 10 clients.  We are able to get RDWeb to do Windows Authentication, but once that works we get prompted for credentials when we launch an application. 

Is this configuration even possible?

Thanks for your Help

Brent

Server 2012 and The task you are trying to do can't be completed because Remote Desktop Services is currently busy.

October 17, 2013, 10:14 am
$
0
0

We have experienced this in the past on 2008R2 servers and have resolved it by installing: kb2661332

This is occurring on Server 2012 and I do not see any hot fixes specific to this issue.

I believe we have exclusively seen this occur to users reconnecting to disconnected sessions. New users can login fine. The disconnected users cant until the server is rebooted. It appears to be erratic as to when it occurs.

Any help would be appreciated.


Server 2012 RDS: The publisher of this RemoteApp program can't be identified.

December 13, 2012, 1:13 am
$
0
0

Can't find any info about this that relates to Server 2012.

I have three Server 2012 VMs: Connection Broker, Web Access and Session Host. Client PC is Windows 7. All joined to same Active Directory.

I've used my Enterprise CA to generate a certificate for the web server and installed that and have configured the PC to get its RemoteApp programs from the web server - they're showing on the Start Menu.

When I click on a RemoteApp on the Start Menu I get a warning box appear:

RemoteApp
The publisher of this RemoteApp program can't be identified. Do you want to connect to run the program anyway?
This remoteApp program could harm your local or remote computer. Do not connect to run this program unless you know where this program came from or have used it before.
Publisher: Unknown publisher
Type: RemoteApp program
Path: calc
Name: Calculator
Remote computer: rdsconnection-broker.fully.qualified.name
[ ] Don't ask me again for connections to this computer

I don't know how to get rid of this. None of the options mentioned for resolving this for Server 2008 work as the things they talk about changing/configuring don't exist on Server 2012. As you can see, I'm publishing a very basic built in application at the moment.

It seems as though the connection broker server needs configuring with a certificate or something, but I can't see anything in the RDS section of the Server Manager GUI to do this.

NLA works fine from the Windows 7 PC to all three servers via a normal remote desktop connection, but clearly RemoteApp is not happy. I don't even know if this is an NLA issue or something else.

Please help/advise.

Configuring Windows Server 2012 R2 for Remote Desktop Services

May 11, 2016, 1:45 pm
$
0
0

I have installed all the required components for RDS, and have purchased a 5-user RDS CAL.  However, when I try to configure the services, and run the wizard, I get a WinRM error involving the use of HTTPS for transport if the client computers are not a part of a domain.

We have three laptops and a couple of desktops that users want to remote in to the server from, and none of these individual computers are joined to a domain yet, because we don't have a local server.  We are installing a peer-to-peer network right now, and using RDS to remote into a VPS with the software we want to run.  I am NOT a Windows Server expert, by any stretch of the imagination.

Can someone walk me through setting up RDS on the server when the client computers do not belong to a domain? 

Kevin Stephenson

Glenwood Springs, Colorado

Problems with downgrading 2012 RDS CAL to 2008 R2

May 11, 2016, 2:30 pm
$
0
0
I have been bouncing back and forth on the phone all day trying to get this solved.  I have a retail 2012 RDS CAL license key that I need to have downgraded to 2008 R2.  The clearinghouse tells me that the CAL is coming up invalid, but it's been activated before.  I was told to open up an online cause, but I don't have a contract and don't really want to pay $500.  What can I do?
Search

Remoteapp Publishing over GPO Server 2012 R2 Std & Windows 8 / 10 Pro

May 10, 2016, 4:05 am
$
0
0

Hello Community,

I'm working on MS Remoteapp via Server 2012 R2. I want to Publish the Connection Via GPO to my Clients.

When I manuelly enter the URL via gpedit.msc everything works fine. 

But when i enter the URL in my GPO on my AD Server the clients don't get the URL. What's wrong here? What i have to do, that they get the URL?

I'm happy to read your answer. Thank you..

Remote desktop services not working from outside the network

May 11, 2016, 12:09 am
$
0
0

I am trying to get my head around a problem I have with Remote Desktop Service on a single Windows Server 2012R2 Essentials server installation.

I added the server role and have an external certificate and DNS for the server I installed the certificate. The websites RDWeb and remote are up and running. I forwarded ports 80 and 443 to the server. For remote desktop connections I forwarded an external port to the server port 3389.

Now everything works fine within the network. From outside the network I can ping the FQDN. But if I try to open the link to the RDWeb or remote website. I get an error: page cannot by displayed.

If I try to set up a regular remote desktop connection from outside the network to the external port that works fine too. So I guess that it has something to do with the way the sites are setup by the wizard. But I don’t know what to look for. Any help will be appreciated.

Thanks in advance.

How to exclude connected Domian users to a (Remote desktop server 2012 r2) member of the same Domain, from GPO?

May 11, 2016, 1:47 pm
$
0
0

Hi,
I needed to create desktop shortcut on every member of our Domain.
So I did it through a GPO.

This is working perfectly and everyone has the shortcut on their desktops.

But the shortcut also appear on their virtual desktop (from the RD server) when they connect through Remote desktop connection.

I would like to figure out how to prevent this GPO to apply to my users only when they connect to the RD server.
Is there a way? I've searched a lot and can' t find how.

Thank you

RD Gateway Manager Crashing adding a RAP

February 10, 2016, 2:33 pm
$
0
0

I've set up a HA Connection Broker cluster, and in order to get the web gateway working again, I need to set up a new RAP policy that specifies the RD Broker RR Address, but every time I try, when I click 'Add' in 'User Groups' (And anywhere else in the MMC, it seems), the MMC crashes with the following output:

Problem signature:
  Problem Event Name:    BEX64
  Application Name:    mmc.exe
  Application Version:    6.3.9600.17415
  Application Timestamp:    54504e26
  Fault Module Name:    clr.dll
  Fault Module Version:    4.6.1055.0
  Fault Module Timestamp:    563c12de
  Exception Offset:    00000000002fdbd8
  Exception Code:    c0000409
  Exception Data:    0000000000000002
  OS Version:    6.3.9600.2.0.0.400.8
  Locale ID:    1033
  Additional Information 1:    96f9
  Additional Information 2:    96f9c5010a52aa0dfa6dd4f9281ffe93
  Additional Information 3:    7b9b
  Additional Information 4:    7b9b3ea08d2dac897bb696ccf51055a9

As far as I can tell from searching, it seems to be .NET that's crashing, but I haven't found any solutions.All three servers (Web Gateway and both Connection Brokers) are fully patched.

has anyone else sen this and/or have any ideas how to either fix it or maybe some kind of workaround?


VDI Template Export Location

September 25, 2014, 11:16 am
$
0
0

Hello,

I have a 2 node Hyper-V Failover Cluster with RDS deployed.   The Virtual Desktop Template Export location is a single point of failure if left to the default location of the C: drive of your connection broker.     My thought is to create a clustered file server node and set the export location to that share.   

Question 1:  Has anyone used a clustered file server for the export location?

Question 2:  How do you move the Export location of already deployed Desktop Collections when it is greyed out as shown below?

Question 3:  I understand that when you create a desktop collection the Master Template is copied to the Export location but then how is this different than the Parent location?  Is that just another copy of the Export?

Viewing all 27656 articles
Browse latest View live
Search
<script src="https://jsc.adskeeper.com/r/s/rssing.com.1596347.js" async> </script>