Quantcast
Channel: Remote Desktop Services (Terminal Services) forum
Viewing all 21489 articles
Browse latest View live

Force "I am using a private computer..." option to be ticked

May 18, 2015, 7:58 am
$
0
0

Hello.

I have built a Remote Desktop Services environment on Windows 2012 R2 servers.  It all works perfectly but I'd like to force the "I am using a private computer..." option to be checked when people open the "Connect to a remote PC" page (/en-us/Desktops.aspx).  I have read various blogs and articles, many suggestion the same or similar approaches, but for me the option is never checked by default.  I have:

1. Changed document.getElementById("rdoPblc").checked tofalse in webscripts-domain.js

2. Set public bool bPrivateMode to true in Desktops.aspx

Is there anything else I need to do?  Am I missing something simple?  I have tried running IISRESET and also restarting the server hosting the Web Access role.  The option is always ticked on the Default.aspx page (RemoteApp) but never on the Desktops.aspx page.

Thanks in advance.
D

Search

RDS RemoteApp Takes a long time to launch

June 8, 2015, 6:56 am
$
0
0

Hi

I have configured one server with the functions ofRDGateway, RDLicensing,RDWeb and 2 servers with the Session Host functions as listed:

Server with AD Role:

- Remote Desktop Gateway;
- Remote Desktop Web Access;
- Remote Desktop Licensing;

Two Servers for application (RemoteApp):- Remote Desktop Session Host;

Everything is up and running.  Everything is working successfully both internally and externally.

 The problem that I'm experiencing is that when opening a web app (either from the web access or an rdp file) it's takes 1 minute and 49 seconds to open it either internally or externally  Can  you help me track down the problem and cut this launch time down?

I already do the following changes:

1) 

Deselecting "bypass RD gateway server for local addresses";

2)

- Open RegEdit on the Windows Server machine.

- Navigate to this registry key in the tree on the "EN-US" style="color:#1f4e79;font-family:'Calibri Light',sans-serif;">HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters

- Right-click on the right side, and add a new DWORD (32-bit) Value

- Set the value name to DisableTaskOffload and the value data to 1

3)

I have a certificate from GoDaddy running smoothly:

W8.1 > RDS 2k12R2 - COM Ports redirection not working

May 18, 2015, 6:12 am
$
0
0

I have a workstation trying to map the COM ports to the RD session which is hosted on a Hyper-V 2012 R2 as virtual machine (GEN2). No matter what I do, the port doesn´t appear in the device manager. Group policy is configured to always allow COM/LPT ports redirection. The server and workstation is temporarily connected on the same network. COM port on the workstation is not emulated in any way. On the workstation the COM port is labeled as COM9, initially tried with the COM1. No errors in the event log.

Any ideas what´s wrong?

How to do shadowing on Windows Server 2012 R2 RIGHT?

May 20, 2015, 6:36 am
$
0
0

Hi,
Currently I'm migrating our local MS Windows Server 2003 R2 as Terminal server to MS Windows Server 2012 R2 as standalone Remote Desktop Service Session host on domain.

I stuck on one thing before putting whole server to production:
1. How can other (domain) group than administrator do Remote Control on active sessions on local RDS session host?

2. Where is RDP-Tcp Properties - Permissions?

3.  As local/domain admin on Server Manager I can shadow some sessions but not all active sessions where all active sessions have same profile design/permissions. Why?

Best Regards, 

Domagoj Versec

Remote app - hide remote disks

May 20, 2015, 3:27 am
$
0
0
Hi, we are trying remote apps on Windows Server 2012 R2 and they work well. One thing we can't accomplish: if we publish an application like Excel or Word that can explore the filesystem (through "open" or "save" but also in other parts of the application) we don't want the user to save files in the remote server and, in general, users should not interact in any way with the app server, and obviously with other servers reachable from the app server. I'd like to know if hiding disks and network links from the app server will be enough. Our final goal will be publishing corporate applications in an unsafe network (f.e. connected to internet), that were previously deployed in an intranet and secure network. Thank you

2012 R2 RDS and DNS

May 20, 2015, 9:06 am
$
0
0

I'm trying to verify if DNS is configured properly.

I have a customer with two 2012 R2 servers with RDS installed. Server1 has all roles but gateway. Server 2 has all roles but licensing. A public certificate is in place for remote.domain.com.

Public DNS points remote.domain.com to IP 74.xx.xx.xx. Shouldn't the firewall translate that public IP to the private IP of Server2 which is the gateway?

Private DNS and an A record for remote which points to Server1, not the gateway which is Server2.

Server2, the gateway, has the Resource Authorization policy set with a group that includes Server1's private IP, NetBIOS name, FQDN, and remote.domain.com.

In the RD client I have the Access Anywhere configured as remote.domain.com. On the General tab I have the name as Server1 and I can connect to it. If I put remote.domain.com on the General tab my connection attempt is rejected. I thought I would be able to connect to either computer name as the gateway has that in the RAP.

Any ideas if private DNS is configured incorrectly and if so, how it should be configured? Also why can't I connect to Server1 by using remote.domain.com as the computer name instead of Server1 in my RD client?

Jonathan

Trying to get an accurate CAL count for our RD Licensing Server with Powershell

June 7, 2015, 11:54 pm
$
0
0

I've been trying to get an accurate count of the total number of per-User CALs in use by our 2012 Licensing Server.  Ordinarily, this wouldn't be hard right?  I log on to the Licensing server and look in the GUI.

I save the report and sure enough, that shows that the following :-

Windows Server 2008 or Windows Server 2008 R2,TS or RDS Per User CAL,600,334,Available
Windows Server 2012,RDS Per User CAL,600,195,Available

So, that's a total of 600 CALS with 529 in use. 

However, I need to get this information via Powershell so I can send it to our monitoring system.  Now, I know that any user with a CAL has the mstsExpireDate property set in AD.  So, surely I can just query AD for all users with that property and where the value of that property is not in the past (i.e. the CAL hasn't expired yet).

Result of that query? 558.  Huh?  What?  How come there are MORE??? 

I've spent hours trying to figure this out.  Quite simply there are users in AD with a CAL issued by the licensing server that do NOT show up in the report generated by the GUI and I can't understand why. 

The users are not disabled or in any other way different from any other user.

remote desktop 2008 for mac 10.10

June 1, 2015, 8:02 pm
$
0
0

i have 2 customer who have mac version 10.10 and using the latest microsoft RDP app. i can log in as those users fine on a windows based machine and earlier versions of the mac OS but i am unable to log into the terminal server as them. i can login from their macs as an domain admin but i do not want to make these users domain admins. is there a security setting that i am missing that will allow these users RDP access on the latest microsoft RDP app and mac os 10.10

on a side note i have also used the old version of microsoft RDP. 2xd remote desktop.

Search

RemoteAPP: Your computer was unable to connect to the remote computer

June 8, 2015, 12:39 pm
$
0
0

I have been struggling with a Server 2012 R2 RemoteApp issue for the last couple of days. We have a gateway server(labgw12r2), connection broker (labrdpcb01), license server (lablicensing01) and session hosts all running Server 2012 R2 Standard. Our remote app programs were working as expected for some time but I'm not sure at what point the remoteapps started failing to launch. When I publish an application to any collection everything completes as expected in Remote Desktop Services wizard but when I click the application (calc.exe) on the portal I immediately get the error message listed in the subject. If I un-publish the application and try to launch the desktop RDP opens with blank settings. Other collections that have a desktop published simply start connecting with pre-populated servername and username information. I have tried the following to troubleshoot the problem but feel as though I've reached the end without rebuilding the gateway/connection broker servers which I'm not 100% convinced will fix the problem.

Steps I've taken:

Deleted the collection and created new.

Blocked all Group policies on the Gateway, broker and session host to avoid any GPO related settings.

Removed and added the wildcard cert on the GW and connection broker servers.

Removed and re-installed the RDSH role on the session hosts.

Checked Event Viewer on the gateway, broker and session hosts but no alerts are being logged.

Any ideas?

Windows Server 2012 RDS keeps going back to TRial License

June 9, 2015, 3:35 am
$
0
0

Hi

I have setup a single 2012 Server for RDS, and added license for it, but somehow the server keeps going back to the grace period. Anyone know how I can fix this since right now I am using  RDS in trial period while we paid for the RDS License.

Thanx

enrico

SHA256 support and TLS 1.2 compatibility in Windows 2012R2 RDS

May 29, 2015, 9:10 am
$
0
0

Hi fellow Remote Desktop Services admins,

I'm becoming increasingly confused on how well, and exactly under what requirements Windows Server 2012 R2 running the RDS role, supports the use of TLS 1.2 with clients ranging from Win. XP SP3 to Win. 8.1.

So what I understand is:

That TLS 1.2 is supported and enabled by default on Windows Server 2012R2. So I could buy a certificate that uses the SHA256 hash algorithm.

- But am I right that clients ranging from Windows XP SP3 up to Windows 8.1 supports this scenario?

- Would it be necessary to manually enable TLS 1.2 on these clients, in order for them to be able to negotiate the use of TLS 1.2?

- If TLS 1.2 isn't manually enabled on, let's say a Windows 7 client, would the RDS server and the client be able to negotiate the use of TLS 1.0 instead - now that the certificate is SHA256? Because as I understand it, SHA256 is not supported by TLS 1.0. Therefore the same certificate would have to support SHA1, as the communication with a TLS 1.0 client would require SHA1. Correct?

What I have done

Crawled through forums, Wikipedia, blogs and search-machine results. In order to understand possible scenarios and what RDS in Win. 2012R2 supports. But I find it quite hard to get a solid understanding on how things exactly are.

For example: https://technet.microsoft.com/en-us/library/dd320345(v=ws.10).aspx - applies to Win. 2012. But does it also apply to 2012R2? Out of TLS 1.0 and TLS 1.2 - TLS 1.0 is the only one mentioned.

At the same time though, this blog: http://blogs.msdn.com/b/openspecification/archive/2012/07/24/hitchhiker-s-guide-to-debugging-rdp-protocols-part-2.aspx - seems to indicate that RDP on at least Win. 2012 server, pointing to the posts date, supports TLS 1.2.

However it is really hard to find a clear-cut specification from Microsoft on this. I would really appreciate someone that could clarify this for me. Especially because SHA1 certificates is being phased out (start 2017 if I'm not mistaken) and I would therefore strongly prefer to invest in a SHA256 type certificate.

Looking forward to hear from you.

Thank you very much.

Red Baron

2012 Session Host - 'does not have a license server specified'

June 2, 2015, 9:20 am
$
0
0

I was looking through events logs on one of my session hosts this morning and noticed the event below.

Event ID : 1130

Source : TerminalServices-RemoteConnectionManagerThe Remote Desktop Session Host server does not have a Remote Desktop license server specified. To specify a license server for the Remote Desktop Session Host server, use the Remote Desktop Session Host Configuration tool.

Is this event a false positive?

What I've checked

  • Other 2 session hosts in this organization do not have this even reoccurring in the event logs.
  • On the session host I checked 'RD Licensing Diagnoser. Everything is showing as good. 'RD Licensing Diagnoser did not identify any problems to report'.
  • Went a little deeper and checked to see if the license server was showing in WMI settings following the commands in this link (it was showing).

Everything I've found indicates the session host is in contact with the License server.

Thank you in advance for your input.

-TSGzz


Slow COM port redirection when using Remote Desktop Gateway

September 5, 2013, 6:03 am
$
0
0

Hi,

We're using scales in our Terminal Server envirement (2008 R2 SP1). These are connected with COM ports to the Thin Clients (Windows 7, RDC 8 client) and redirected to the Remote Desktop Session. This is working fine on the local network. But when we try the same over a WAN connection using the Remote Desktop Gateway, it's working slow. It takes about 13 seconds before the wieght is displayed. On LAN it takes about 3 seconds.

We also tried to connect the network over a PPTP connection and then connect to the Terminal Server. This is also working fine. 

So, has this something to do with the encryption? 

Remote Gateway Message prompting twice & slow

June 5, 2015, 5:18 pm
$
0
0

Hello,

I'm having and issue similar to the question below that seems to be unanswered.

https://social.technet.microsoft.com/forums/windowsserver/en-US/2d611dad-163a-42ae-8238-60442d5dcae2/rd-gateway-message-appearing-twice-for-users

I have everything setup for SSO, and works great internally with no prompts. externally I get a username/password prompt that i fill out and then accept the login message. It then sits there for a minute then the login message comes back up. I accept again and then it connects within 5-10 seconds.

I am using RemoteApp with 2012 R2. Two Brokers, Two RDGs, TWO RDSH. I have followed the guides and tried different certs without any luck. I have tried disabling one RDG at a time with the NLB manager and still have the same issue. I've checked the event logs without much luck.

The machine i am testing with is domain joined and windows 7.

Any help is appreciated.

Mike

How should I configure RDS for 350 users

June 9, 2015, 5:48 pm
$
0
0

Hi, 

We are going to install an ERP and the service provider asked me to install, for remote users, 5 servers (hosts) with windows 2012 R2 .

Each host will have 2 Virtual Machines  (Total 10 VM)

Every Virtual Machine will have 35 RDS CALs per user

I will request 10 sets of 35 RDS CALs so I will install each one of them in every Virtual Machine.

Is this the best solution or is there any other way to configure the 350 RDS CALs that I need ?

The purpuse of separating the RDS CALs is to improve ERP performance, the provider said.

Thanks in advance for your help.

Jesus

Search

Questions on external access to 2012 RDS Gateway / Host

June 9, 2015, 10:30 am
$
0
0

Hello,

We have a 2012 R2 host in our internal network.  We have a 2012 R2 gateway and broker in the dmz.   

We created an external ip to gateway.mycompany.com.    I then try to rdp into desktophost.mycompany.com with the gateway pointing to gateway.mycompany.com.    I get a password prompt.   It then takes a bit and gives "this computer can't connect to the remote computer".   

We opened up 443 on the external firewall and necessary ports on the internal firewall.   We port forwarded the external ip of the gateway to it's dmz ip.   

It works fine if I rdp internally to the host with the gateway settings and also uncheck "bypass gateway for local addresses".

Does the remote desktop host need a dns name and ip externally as well?

Thank you for any assistance and ideas.


Managing Apps within RDP Desktop

June 2, 2015, 6:35 am
$
0
0

Running RDS on Server 2012 R2

Currently users will make an RDP connection to an RDS server, but applications are not managed. So all applications are available to all users.

When I make a RDS Collection it will publish a desktop, but there is no way to assign apps to different security groups via some kind of management console.

Is it possible to use RemoteApps to control/manage who gets what application when users work on a desktop connection?

I know that I can make RemoteApps, but then the desktop is no longer available..

Dennis

Change location of TS users data folder

June 9, 2015, 5:28 am
$
0
0

Guys, Gals,

I have a Terminal Server 2012 service running, and I would like the default location of authenticated users to change from C: to say E: drive in our server. Right now when users connect, their Home Folders are assigned at C:, I would like all their data to be stored in a bigger partition E:

I know that I have to do it thru the DC server, but I can't seem to find the right Policy location.

Any help is greatly appreciated.

TIA.


RDS RemoteApp Displaying Blank Server Desktop Section on Clients

June 10, 2015, 12:22 am
$
0
0

Hello,

We currently use RDS RemoteApp on a Server 2008R2 server do deliver a business application to a department. Version 1 of the application has worked correctly for about 2 years but we have recently upgraded to version 2 of their product (which is a completely separate application). When we've used RemoteApp to use this application any user that accesses this will get a thick blank area over the right side of the client screen (both Win7 and Win8.1) in addition to the expected application window which also displays, this blank area appears to be the desktop of the server, it remains underneath the window of the application but will remain on top of all client side windows, including their desktop icons etc. Somewhat hampering their ability to use multiple windows.

If you RDP to the server and run the executable then this behaviour does not present and the application opens correctly, it's worth noting that there are no multiple windows visible, it opens a single one which is as expected. Initially we attempted the following hotfix (https://support.microsoft.com/en-us/kb/2614136) which is the only reference we can find that is similar to our issue, the symptoms however are different and as expected the fix made no difference to the issue.

I have attached a screenshot, note the blue bar displayed behind the RemoteApp window but in front of all of the local client objects.

If anyone can help shed some light on the issue or could point in the right direction for error logs to check then that would be a big help.

Public Domain Name & Rdweb not Resolving.

May 14, 2015, 1:43 pm
$
0
0

Good day All

Server Setup (server hosted externally)

1x    Hyper V Host (static)
1x    VM    DC - DNS/(integrated with AD) (static)
1x    VM    RDS - Domain Joined (with all roles for a RDS server) (static)
--------------
mydomain.com (registered public domain name)
DNS name servers of hosting provider :     dns1, dns2 & dns3

---------------

I am having difficulty in  configuring my public domain name (first time registering a public domain name, had to implement SSL) to resolve to remote.mydomain.com so that users can access Remoteapps externally via Rdweb . I am able to successfully access remote apps internally on RDS & DC servers via  Rdweb with certificates successfully configured but I am not getting anything right externally.

I am 99% sure that this is a DNS issue between my server and the hosting provider.  What should my DNS settings be on my internal server (DC) and what configurations should I make/request regarding the hosting provider?

Do I have to setup my own nameservers and ask the hosting provider to update the name servers for the domain at the registrar in their root? Or can I not make use of their DNS servers (dns1,dns2&dns3) to handle the DNS service for the domain? My attempts so far to resolve the matter has just confused me  and I am not sure any more as to the details of setting this up.

Any feedback and instructions much appreciated...


Viewing all 21489 articles
Browse latest View live
Search
<script src="https://jsc.adskeeper.com/r/s/rssing.com.1596347.js" async> </script>