Quantcast
Channel: Remote Desktop Services (Terminal Services) forum
Viewing all 21489 articles
Browse latest View live

Remote app: hide server local drives & map client drives with drive letter

$
0
0
Hello all,

We've setup an RDS farm with 6 RDS host servers on server 2016.

The application itself cannot see network drives, only mapped drives (aka with a specific drive letter). 
Passing through a users drive to the remote host works fine, but I'm looking for a way to automatically map this drive to a drive letter for the specific user.
Can this be done? And how?

Also, I would like to hide the servers physiscal hard drives, so users don't get confused and to keep things lean.

What are the best practices to accomplish this? 

Many thanks!
Alex

RemoteApps SSO from control panel

$
0
0

Hi all,

I have configured RDS on windows server 2019. I was able to configure SSO for both MSTSC and RDWEB. Including sign in to the RDWEB web page and starting RemoteApp from the web page.

My problem is with adding RemoteApp from control panel. When I add a new connection it always request credentials saying the used credentials are incorrect. I don't understand why because all other ways are working correctly...

Any help would be appreciated.

Rahamim.

Impact of Remote Desktop Services on Network Throughput

$
0
0

Impact of Remote Desktop Services on Network Throughput

Environment:

VMware vSphere 6.7.0.40000

Windows Server 2016 v.1607 Build 14393.3504

     VMXNET3

Ubuntu 

     VMXNET3

iperf3 3.1.3

     16 streams

Test results:

Before RDS:  25.1 Gbits/sec send & receive

After RDS:      8.25 Gbits/sec send & receive

Is this reduction a function of RDS or the network. I have been unable to find any documentation that lays out the relationship between the two. What I have found "Performance Tuning Remote Desktop Session Hosts" is thin on details. This is a "session-based" implementation to alow large data sets (~4TB) to duplicated and distributed to targed file servers. The number of clients would never exceed 8. Is it possible to effect the throughput?

RDweb used to work but now says The user name or password is incorrect...

$
0
0

Hello,

Serer 2012 R2 used to allow remote connections through RDweb via internet. I am still able to login to the server on the internal network via RDP. I have been through and checked all the deployment options and SSL certs within server manager. I can access the web page fine, but its not letting me login with this error

The user name or password is incorrect. Verify that CAPS LOCK is off, and then retype your user name and password. If you continue to experience problems, contact the person who manages your server.

I have tried both logging in using both credential formats domain\user user@domain.xx.xx.

I have been through the event logs and cant see anything related. 

I have no gateway server. 

I have checked the firewall rules so RDP is allowed. 

Has anyone got any suggestions on how I can track down the issue?

Thanks

roaming remote desktop profiles

$
0
0
tell the users and computers in the active directory in the rest, I indicate the user the path to the roaming profile of the remote desktop, but this does not work, the profile was local and remains when connected to the terminal server. terminal server 2008. found an article that this path does not work since Windows 2012 and younger and you need to edit the registry and specify the key fQueryUserConfigFromDC. but I have a terminal server 2008, why doesn’t this path work?

OneIdenity SPS as RD Gateway licensing

$
0
0

Hello,

We are planning to deploy OneIdentity SPS for session monitoring. We want to deploy it as a Remote Desktop Gateway in front of a windows server (Session Host).

I want to know how will the license be managed in this case. Note: We have RDS Device CAL license model.


Knowing that all traffic will go through the SPS, is this considered as one device?

For more on SPS as RD gateway:  https://support.oneidentity.com/technical-documents/doc1300463


Users fail mostly connecting to load-balancing farm, but only when going through a VPN

$
0
0

Hello everybody,

A customer runs Windows Server 2019 terminal server farms. From the local network, everything is fine. Users get perfectly connected and load-balanced to the RD servers. However, if the log on to the domain through a VPN (TMG 2010) which does not block any traffic, they can only only sometimes connect to the farm. When they fail, their Windows 10 RDP client just yields an "internal error" without being more specific.

We checked already:

* TMG does not block anything coming from the VPN to the inner servers or vice-versa. We also tried temporary firewall rules allowing any traffic in both directions.

* DNS resolution and contact to the domain controllers is fine from the LAN and through the VPN. There are DNS A records for each RD server, and for each RD server there is a DNS A record with the farm name, pointing to each of the RD servers, for DNS round-robin.

* The RD broker (a separate server) load-balances the users just fine.

* The clients get a DHCP address for their VPN connection from VPN, also just fine.

* The clients CAN connect every time to the old 2008 R2 server farm which did not load balance. When they try to connect to a 2019 farm (with each farm consisting of 4 RD servers and its own broker and licensing server), the only connect sometimes, the other time failing with the "internal error".

* The clients connect (locally and through VPN) using the same .rdp file pointing to the farm name. The do not use RDWeb currently, nor a RD gateway.

We have the suspicion (although not proved 100% yet) that the users can connect when a RD redirection is not needed/requested by the RD server that they initially contact via DNS round-robin.

Is such a symptom known? Does anyone have a clue what is happening here?


Best Regards, Stefan Falk

Outlook Profile crash in RDS

$
0
0

I have a RDS Windows 2012 R2 server with all roles, o365 Outlook and publishing Office 2013. I have one user trying to open their Outlook on RDS, it tries to load the profile but then gives the error I've attached. This user has no issue with Outlook locally. What could I look at in RDS to resolve this issue?

 

thanks

Pat


Jan 2020 Windows Updates KB4534297 & KB4534309 Break Mac Remote Desktop connections through Web Application Proxy

$
0
0

In a 2012 R2 RDS environment where Web Application Proxy and RD Gateway are used we found thatMac RDP clients could not open RemoteApps after installing the January 2020 Windows Updates KB4534297 & KB4534309.

Mac users were getting errors 0x204 or 0x3000008 when attempting to connect.

Windows RDP clients could connect fine. The main issue was with the previously mentioned updates on the Web Application Proxy server. Uninstalling these updates from the Web Application Proxy server and rebooting allowed Mac connections to again work through Web Application Proxy.

RemoteApp Stuck at Loading the virtual machine...

$
0
0

This has become a rather prevalent issue for us. It is random and I am having a hard time finding a RCA

ENV: = Server 2016 Servers running in a HA environment. Only used for RemoteApps.  

Connection Brokers = CB01, CB02

Web/Gateway Servers = WB01, WB02

Session Hots = RDSH01, RDSH02

DB is HA on a dedicated SQL server

When a user clicks an application it pops up the following:

At this point the app is stuck.  Nothing can be done. you have to use task mgr to force kill the process.  

From a logging perspective all components are listed above and show the followign information during applicaiton launch.  I cannot figure out what is causing this. 

Any advice would be awesome!


Terminal Server sessions hanging, printers may be the cause

$
0
0

Hi everyone!

We are struggling with our new Terminal Server setup and I am kindly asking for your help.

- 2 Remote Desktop Session Hosts (load balanced, 20 cores and 64 GB memory each) + 1 Broker/Licensing. No gateway, only local network access. SSO with AD credentials enabled and working. Currently working with local profiles (no roaming, UPD recently disabled) for troubleshooting reasons. No MS Office installed. Mainly used software is a Terminal Server supported typical software for our business area.
- 1 Print Server (2 cores, 8 GB memory) with several new and old printers, latest drivers from the manufacturers.
All of them are Server 2019 DC 1809, patched up to January 2020 level.

Hardware base is vSphere 6.7 on a fresh HPE ProLiant set, shared SSD storage and lots of memory. There are no performance issues on a hardware base, also not on other VMs.

Printers get mapped into the Termial sessions via GPO ("Create" command as user policy with loopback mode, \\printserver\printername).

So far - so good. Most of the time all is working fine, users can print from the sessions and the sessions are performing quite well.

Since this setup has gone live a few days ago, we are experiencing intermittent issues in the sessions that have not been recognized during an extended testing phase. It seems that the Print Server's spoolsv.exe is hanging or sometimes crashing and during this period all Terminal sessions on both hosts are freezing or hanging their applications ("Not responding"). Every session does have mapped the same printers, about 12 in total. Usually programs are freezing during work without opening a printing dialog, but at the latest if a user tries to print something, the session is gone. It happens 1-5 times a day.

During that phase the RDSH are nominally not hugely loaded (10-20% CPU, 30% memory with ~30 users on each, so they are clearly overpowered), users are no longer able to log on or off ("Remote Desktop Service is busy"). After a couple of minutes or if we restart the printer spoolers on both RDSH and Print Server, the system is running again and users, that have not tried to log off, can continue their session at normal speed. After another 5 minutes new sessions can being opened again, so the RD service is no longer busy with itself.
The load on the Print Server is usually ~2-5% CPU, during a freeze it may go up to 20%. The Print Management console may be crashing also, or at least it is very slow.

We've tried to identify a faulty driver on the Print Server and have found one using the eventvwr that caused the spoolsv to crash, however the issue is still there. We've also removed all unused drivers from both RDSH and the Print Server.

We have enabled 2 new GPO settings for the hosts: "Always render print jobs on the server" and "Execute print drivers in isolated processes" without a noticeable change. On the Print Server all possible drivers are also running in Isolation (Mode 2), however not all of them are supporting this. The physical printers themselves are working fine, PC clients do have some of them installed locally on their machine without known issues.

What's unclear for me: It seems that the RD sessions are constantly communicating with the print server (according to the Resource Monitor), even when nothing is being printed. Therefore they immediately are slowing down once the Print Server is having an issue. Is this an usual behavior? Does it depend on which Default Printer the users are setting?

So the idea is now either to find the faulty driver/setting and/or to reduce the dependency on the print server, so even when it hangs or may be offline, the sessions should not hang up.

I appreciate every single hint that might help to identify the issue or to find a workaround.
Let me know if I missed any important information.

Many thanks and regards!

Remote Desktop License Manager - Configuration issue (not a member of TSLS Group)

$
0
0

Hello,

I am trying to install the RD License manager on a member of computer in AD. The AD Schema is Windows Server 2016 and this member computer is Windows Server 2019.

I have successfully installed the role and activated the server, added the member computer in the BUILTIN "Terminal Services License Server" group but in the configuration page I get the message "the system cannot determine if the license server is member of tsls group".

All the required ports are also open as specified by : https://support.microsoft.com/en-us/help/832017/service-overview-and-network-port-requirements-for-windows#method53

Does anyone have a similar issue or know how to solve this? I dont want to install any CaLs if the service has any errors.

Regards,

Tony


antonis michael

Random disconnections from an RDS host and Remote Desktop Services Diagnostic Tool

$
0
0

Hi guys,

I have a Windows Server 2016 with RD Broker and RD Session Host roles. Users connect to this RD Session Host via another server with Remote Desktop Gateway role installed. In other words first users connect to a remote desktop gateway and then are redirected to a remote desktop session host (terminal server).

There are four users who work on that server and one of them sporadically gets disconnected from the server. 

When it happens that user can see this message. 

 

I checked local network connectivity as well as WAN link - all good and no dropouts.

I installed Remote Desktop Services Diagnostic Tool but struggling to interpret an output. 

What user failed to logon means if that users indeed logged in but just gets disconnected sporadically?

Thanks and Regards,

Remote Desktop Services - Users prompted twice when launching remote App

$
0
0

I am currently testing RDS in our environment on 2019 servers. I followed this guide to set this up.

https://www.anotherwindowsblog.com/2018/02/building-redundant-microsoft-2016-rds-farm-netscaler-part-1.html

I applied a wildcard certificate for all the services. 

When the user logs on to https://rds.mycompany.com/rdweb with domain credentials he is prompted for another login to the RD Gateway. 

 

The RDweb service is running on the same host as the RD Gateway. I have come across applying group policy, trusted sites etc. But my issue here is the users will be logging from a non-domain joined home PCs. Please help.

Windows Server 2019 RDS Errors After Domain Controller Change

$
0
0

We had an existing Windows Server 2019 with Remote Desktop Services connected to a Windows Small Business Server 2011 that was acting as a domain controller.  Everything worked fine.

The SBS 2011 was recently replaced by a new Windows Server 2019 domain controller.  The new domain controller has the same name an IP address, so the old domain controller (SBS 2011) was removed, and the new one put in its place (Windows Server 2019)  We rebuilt the trust relationship between the existing RDS server and the new domain controller by running the PowerShell command on the new RDS server

Reset-ComputerMachinePassword -Server {server name} -Credential {domain\Administrator}

That worked fine for connecting the RDS to the new domain server.  However, when users try to login to the RDS Server using Remote Desktop, they get the error:

"The requested session access is denied".

The server manager on the RDS Server reports the following errors when a user tries to login to the RDS Server using Remote Desktop.

Error # 1280  Source: Microsoft Windows Terminal Services SessionBroker Client: :: Remote Desktop Services failed to join the Connection Broker on server SERVERNNAME.domain.local. Error: Current async message was dropped by async dispatcher, because there is a new message which will override the current one.  
Error # 2056 Microsoft Windows Terminal Services Session Broker :::
The Remote Desktop Connection Broker server could not enumerate the targets for the provider named NULL from the database.
Pooled virtual desktop collection name: NULL Error: Logon to the database failed.
Error #226  Microsoft Windows TerminalServices ClientActiveXCore ::: RDPClient_SSL: An error was encountered when transitioning from TsSslStateDisconnected to TsSslStateDisconnected in response to TsSslEventInvalidState (error code 0x8000FFFF).

I researched these error codes but did not get too far.  Any help would be appreciated.

Michael


New RDS Deployment - Windows 2012 R2

$
0
0

Hello,

We are deploying a new RDS environment.  As a brief overview of our setup:

  • 1 dedicated server for the broker, gateway, session host, and licensing (for 10 users or less)

After reading numerous articles, i'm trying to figure out the certificates.  I know I will need one 3rd party cert for the Connection Broker, Web Access, and Gateway roles to allow users to access the resources outside the network.  My questions are as follows:

  • When obtaining a wild card cert, do I need to have the internal FQDN of the server, the external FQDN, or both listed in the cert?
  • For the external FQDN, can i choose whatever I want (i.e. RD.COMPANY.COM) and then enter that in the internal DNS? Or external only? (sorry not a DNS guru)
  • For the RD Web Access URL, do I need to change that to my external FQDN (i.e. RD.COMPANY.COM) or leave as is?

My thinking is I need to obtain a wild card cert with an external FQDN (i.e. RD.COMPANY.COM).  In my external DNS, setup that FQDN with a external IP address and allow that thru my firewall to the internal IP.  Am I on the right track?  Thanks for any assistance! 

 

RDS device CAL for many users but working simultaneously

$
0
0

Hi,

    According to licensing policy of RDS device CAL, this license is granting permission for any users working from one device having valid RDS device CAL.

I understand that purpose of this license is mostly dedicated for users working in shift work, but I am wondering if I could use this license for users working simultaneously, at the same time, from this one device.

Above scenario obviously could be possible to solve by additional software application, but this is why I am asking if this is legal and not violating RDS license terms.

Regards,
Robert

Broker HA setup and DNS

$
0
0

Hey guys,

I guess a simple (stupid) question for the RDS specialist. 
We have one broker and several Session Host servers. There is a DNS entry, lets say "RDS.Domain.local" which is setup for Round Robin. The A record is created multiple times for every RDSH server. So users will use this DNS name to connect to the farm.

When i want to make the broker HA i have to setup Round Robin also for the brokers. Lets say i create a record called "Broker.domain.com". How does a user connect to the farm after the broker HA setup? Will he/she still use "RDS.domain.local"? 
I will use an external CA given certificate for the broker setup, like for example *.domain.com. This will be setup during the 'Broker HA setup' for Single Signon and Publishing. Can i still use "RDS.Domain.local" to connect to the RDS farm from a user point of view? Or will i end up in conflicts because i use .Domain.local (RDSH) and .Domain.com (Brokers)?

Thanks for the answer.

Kr,
AJ


Windows Search Index does not show more locations for me to choose

$
0
0

OS: Windows Server 2019 Standard

Version: 1809

OS build: 17763.1039

Server is a VM installed on a Windows Server 2019 Standard Hyper-V physical server.

Server has terminal services installed and is being used as a RDP server.

It has the search services feature installed.

The problem is that I am unable to select any of the drives as locations for search indexing. There should be at least a C: D: and F: drive available for indexing, but none are available. I have already click the "Show all locations" button but that added nothing to the list. I have tried logging in as a new user, but that didn't help. I have tried uninstalling and re-installing the feature but that didn't change anything. Server has been rebooted multiple times with no change. I'm really at a loss at this point, any other server 2019 that I try the same process on works perfectly.

Multiple / 2 Desktop collection (Windows 7 and Windows 10) in VDI infrastructure.

$
0
0

Hi Experts!

Would like to ask if it is possible to have 2 Collection which is windows 7 and 10  with 2 RDSH in one VDI infrastructure ? Or should i need to add additional RDSH for new Windows collection in same server? 

Currently we have existing windows 7 collection and we provision to build another collection, we have successfully build it and create virtual desktop under the new collection. Unfortunately upon testing /log in to windows 10 we have an error message prompt below. 

Can someone tell us the best practices if it's possible to have 2 collection with 2 RDSH only separated the RDVH server. or it may required to have additional Remote Desktop Session host in VDI. ? 

 


Homer Sibayan

Viewing all 21489 articles
Browse latest View live


<script src="https://jsc.adskeeper.com/r/s/rssing.com.1596347.js" async> </script>