Quantcast
Channel: Remote Desktop Services (Terminal Services) forum
Viewing all 21489 articles
Browse latest View live

remoteapps not working - session just dies

January 10, 2016, 1:34 pm
$
0
0
Hi ! After upgradig from Windows 7 ultimate to winodws 10 pro i can't get Windows remoteapps to work. I'm using a rdp file to open the remoteapp and the connection first gets established but after entring user credentials the remote Desktop session just dies! No remoteapp is opening on the Client side and the remote desktop session windows just disappears. There are also not fault or error Messages shown. login on the remote host by just using a remote Desktop session works fine. I've tested this now again with just setting up a simple remoteapp link that opens the Notepad.exe on the remote machine. This works fine on Windows 7 but now i have issues with Windows 10 Any help on this would be much appreciated Cheers here's the content of my remoteapp rdp file to start the Notepad.exe as a remoteapp:
redirectclipboard:i:1
 redirectposdevices:i:0
 redirectprinters:i:1
 redirectcomports:i:1
 redirectsmartcards:i:1
 devicestoredirect:s:*
 drivestoredirect:s:*
 redirectdrives:i:1
 disableremoteappcapscheck:i:1
 session bpp:i:32
 prompt for credentials on client:i:1
 span monitors:i:1
 use multimon:i:1
 remoteapplicationmode:i:1
 server port:i:3389
 allow font smoothing:i:1
 promptcredentialonce:i:0
 authentication level:i:2
 full address:s:192.168.56.103
 remoteapplicationname:s:||notepad
 remoteapplicationcmdline:s:
 remoteapplicationprogram:s:notepad
 alternate full address:s:192.168.56.103
 alternate shell:s:rdpinit.exe
 screen mode id:i:2
 winposstr:s:0,3,0,0,800,600
 compression:i:1
 keyboardhook:i:2
 audiocapturemode:i:0
 videoplaybackmode:i:1
 connection type:i:2
 disable wallpaper:i:1
 allow desktop com:1
 disable full window drag:i:1
 disable menu anims:i:1
 disable themes:i:0
 disable cursor setting:i:0
 bitmapcachepersistenable:i:1
 audiomode:i:0
 redirectdirectx:i:1
 autoreconnection enabled:i:1
 prompt for credentials:i:0
 negotiate security layer:i:1
 remoteapplicationicon:s:
 shell working directory:s:
 gatewayhostname:s:
 gatewayusagemethod:i:4
 gatewaycredentialssource:i:4
 gatewayprofileusagemethod:i:0
 use redirection server name:i:0
 displayconnectionbar:i:1
 redirectclipboard:i:1
Search

Browser restricts access to "download site". Plus, WebClient?

January 21, 2016, 4:13 am
$
0
0

This is probably not a RDS specific question, but the problem presented itself on a RDS server and I don't know where else to post it.

I'm troubleshooting a RDS server where there are some problems with Dropbox. While doing this I tested Jumpshare, and got the following message(html site) in the browser when clicking the Jumpshare link:

"Web access is restricted. Please contact the administrator. (Download Sites.)

"(If you feel this site has been improperly categorized, please visit here to submit a review.)

The page is butt ugly and feels amateurish. The link goes to a butt ugly site form. No company is listed as creator of the site, but the URL of the seemingly old web form is iframe.commtouch.com/urlf-miscat. (There is actually a Commtough company.)

I've googled this but doesn't get a singel hit regarding this message.

So there seems to be some shite installed on this RDS server, no? You get to the message independently of browser, and it doesn't matter if the browser is recently installed or not.

I've checked rsop.msc but can't find any Group Policy settings that would make this happen (there are very few Group Policy settings at all). I can't find any application on the server that would interfere with browsing as far as I can see. I do not get this message when accessing Jumpshare on other servers on the same site, in the same AD. I've seen this message before, but didn't think much of it then, because I had other things on my mind, but anyways it is not only Jumpshare that is restricted.

One thing, however, that catches my attention, is that in the list of installed programs on the server, there's one called simply "WebClient", and it has no Publisher. May that be the culprit? Since I don't know what it is I don't want to just uninstall it on a live RDS server.

Anybody seen the message before, or the WebClient? Any input appreciated!

PS. This is a new customer of ours, there's no documentation etcetera.


RDS 2008R2 Mandatory Profiles Recycle.BIN

January 15, 2016, 1:46 am
$
0
0

Hello,

i had few weeks ago started an topic, but it seems it was not clear formulated.

https://social.technet.microsoft.com/Forums/windowsserver/en-US/be0b00f5-5782-470b-a928-a6d294da76b6/recycle-bin-on-redirected-folders-show-no-files-when-delete-some-files-but-they-are-in-there

So i have an RDS 2008R2 enviroment with mandatory profiles. User folders a simple redirected with GPO, not a special thing i think.

Like: AppData, Pictures and so on to \\domain.internal\dfs\users\%USERNAME%\[...Foldername...]

So when the RDS user deletes files in "My documents", they are moved to Recycle.BIN. But they are for the user not visible. the Folder icon also changes if the Recycle.Bin folder is empty or not.

When i take a look into the Recycle.Bin folder(s) as an Administrator with "dir /s W:\users\USERNAME\$RECYCLE.BIN" it shows items in the folder.

To make it clear: I DON'T want to clean up the folder or something else, i want access to the delete files in the dumpster.

Thanks in advance,

best regards,

Henry

Deploy forced Wallpaper on RDS2012 R2

January 7, 2016, 6:59 am
$
0
0

Hello,

I look to force the same wallpaper for the users of a RDS2012R2.

What is the way ?

I found nothing in GPO.

The parameters User Configuration | Administrative Templates | Desktop | Desktop | “Desktop Wallpaper” doesn't work for RD Session.

Thank you.


[TERMIAL SERVER SRV 2012 R2] Apply/Active License

January 6, 2016, 8:03 pm
$
0
0

Dear all friend, and expert.

i bought 10 license for termial services, but i cannot active them :(. I dont know why after 120days, my termial server has expired, all users cannot access PRODUCTION SYSTEM.

Plz help me active license for termial service on window 2012 R2.

Thank you so much!!

Disappearing RDWeb Icons

January 6, 2016, 6:32 am
$
0
0

I have and RDS 2012 deployment with one RDWeb Gateway server, 2 brokers and many hosts. Today we have had an issue where a few users from one particular child domain are not able to see any RemoteApp Icons when they log into RDweb.

Other users in the same domain (and same physical LAN) are able to see everything just fine. I logged into RDWeb on one of the users machines and was not able to see any icons either. From another machine, it worked just fine.

I have restarted the Web Gateway server and  have the affected users using the remote apps through their start menu (no issues there). My steps are to have the users try from another known working PC and I am going to start RDWeb Tracing on the web gateway.

I did check the WMI security permissions on their terminal server and I see the RDS Remote Access Servers, RDS Endpoint Servers and RDS Management Servers in there as they should be. Any ideas?

Multiple Certificate Prompts when not using RDWeb

January 5, 2016, 1:17 pm
$
0
0

I have a 2012 R2 RDS environment with 1 server holding the roles: RDWeb Access, Connection Broker, RD Gateway, and 3 session hosts. 

I have a wildcard SSL cert configured in deployment properties for all roles. This works properly when users connect via RDWeb. They connect to RDWeb, and open their Remote Desktop session when goes through the broker, in to one of the 3 session hosts. They are not prompted with certificate errors.

I know that this is how 2012 RDS is supposed to work, through RDWeb. However, we have a large amount of older thin clients that do not support RDWeb access, so instead they are configured to RDP to an A record of thinclient.domain.local. I have round robin set up with three thinclient A records pointing to the 3 IPs of the session hosts. When a thin client connects they are presented with a prompt "The identity of the remote computer cannot be verified. Do you want to connect anyway?". It is presenting them with the local session host computer name cert, for example they connect via RDP to thinclient, and get a certificate prompt for RDS-SessionHost01.company.local. After clicking yes, they may be redirected to another session host and get the prompt again.

What is the best way to suppress these prompts? Is it possible to publish the wildcart to each session host? Or possible disable these prompts? Thanks in advance. 

RDS Gateway 2012R2 not accepting saved credentials from Windows 10 clients

January 20, 2016, 6:48 am
$
0
0

Hi,

I'm experiencing a weird issue when I try to connect to a RemoteApp using Windows 10. When setting up a connection for the first time, or after a credentials dialog, the connection is established successfully. However, when I choose to save credentials and reconnect after the successful first attempt, Windows 10 asks for credentials again with an authentication error message at the bottom of the dialog.

Other perhaps relevant information about the environment:

  • Fresh Windows 10 and Server 2012R2 installations
  • Windows 10 client not joined any domain
  • Simple RDS deployment: all relevant/required roles (session host, gateway ed) on the same machine, except:
  • Domain Controller and License server on different machine
  • Windows 7 or Windows 8.1 clients, also not joined to any domain, do not experience this problem

I already checked on solutions to common RDS single signon issues without luck. So far, I was able to track down my problem to the following, with netlogon debugging enabled:

01/20 00:51:18 [LOGON] [2256] SamLogon: Network logon of NETBIOS-DOMAIN\NETBIOS-DOMAIN\User from DESKTOP-ABC1234 Entered
01/20 00:51:18 [CRITICAL] [2256] NlPrintRpcDebug: Couldn't get EEInfo for I_NetLogonSamLogonEx: 1761 (may be legitimate for 0xc0000064)

01/20 00:51:18 [LOGON] [2256] SamLogon: Network logon of NETBIOS-DOMAIN\NETBIOS-DOMAIN\User from DESKTOP-ABC1234 Returns 0xC0000064

So it seems, only when using the saved credentials, the domain name gets appended twice to the username and therefore fails authentication. When I re-enter the same credentials, the connection is established successfully and credentials saved. The debug logs shows the username is passed without the domain name twice:

(...)
01/20 00:50:05 [LOGON] [3920] SamLogon: Network logon of NETBIOS-DOMAIN\User from DESKTOP-ABC1234 Returns 0x0
01/20 00:50:05 [MISC] [2256] DsGetDcName function called: client PID=2212, Dom:NETBIOS-DOMAIN Acct:(null) Flags: NETBIOS RET_DNS 
01/20 00:50:05 [MISC] [2256] NetpDcInitializeContext: DSGETDC_VALID_FLAGS is c07ffff1
01/20 00:50:05 [MISC] [2256] NetpDcGetName: domain.local. using cached information ( NlDcCacheEntry = 0x000000E79ABE4630 )
01/20 00:50:05 [MISC] [2256] DsGetDcName: results as follows: DCName:\\dc01.domain.local DCAddress:\\1.2.3.4 DCAddrType:0x1 DomainName:domain.local DnsForestName:hdomain.local Flags:0xe000f3fd DcSiteName:Default-First-Site-Name ClientSiteName:Default-First-Site-Name
(...)

When I reconnect, the just saved credentials are used and results in appending the domain name twice again. Using the User@domain.local notation at the credentials prompt does not make any difference as well.

Anyone experienced this behavior before? Any tips or recommendations are welcome.

Thanks,

Jan

Search

One user's machine not responding to RD Gateway server; error 23005

January 21, 2016, 3:05 pm
$
0
0

Hi all,

I've just added and configured the RD Gateway role on our server so that users can access their individual PCs remotely. I've tested it on my machine and one other user's with great success. However, one user cannot connect.

I examined the event viewer logs, and found event ID 304, with this message: "The user....met connection authorization policy and resource authorization policy requirements, but could not connect to resource "...". The following error occurred:"23005"."

Based on my preliminary research, this means that the user's machine cannot be found by the gateway server. I then tried pinging the user's PC, and got no response.

I double checked, and remote desktop connections are enable on the user's PC, and the user's account is authorized for remote connections.

Can anyone suggest a fix?

Remove old RDWeb Feed from Windows 7 RemoteApp Clients

January 22, 2016, 10:13 am
$
0
0

Hello,

  I'm moving from Server 2012 RDS farm to a Server 2012R2 RDS Farm with new connection brokers and Session Hosts. I've found the login script here (https://gallery.technet.microsoft.com/scriptcenter/313a95b3-a698-4bb0-9ed6-d89a47eacc72#content) to add new RDS WebFeed to Windows 7 clients and that is working properly.

My question is: Is there any way to remove the old CB WebFeed with the same login script? If not, is there any way to automate the removal of the RDWeb Feed from Windows 7 Clients?

I do'nt want the confusion of two WebFeeds available to end users.

Thanks in advance,

-Scott

-Scott

Win2K8 server rejecting RDP with Event ID 36888

January 22, 2016, 10:31 am
$
0
0

Hello experts,

Hope someone can help with this wierd issue. I have googled and tried many tricks but so far they all have failed.

After Windows updates on 12 Jan 2016, our Win2K8 R2 server is rejecting RD connection. 

The error is:

This computer can't connect to the remote computer.
Try connecting again. If the problem continues, contact the owner of the remote computer or your network administrator.

In the event log, for every rejected connection attempt, a Schannel Event ID 36888 is logged, with

The following fatal alert was generated: 51. The internal error state is 602.

I understood this is TLS1_ALERT_DECRYPT_ERROR (51)

One interesting fix we tried was to delete the Remote Desktop certificate. http://visualplanet.org/blog/?p=157
When this is performed, the server will accept RDP connection for just once, and the certificate is recreated as expected. Afterwards, the server will reject RDP connection again until the certificate is re-deleted. 

Any help would be much appreciated.

Thanks

Remote App links to local applications

January 21, 2016, 4:09 pm
$
0
0

I have a Remote App running out of Server 2008 R2 that some of my remote users access for inventory management on the road.  When they need to generate reports it pushes to a .doc file which is opened by WordPad, however I need these to open in Word installed on the users local machine so they can change formatting etc.  Is this possible or do I need to also host Word as a remote app or similar?

Thanks

2012R2 / Windows 7 MSTSC concurrent sessions behavior

January 22, 2016, 3:24 am
$
0
0

Hello,

Our Environment is as follows:

2 RDS hosts, 2012R2
1 host running Gateway, Web Access, Connection broker, 2012R2

Client: Windows 7

The client has two .rdp files on the desktop. I saved one from RD Web so that I got all the config rows in there (workspace ID et cetera) and then made a copy, changing only the user name in the second copy.

Here's the issue:
1. The user connects one session and logs in to the full desktop
2. The user minimizes the session and connects using the second .rdp-file, which has another user name specified
3. A new MSTSC windows connects to an RDS host, but instead of the saved username, the user is reconnected to the first session which was minimized in step 2.
4. Looking at the first MSTSC window, there's an information box letting the user know that he was disconnected from the server

So, in short: Connecting a second RDP session to the same collection/workspace ignores the saved username in the rdp file and instead reconnects to the first, live session.

Question; is this the expected behavior in 2012R2 RDS?
What we are trying to do is connect two concurrent sessions with different user accounts. Is there a setting we can modify to meet that goal?

If we connect the first session, then right click and modify the rdp-file, change the username, and then connect, we get two concurrent sessions with different accounts (the goal scenario). Can't figure out why this exact procedure changes the result.

Deployment Properties - Select Existing Certificate

January 22, 2016, 11:38 am
$
0
0

We are building a Remote Desktop Services environment using Windows 2012 R2 servers.

What is the significance of "Apply the certificate that is stored on the RD Connection Broker server" option in "Select Existing Certificate" dialog when configuring "Role Service" certificates?

It seems that Remote Desktop Services can be configured using the Server Manager from any domain member server so why the emphasis on RD Connection Broker server?

Thank you in advance.

Ben

certificate mismatch

January 22, 2016, 1:05 pm
$
0
0

server 2012 R2

rds

completed certificate request fine it is bound to the server

it is bound to the gateway with the same cert

it is bound to the deployment properties with the same cert

the cert show correctly on the server internally in IIS

when I rdp to the server using the gateway address www.example.com it comes back with a cert mismatch

with the cert info as the external ip address of the site. it does not pick up the correct cert from the server.

the dns entries are in place for the url

the server contains all the roles except security which points to a common server

i have other servers without this issue and have not seen it before. I ran bpa with no issues

I reinstalled the gateway and set it up again. the same issue came back

"remote gateway name and cert subject name do not match" because the cert subject name says  x.x.x.x not www.example.com

nslookup of www.example.com returns the correct local server name ip address in the dmz

the cert contains dns entries

www.example.com

example.com

localsystemname.localdomain.com

this works fine for my other two rds servers

in Firefox it identifies the cert as a self signed cert with CN x.x.x.x
Search

RDWeb Stopped Working

January 20, 2016, 1:43 pm

Windows Services.

January 22, 2016, 9:43 pm
$
0
0

We have deployed 15 RDP windows server 2012 r2 machine for our Branch users.

I have monitored these 15 servers few days, in that two of the services consuming more RAM memory.

Due to this our users getting slowness.

And also please find below snapshots of services.

Please help me out from this.

Thanks & Regards

(Senthil.KV)

2012 R2 RDS Temporary Profile issue

December 30, 2013, 12:40 pm
$
0
0

I have set up a standard 3 node 2012 R2 RDS for testing. All virtualized on VMware ESXi 5.0. I have a connection Broker, session host, and web access server. I have published several applications and I can access them without a problem. Here is my issue:

When I try to log on to my session host server either locally or thru RDP, I am always logged in with a Temporary profile. It does not mater what user account I use. Even logging on locally as the administrator I get a temporary profile.

All windows updates are installed and current.

I have removed the server from the domain, deleted the account, and rejoined it to the domain.

I have deleted all .bak registry entries from here:

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProfileList

There is a hotfix here for a similar issue on 2012 but it does not apply to 2012 R2

The only event viewer errors are:

1515 (Windows has backed up this user profile. Windows will automatically try to use the backup profile the next time this user logs on.)

1511 (Windows cannot find the local profile and is logging you on with a temporary profile. Changes you make to this profile will be lost when you log off.)

Any suggestions to resolve would be greatly appreciated.

Russ

Remoteapp does not support Microsoft /Windows store apps

January 23, 2016, 10:52 am
$
0
0

In Windows 8.1,  Notepad.exe worked fine through remoteapp , but windows/Microsoft store apps such as Money.exe or Netflix.exe does not work as expected.

The error message:  Couldn't open this program or file. Either there was a problem with the Netflix or the file you are trying to open couldn't be accessed.

Appreciate so much for any helping in advance!

Julaine

RD Client display connection bar

January 21, 2016, 9:00 pm
$
0
0

Hello all,

I have configured the connection bar settings on my virtual desktop collection with the following code:

Set-RDVirtualDesktopCollectionConfiguration –CollectionName NAME -CustomRdpProperty "displayconnectionbar:i:0" -ConnectionBroker BROKER

If I connect through my rdweb page the desired result is achieved. However if I use the rd client app provided in the windows store:



the connection bar is still there. Is there a different setting that the rd client application needs to have so I can remove the connection bar?

Thanks,

Scott

Viewing all 21489 articles
Browse latest View live
Search
<script src="https://jsc.adskeeper.com/r/s/rssing.com.1596347.js" async> </script>