Quantcast
Channel: Remote Desktop Services (Terminal Services) forum
Viewing all 21489 articles
Browse latest View live

Consolidating RDS license servers

December 28, 2016, 3:44 pm
$
0
0

Hi,

We currently have a 2003R2 server providing TS licensing for 2003 servers, a 2008R2 server providing TS licensing for 2008 servers and of course 2012 server providing RDS licenses for 2012 servers.

I believe that 2012 RDS licensing server should be able to manage CAL's for all of the previous versions of Windows mentioned here, so I was just wondering if someone could point me in the direction of how to remove the licenses from the other servers and move them onto the 2012 server if possible.

Thanks in advance!

Search

RDCms database RDS "Recovery pending" after every server reboot.

December 28, 2016, 8:34 pm
$
0
0

Hi,

I am facing above error. After every reboot of RDS server. RDS data base (RDCms) gose to recovery pending status due to that Remote desktop management service stops.

To fix this issue temperrory  i need take data base offline and online  through SQL management studio and then Remote Desktop  management  service starts successfully.

this happen after every server reboot.

I have provide sysadmin rights  and DB owner rights  to below users on the RDcms data base. But still facing same issue. Also

NT SERVICE\MSSQL$MICROSOFT##WID
NETWORK SERVICE
NT SERVICE\ALL SERVICES

-- Followed below articles but no success. Also provide "log on as a service" policy has been configured in default domain policies as per below articles

https://support.microsoft.com/en-in/kb/2832204

https://www.smallbusinesstech.net/more-complicated-instructions/windows/fixing-windows-internal-database-installation-error-on-windows-server-2012

server is using server 2012 standard OS.

Need your help to fix this.

Thanks, Sajjan T

EventID 4625 (NULL SID) when trying to establish RDP connection over port forwarding firewall

December 21, 2016, 9:02 am
$
0
0

Hi,

i created an environment with an IPCop Firewall. My goal is to establish a RDP connection to Terminal Server (IP 192.168.70.12) on the good (GREEN) side of the firewall from a client on the bad (RED) side of the firewall. To make this possible i create a port forwarding rule in the firewall, which forwards from port 7012 to port 3389.

Now i try to build up a connection from my client to the Terminal Server with mstsc and the address 10.0.14.118:7012 (10.0.14.118 is the RED IP Address of the firewall). When i try this, i get the following message:

"Login failure: user account restriction. Possible reasons are blank passwords not allowed, logon hour restrictions, or a policy restriction has been enforced".

In the EventLog of the Terminal Server i get the following Event:

An account failed to log on.

Subject:
 Security ID:  NULL SID
 Account Name:  -
 Account Domain:  -
 Logon ID:  0x0

Logon Type:   3

Account For Which Logon Failed:
 Security ID:  NULL SID
 Account Name:  dkoenig_adm
 Account Domain:  imagoverum

Failure Information:
 Failure Reason:  Unknown user name or bad password.
 Status:   0xC000006E
 Sub Status:  0xC000006E

Process Information:
 Caller Process ID: 0x0
 Caller Process Name: -

Network Information:
 Workstation Name: DKOENIG-LAPTOP
 Source Network Address: -
 Source Port:  -

Detailed Authentication Information:
 Logon Process:  NtLmSsp
 Authentication Package: NTLM
 Transited Services: -
 Package Name (NTLM only): -
 Key Length:  0

What goes wrong here, what can i do to solve this issue? The RDP session works perfectly, when i open the connection from a client within the GREEN network and the same credentials.

Thanks in advance

Regards
Dave


CAL Per user: how assign to users

December 29, 2016, 6:39 am
$
0
0

Hello,

I'm setting up on my physical server RDS. My server is windows server 2012 foundation.

As you see in image below, I Installed RD Licensing Manager

I linked it with my 5 CAL per user (image 2)

but I have no RD Connection broker(Is it optional?)

As you see in last image I activated server

Now, How can I provide access to my 5 users? How have I to go on?

Thanks

Carlo


Big performance difference between RDP and RemoteApp. Why?

December 29, 2016, 8:44 am
$
0
0
Hello All,

Short explanation:
We use thin clients to run a Java application (Pas-X). This application is installed on a terminal server.
With an RDP session to this terminal server and then launching the application provides fast response times.
If we start on the same thin client the same application by RemoteApp on this terminal server, the application has slow response times.

I've done a lot of testing with information found on the internet. Like settings for RDP, gpedit, registry settings and RemoteFX (where applicable in our situation).
The difference in speed remained the same in ratio as indicated for RDP (between 2 and 3 seconds) and RemoteApp (between 5 and 7 seconds). Everything on a fast internal network without performance issues.

The question:
Why this difference between these two methods? What can we tweak to not have this difference?
As far as I know RemoteApp is simply using the RDP protocol.
Are there alternatives that are also reasonable in costs (we have already several thin clients).

Detailed explanation:
Thin client: Dell Wyse 3290 with 32-bit Windows 7 Embedded SP1 (7601), 4GB mem (2.88 Gb used), Celeron 1.58 GHz. RDP version 8.1 (6.3.9600).

Terminal Server: Windows 2008 R2 Standard SP1 (Virtual VMware), 8 GB mem, one CPU with service role: Remote Desktop Session Host. RDP version 8.1 (6.3.9600).

RemoteApp is required. We need trace-ability of the workplace. Also the application then automatically selects the appropriate production unit.
With response times we are talking about the time it takes between entering data (into the next field). You can imagine if this is done with a scanner and you have to wait for 7 seconds, it is not workable.

When performing these same test on a laptop then RemoteApp and RDP session have both a fast response times!

Thanks in advance for assisting.

RD Gateway cannot use saved credentials (Win7 -> Win2012r2)

December 29, 2016, 9:30 am
$
0
0

I am using RemoteApps. Everything works fine when I setup the RemoteApps using control panel. All Apps are available in the start menu and I can launch them fine. When I disconnect and reconnect it only works fine when I am not using a RDGateway.

As soon as I use a Gateway the reconnect fails and I have to re-enter my RD Gateway Server Credentials. When I input it again it works fine. It just won't save.

The credentials are in Credential Manager and appear to be correct. There are two:

  1. the gateway in the form: gateway.example.com
  2. the remote host: TERMSRV/rdhost.example.com

When the password prompt appears windows deletes the first credentials from credential manager.

The following events are logged in the eventlog on the client:

  • RDP ClientActiveX is trying to connect to the server (rdhost.example.com)
  • RDPClient_Gateway: An error was encountered when transitioning from AAStateAcquireAuthToken to AAStateError in response to 20 (error code 0x80070005).
  • RDPClient_Gateway: An error was encountered when transitioning from AAStateCreatingOutChannel to AAStateError in response to 3 (error code 0x80070005).
  • RDPClient_Gateway: An error was encountered when transitioning from AAStateInitializingTunnel to AAStateError in response to 6 (error code 0x80070005).
  • The multi-transport connection has been disconnected.

Apparently I am the only one with this problem as google had nothing for me :(

Add License Server to RDS Deployment

November 23, 2016, 4:54 am
$
0
0

And another issue:

I am unable to add my RDS 2012R2 license server to my existing RDS deployment.

I added the server to Server Manager and this works fine. Adding the License Server via the UI also works and completes successfully, or so it seems.

Get-RDServer does not show the License Server.
Server Manager RDS tab does not show the License Server to be configured at all.
However, trying to edit the RDS Deployment properties the License Server is available.

I also tried to add a different server with the RDS Licensing feature installed via PowerShell first and that fails without any error message.

This all does not make ANY sense.

On the License Server itself I checked the RDS License Server Manager and the License Server is currently not activated (these are all test deployments!), the server is not online and can't access Microsoft's activation site.

My blog on all about automation: www.david-obrien.net | me on Twitter: @david_obrien Please remember to mark the post(s) that helped you resolve the issue (even if it was your own)

Configure RD Connection Broker for High Availability(Fail)

December 29, 2016, 11:34 am
$
0
0

I have been unsuccessful in creating the database for my HA connection broker. It continues to fail with "database in connection string not available."
Server name: AMC-RDSBROKP01

Connection string:

DRIVER=SQL Server Native Client 10.0;SERVER=AMC-RDSBROKP01;Trusted_Connection=Yes;APP=Remote Desktop Services Connection Broker;Database=AMCRDS

I created a security group and added each server to its membership. I created a login to the database with  that security group and made it a sysadmina and dbcreator. 

Can anyone help me get pas this?

Search

Problem using Windows Server 2016 as an Application Server with a direct Remote Desktop Session

December 29, 2016, 11:49 am
$
0
0

I work at a community college where we are converting and testing the labs for our Windows server classes to Windows Server 2016. We are experiencing a problem with one of our labs that we are testing using Windows Server 2016. We want to use the server as an application server using the Remote Desktop Session Host feature, i.e. a direct RDP session to the application server -- no browser. When setting up an application on a user's property sheet (see graphic below) where the user connects to the Remote Desktop Session Host Server; the application set in the Environment tab does not open. The user goes to the desktop, which is not how the lab is supposed to work.

The way that this lab should work is that the user logs on and the application opens to a full screen. When the user is done and exits the application, the user is immediately disconnected from the Remote Desktop Session. The user should never be able to access the Application Server's desktop. This is how this lab has worked with Windows Server 2008 through Windows Server 2012 R2.

If we use the Remote Desktop Web Access the lab works as intended and the same as it has with pre-Server 2016 operating systems. Has anyone else experienced this problem? Is there a fix for this other than to use the Remote Desktop Web Access? 

2008 r2 Terminal Session user issues

December 9, 2016, 8:20 am
$
0
0

I have begun getting ts hangs on multiple servers that had run for a quite awhile without issue. The problem is the system just becomes unresponsive to certain tasks.

For instance if I am logged in as admin and users state system is frozen, I can still function within my session as can some others. However, if I open taskmgr and click on users tabs it locks up. None of the usual tools quser, qwinsta will return any data. tasklist and taskkill also hang.  I even built a brand new ts2008rs ts on a 2016 physical box and the issue has crept in. I do have 3 in another location and they are not experiencing the issue. I have also run av and other scans to no avail.

Any thoughts?

Using RDWeb to connect to individual workstations

December 30, 2016, 7:14 am
$
0
0

My setup is RDWeb running on Server 2016.

When a user signs in on RDWeb, they are presented with one RemoteApp, which is a batch file, that wakes up the users workstation (Win10) from sleep and logs on to the machine using mstsc.exe

This works quite well.

However there are some differences from doing a ordinary RDP session. Windows keys fire shortcuts on your local machine instead of on the remote desktop. On mac I cannot use multiple monitors, and the desktop is not full screen buta maximized window.

My bet is that the batch file running as a RemoteApp prevents the session from behaving like a true RDP session.

Is there a better to setup connecting to individual workstations? I don't want the workstations open to the internet.

Custom log to trace users

December 30, 2016, 7:55 am
$
0
0

Good day,

I wish to know if I can get a log that can filter users that have remote into my server?

Currently the log that i have after i export to csv from event viewer requires me to read the whole info in order to know who has logged in remotely.

So I wish to know if it is possible to create a custom log to only log the username, time, location and ip address used when user logged in remotely?

RDP File Based Off Collections

December 30, 2016, 11:48 am
$
0
0

Hello,

Is there a way to distribute an RDP file that allows the user to log on based on his or her collection. I know that they can see the correct <g class="gr_ gr_217 gr-alert gr_spell gr_run_anim ContextualSpelling ins-del multiReplace" data-gr-id="217" id="217">rdp</g> file when they log in to web access, but I specifically wanted to know how to make the RDP file based on what collection the users is allowed to log <g class="gr_ gr_488 gr-alert gr_spell gr_run_anim ContextualSpelling ins-del" data-gr-id="488" id="488">in to</g>. Thanks

Windows 2016 RDS event 1306 Connection Broker Client failed to redirect the user... Error: NULL

December 31, 2016, 11:06 am
$
0
0

I'm attempting to setup a Windows 2016 RDS Standard Deployment for Session Hosting.  The layout is as follows:
RDS01 - RDS Connection Broker and Web Access
TS02 - RDS Session Host
TS03 - RDS Session Host

The domain these servers are part of has (1) Windows 2008 Server and (2) Windows 2016 Servers acting as DCs.  The domain is running at Windows 2003 Functional Level.

All servers are on a single routed network with no firewall between them.  All DNS A and PTR records for all servers exist and resolve on all hosts.  All servers can be pinged by each other. In other words, there are no network connectivity issues.

I've setup the RDS deployment several times w/ the same results.

The Issue
I can login via the RDWeb interface on RDS01 from a Win10 desktop and connect to the published RDP desktop without issue (i.e. no error messages to the user) and no errors in the logs.  When I try to directly RDP to RDS01, I successfully authenticate as a user (per the event log) but get an error stating that the user doesn't have access to the system.  In the event log I get event id 1306 with the message of "Remote Desktop Connection Broker Client failed to redirect the user <domain>\<test user>.  Error: NULL".  

- <Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event">
- <System>
  <Provider Name="Microsoft-Windows-TerminalServices-SessionBroker-Client" Guid="{2184B5C9-1C83-4304-9C58-A9E76F718993}" />
  <EventID>1306</EventID>
  <Version>0</Version>
  <Level>2</Level>
  <Task>104</Task>
  <Opcode>13</Opcode>
  <Keywords>0x2000000000000000</Keywords>
  <TimeCreated SystemTime="2016-12-29T16:47:27.634726700Z" />
  <EventRecordID>47</EventRecordID>
  <Correlation ActivityID="{F4209120-29ED-44E4-845A-25A2570F0000}" />
  <Execution ProcessID="828" ThreadID="3668" />
  <Channel>Microsoft-Windows-TerminalServices-SessionBroker-Client/Operational</Channel>
  <Computer>rds01.[redacted.domain]</Computer>
  <Security UserID="S-1-5-20" />
  </System>
- <UserData>
- <EventXML xmlns="Event_NS">
  <param1>[redacted.domain]</param1>
  <param2>[redacted.user]</param2>
  <param3>NULL</param3>
  </EventXML>
  </UserData>
  </Event>


If I RDP to RDS01 as an administrator, I get the same error message but the RDP session opens and presents the desktop on RDS01.

I can RDP directly to TS02 or TS03 and login as a user and open the RDP session.  Redirection to some degree appears to be working in that I can disconnect a user session from TS02 and RDP to TS03 and the session is redirected back to TS02.  The event logs on RDS01 record this happening as well.

What I've tried already
1. In searching this event 1306 issue, I found several posts with this exact same behavior in WS 2012/R2.  Most "solutions" suggested point to the fact that the RDS Session Broker doesn't have sufficient authority to look up the users AD group membership via the tokenGroupsGlobalAndUniversal attribute or AuthzInitializeContextFromSid API function which leverages the tokenGroupsGlobalAndUniversal attribute.  (Example: https://social.technet.microsoft.com/Forums/windowsserver/en-US/29733a87-dbda-47bc-8b37-6eeac5ab5a0a/2012-rds-nonadministrators-can-not-access-vdi-pool?forum=winserverTS#97d883f1-7a64-4d02-9492-309638f92e79 )

The service is running as "Network Service" which does have network access via the Computer Object's authority in AD.  So following Microsoft's instructions (https://support.microsoft.com/en-us/kb/331951), I've added RDS01 to both the Windows Authorization Access Group and Pre-Windows 2000 Compatibility Access groups and rebooted RDS01 with the same results.  

2. I've verified the Windows Authorization Access Group has rights to read the tokenGroupsGlobalAndUniversal property/attribute on my test users and the computer objects of the servers.

3. I've setup an AD Service account following Microsoft's instructions (https://support.microsoft.com/en-us/kb/842423) with a similarly described access issue.  The service account user was added to the Windows Authorization Access Group.  This was unsuccessfully as well w/ the same event 1306 error.

4. I ran the following powershell commands to verify access of the Connection Broker to the OU (https://technet.microsoft.com/en-us/library/jj215512.aspx#)

Test-RDOUAccess -Domain [redacted.domain] -OU "Computers" -ConnectionBroker rds01.[redacted.domain] -verbose


This failed so I ran the following to grant access

Grant-RDOUAccess -Domain watsons.local -OU "Computers" -ConnectionBroker rds01.watsons.local -verbose


The Test-RDOUAccess then succeeded.

I repeated this for the OUs that contained the users and the server computer objects.

I've disabled all GPOs to ensure there's no conflicts but have seen no change in the behavior or error messages.

With all that, I've exhausted every option that I can find to resolve this error to gain the expected functionality.  As a work around for the moment, I've setup a round-robin DNS A record that points to TS02 and TS03 w/ a very short TTL.  This gives the test users the ability to login and atleast test the desktop functionality.

Sorry for being so long winded with this but I thought it better to put all the cards on the table.

I'm open to any and all suggestions.

Thx!

Multiple Acrotray.exe

December 31, 2016, 11:45 pm
$
0
0

Hi!

Is there a solution to get rid of Multiple instances of Acrotray.exe in Terminal Server 2012?

Thanks.

Search

Rdp user

December 3, 2016, 10:59 am
$
0
0

Hi

How can I have standard RDP user open task manager without it asking for a admin usernmae and password. I need all rdp users to be able to open Task Manager without it asking for admin username and password. We are using windows server 2012 R2

RDS License Server - stand alone RDS host server

December 6, 2016, 8:23 am
$
0
0

In my current environment, I have 4 Windows Server 2008 RDS boxes on my domain.  They all point to a 2008 license server for the RDS licenses, also on my domain.

Have a new project that requires two new 2012 RDS servers.   One will be on the domain, one will be a stand alone server (can't be on the domain due to the users that will be accessing it).

Can the non-domain server still use my domain-joined License server?

Thanks in advance for any and all responses.

Windows Server 2016 RDS on Baremetal or VM

January 2, 2017, 2:52 am
$
0
0

Hey

We have a HP moonshot with m710x cartridges (and Iris Pro P580 graphics)

Would you recommend installing the RDS on baremetal or as VM (hyperV)?

Thanks in advance

Mike


Black Screen of death on a 2016 RD Session Host

January 2, 2017, 3:15 am
$
0
0

Hi

I have received a call from a customer telling me that he is experiencing the black-screen-of-death issue on a newly installed 2016 RD session Host server. I know there was a fix for that issue in RDS 2012 R2, but I have yet to come across information about this issue in 2016.

Has anyone else seen this issue in 2016?


terminal serwer session

January 2, 2017, 5:39 am
$
0
0
Hi

My question is for Windows Server 2012 R2. I have two machines performing the functions of a terminal server. He needs to set equally user sessions were broken down into one and the second server how to do it?

thank you
Viewing all 21489 articles
Browse latest View live
Search
<script src="https://jsc.adskeeper.com/r/s/rssing.com.1596347.js" async> </script>