Hello,
My last small problem is that I cannot shadow a simple VDI session.
I always get the same message: The computer name is invald.
More than that when I start the shadow, the computer name looks weird!
Idea??
Image may be NSFW.
Clik here to view.
We have several VMware Virtual machines. All servers are Windows Server 2012 R2 Remote Desktop servers. Normal applications are installed like Office and we are using AppV packages to deploy applications like Navision etc.
We are using Automation Machine for deployment and we use VMware UEM for user settings.
The problem we have is intermittent unresponsiveness of one of the RDS servers . When this happens the servermanager application on the connection broker servers are no longer responding, and if we close and reopen the Servermanager we see that one of the servers state is “inaccessible”. New user sessions freeze during startup on the welcome screen. CRTL+ALT+END doesn’t work, logging in to the console doesn’t work.
At that point nobody can login on any RDS server. We also cannot control other RDS machines anymore because the whole collection is related to that not responding server. Which does not give us the option to see which users are logged in on that specific server so we cannot send a message to the user to logoff. The only solution then is to hard reboot the faulty RDS server.
We have searched windows event logs for some answers but we haven’t found any useful information.
1 – What causes random freezes of the RDS servers.
2 – How can we avoid and keep access to a working server manager
3 – When one RDS is not responding the connection broker should redirect users to another RDS instead of the faulty one.
I have 2 RDS (2012 R2) servers and am attempting to setup load balancing.
RDS1 is the GW, WEB, CB and Session Host
RDS2 is just a session host
Server manager -> remote desktop services overview appears to be indicating that all (but licensing) is setup properly.
I have certificates installed, all DNS records created. The cluster appears to be configured properly (pending licensing). When connecting internally, I am not running into any issues. I have multiple test accounts that when connecting internally are randomly directed to 1 or the other session host for their session.
When attempting to connect from outside of the network (WAN), if the session is directed to RDS1, the connection is fine. It appears that when the connection is being redirected to RDS2, the connection and authentication process is proceeding, I see"redirecting to..." then it will hang for a moment at "Initiating Connection" and then present the error: Remote Desktop can't connect to the remote computer for one of these reasons:......
I am guessing this has something to do with my firewall rules, but I can't figure out exactly what needs to be done.
I have 3389 TCP forwarding form WAN -> RDS1 (connection broker and gateway)
I have 3391 UDP forwarding from WAN -> RDS1 (connection broker and gateway)
Do I need any rule allowing connectivity to RDS2, or is that supposed to be handled by the gateway/CB?
I have 2 deployments with this same issue, one through a Sonicwall and the other through a Watchguard.
Is this something other than the firewall rules?
I have the RD client set to automatically detect gateway settings. I would like to not have to have all of our users specify this if possible.
Any assistance is greatly appreciated.
I have a Windows 2012 R2 Standard server which is acting as an application server. It's running on VMware 5.5. There's another 2012 R2 server instance-domain controller-running as another VM.
Users connect into it using RDP from Windows 7 PCs. One user has a debit card PinPad that connects to one of the PCs via COM1 serial port. This PinPAD used to pass-through to the old terminal server, but the new server does not see it on any of its COM ports.
On the server I have made sure that the OU containing the terminal server has all of the "Disable redirection..." settings DISABLED, and I also set that on the default domain policy.
The client has the appropriate boxes checked to forward local devices in the RDP session shortcut.
This system has a credit card swiper that connects via USB and that works properly.
I did some searching and found a few articles related to this on 2008 but didn't directly help.
Thanks in advance for any help!
-Greg C
Greg Charland Charland Technology - Business Tech Experts 888-928-3336 gregc at charlandtech dot com
Greetings all,
I am writing a statement of work to deploy a new RDS RemoteApp environment in to our network. I have almost everything figured out with exception of certificates. For some reason I am absolutely confused on how the certs work. Here is what I have so far. Please let me know if I am missing something or if I have something wrong. I actually sure that I'm missing something. The goal here is to make our RDS RemoteApp site available internally and externally without any certificate issues. I am using aliased names for the servers here.
rds.comp.com and compgw.comp.com
My COMPGW server will reside in our DMZ and I understand that we have a NAT route setup on the firewall. As far as the certificates go and also making sure the site is available publicly I haven't found any concrete information on how to do this.
Any info would be greatly appreciated.
Thanks you
JW
Hello,
There are a lot threads about remoteapps and certificates but I cannot seem to find the right answer.
My setup:
RDGateway/Web Access combined in DMZ (AD ports open to internal network and 3389 to internal RDSH servers)
RDCB is separate server (and DC)
2 RDSH servers.
We work with a internal (non internet routable) domain. RD Session deployment has public domain wildcard certificate installed on all roles and created and external DNS record for the gateway server.
With the Set-RDPublishedname I created a published name: ts.public.com. This name is added to a local group in the gateway manager. I've created an internal DNS zone for ts.public.com with the ip-adresses of both RDSH servers. A RDS session via the gateway can be made without certificate warnings. So that is working fine, but....
I have published a couple of RemoteApps and on connect I receive a one-time cert warning wit the internal FQDN of one of the RDSH servers and I cannot understand why. The RDP points to the public FQDN of the gateway and the public publishedname.
I understand the traffic flow for a desktop session is different from a remoteapp session but I cannot find the correct settings.
Please advice!
Thx.
I have a Server 2008 R2 device that I'm trying to use Remote Desktop Connection to connect to on port 443 and it's not working properly from all my PCs. I'm able to connect to the device with RDP when connecting from a switch that is directly connected to the server by typing in the address and then :443 with no issues. I am also able to connect with another PC that is connecting through an IPSEC VPN tunnel from a different network, which is connected to the network the server is on. However, can't connect from a different PC is routed from a different network into the local network where the server is.
I've done multiple packet captures on the server. When connecting from the PC through the VPN I get the 3 way TCP handshake followed by some TLSv1 protocol and TCP ACK packets, and then the PC and server start exchanging certificate information and I'm able to RD in to the server.
When connecting from the PC that is routed from another network to the server I get the same 3 way TCP handshake which works fine, and then immediately, as in .000001 seconds later, my PC sends a TCP FIN,ACK packet and the session ends with the server sending a TCP RST,ACK packet. On this PC I get an error at that time saying "This computer can't connect to the remote computer. Try connecting again. If the problem continues, contact the owner of the remote computer or your network administrator."
Currently the server RD Session Host is set to use SSL (TLS 1.0) encryption. Port 3389 is not an option because it's blocked by firewalls between the PC and the server.
Any suggestions?
Hello,
We had a serious issue with UPDs in our environment and I'm really just testing the water to see if we were extremely unlucky, or there is inherent problems with UPDs.
The scenario is as follows:
We have a single RDS server. The Collection on this server is configured to use UPDs which are stored on a separate server. One morning, we had a full BSOD on the RDS server due, we think, the a lack of available RAM. In any case, after the RDS server rebooted from the BSOD, we discovered that all users who were connected to the server when it fell over were being logged on with a temporary profile. On closer inspection, we observed that there was a c:\users\%username% folder for all of these users, but when they logged in, they were actually being dumped into a c:\users\%username%TEMP folder instead.
We consulted the Event Viewer where we observed a ntuser.dat error for every single user. Of course the ntuser.dat resides on the UPDs and it soon became evident that every single user who was connected to the RDS server when it fell over ended up with a corrupt ntuser.dat hive.
Any thoughts? Has anyone seen anything similar to this? It was a very time consuming restoring all the UPDs from the previous night's backup and I am worried that the UPD concept is perhaps not as resilient as I would have thought.
Thanks in advance.
After upgrading two of my machines to Windows 10 (Education N clean install and Pro N upgrade from Win8.1), I was not able to set up Remote Desktop as I was used to since Windows 7 (maybe this was possible before, too).
I am used to configure Windows to allow RDP connections as a user without password (home usage only). Apparently this is not working anymore after upgrading to Windows 10. (I have enabled this by modifying secpol.msc 's security policies. Further informations provided if needed).
With the "no password" setup i get immediatly disconnected by the local machine which seems to auto login by itself after connecting via RDP. The only solution I managed to find so far was to set up a password.
Is this a bug or a feature?
Cheers
Hello,
having issues with users being disconnected from a win2008r2 terminal server. We are using per user cals and have plenty, however I've started to see users being disconnected for a few minutes at a time resulting in the error message in the title.
event 1028 The remote session could not be established from remote desktop client 1% because its license could not be renewed.
Whats interesting is the error message is stating in the EventData section below
"Example Computer name"Windows Server 2003 - Terminal Server Per Device CAL Token.
We are not using a per device CAL model!!
Licensing is set to "per user" on both the TS server and Licensing server. Diagnostics on the terminal server and the licensing server report no issues. I can see no communication problems or issues between the TS and licensing box.
The error message is being generated for users connecting to terminal services via thin client and PC so I'm thinking this is not a registry issue on the client PC as reported by some forums. Any ideas?
Hello,
I look to force the same wallpaper for the users of a RDS2012R2.
What is the way ?
I found nothing in GPO.
The parameters User Configuration | Administrative Templates | Desktop | Desktop | “Desktop Wallpaper” doesn't work for RD Session.
Thank you.
Hi all,
I'm trying to set up an RDS environment where users who are connecting from the internet are provided with Multi-factor authentication, but with the possibility to bypass MFA when connecting from specific IP-addresses.
The MFA-part is working, however, I can't seem to figure out how to bypass MFA for specific IP-addresses.Does any of you have experience with this?
Regards,
Sebastiaan
Hello,
I have a problem with only one user on terminal server 2008 R2. generally I have 30 users that connect to terminal server to run program , but only one user is makig me problem because when tries to save some fie from that program it simply ends a program. In a moment when press save button program ends, so it is impossible to save in session. I tried to delete users profile on server and it works for 3 days maximum and than again problem comes. Can anyone help me about this issue.
Thanks in advance.
Adis
Every time on of my users change the Domain Password they need to enter their Outlook 2010 password, we are using hosted exchange (Outlook Anywhere with Basic Authentication). Every single user is login with a domain account using Home Folder Redirection and Roaming Profile on our Session Host Servers with Server 2012 R2.
Any ideas why is Outlook 2010 asking for password??
I have a HyperV Server with two VMs the DC and the RDS , I also want to use the Rolls Print Server and File Server, Ill also want Roaming Profiles would It be advisable I Install the additional rolls on the RDS server or the DC?
Thanks
James
Hello,
I have an environment which has a server running Remote Desktop Services server (Windows Server 2012 R2) which is the only Gateway into that network. Remote Desktop Services seems to have a limit of file transfers up to 2G. However that is not big enough. I have tons of files which need to be transferred and are bigger than that.
MS states it is simply not supported. See https://support.microsoft.com/en-us/kb/2258090
However, does anybody know about a fix for this issue even if it is not supported by MS?
Thank you
Hi all,
I've wrote a powershell script for my devs. With this script, they can logout all users using their application and after execute the patching of the applications.
The problem is that my devs don't have admin rights. They are simple user.
In my script, I use the Get-RDUserSession, Send-RDUserMessage, Invoke-RDUserLogoff, but without admin rights .... it's bullshit.
How can i delegate the right to use this cmdlet to use the script ?
I've found this topic with the same problem but no solution : https://social.technet.microsoft.com/Forums/office/en-US/ada13337-0917-4423-9373-08f85abddb23/nonadmin-users-are-unable-to-manage-rds-2012-r2-sessions?forum=winserverTS
My farm is in 2012r2, 10 RDSH, 2 HA Broker, all roles are splitted on differents virtual server.
Thank you !
Hi
I have a question addressing Server 2012 R2 - RDS , I am Installing a server for a medium sized Charity that will require 10-12 users at maximum at any one time, some of which will be working remotely and some of which will be working on Client PCs that are located on the same site as the server,
I have been out of touch since server 2003 when things where pretty straight forward a consultant at a IT firm advised me to Install Server 2012 and HyperV with 2 virtual servers one domain controller and one RDS server is this really necessary and is this the best way to roll out the installation??? all users will require roaming profiles and may log on remotely or on site.
If so ill follow up with another question.
Thanks
James
Hi,
In a VMware VM windows 2008 server R2, a critical application is running which is .NET based.This application runs without any issues and the existing version of .NET is Microsoft .NET Framework 4 Extended
To monitor this server, Dell Change monitor agent is going to be delpoyed .For this , installation of .NET 4.5 is mandatory .
How to install .NET 4.5 without affecting the existing application ........
This application is hosted for the users through Remote Desktop App Manager in this server
Any help is greatly appreciated.
Thanks & Regards S.Swaminathan Live & let others live!!!