I’m trying to phase out an old 2003 Terminal Server that is now only being used by three out of state users. They only use it to access one specific application called Ramquest. We have a new Server 2012 R2 SQL box (member server, not a DC) that Ramquest runs on that I think we can Publish the app to RemoteApp using the quick setup but I haven’t done that before so wanted to get a little more info on how that would work. The server has 2 NIC’s but only one is in use. Can I accomplish this using that single NIC? I figure the those remote users can open the remote app and then I can safely decommission the 2003 Terminal Server.
↧
First time setting up RemoteApp
↧
Deploy Virtual Desktop Template (VDI)
Dear All
IconfigureVDI on Windows2016and deployment Virtual Desktoptemplates Windows2012r2then theerror message
"virtualdesktoptemplatedoes not meetthe requirementsprovided"
Please, let me know the windows server 2012R2 can deploy to users allowed?
Thanks
↧
↧
Prevent Users from Editing Remote Application
After creating application from the RD Application Manager, how can I prevent the users from seeing/editing the client?
For example, if I create the .rdp file, he can open in notepad, view/edit the settings. How can I prevent the user from this?
Also what is the best way to restrict the user from accessing C, D drive and desktop?
↧
USB LOCAL PRINTER NOT COMING - Windows 2012 Standard r2
Im doing some research, but the most of the material I've found is for old versions (Server 2003/2008)
Current Network
-
Server1 - Windows 2012 Essentials (DC, DNS, DHCP, AD)
Server2(Virtualized XenServer) - Windows 2012 Essentials (remote desktop only)
Laptop01 - Is my test hardware - W7 Pro
-
The connection comes from outside, and the firewall give a port forward through to internal ip (port 3389)
-
Basically I need 2 workstations accessing the server2 and printing in a local usb printer(ZEBRA GK420d), But my Remote Desktop is not showing my printers
Not successful attempts:
Turn on EasyPrint on Gpedit (Client/ Server)
Install Zebra Driver on Server2 (I installed the wizard, and I installed another printer (same model) from local network)
Framework 4.5 Installed on both(Server Client)
Printers box is ticked (Local resources)
User got administrator rights.
.
I got the "Fax" printer on local client, it's showing on the server as must be, also when I open printer properties, I can see the TS001 to TS012 ports, all empty and the the only in current use, is the "Fax(redirected)"
Any thoughts?
Thanks!!
↧
RDS 2016 - Start Menu freeze
Hi all,
We're currently experiencing issues at a random interval with regards to freezing start menu's on Server 2016 RDS Hosts.
When the freeze happens we can see the following items in the eventlog: Event ID 5973
Seems to be related on a per user base, as multiple users can connect to the RDS server but only a few of them are experiencing issues.
We are using User Profile Disks and Start Menu redirection. Any thoughts?
"Activation of app Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI failed with error: Not enough storage is available to complete this operation. See the Microsoft-Windows-TWinUI/Operational log for additional information."
"Activation of app Microsoft.Windows.Cortana_cw5n1h2txyewy!CortanaUI failed with error: The RPC server is unavailable. See the Microsoft-Windows-TWinUI/Operational log for additional information."
"Activation of app Microsoft.Windows.ShellExperienceHost_cw5n1h2txyewy!App failed with error: The remote procedure call failed. See the Microsoft-Windows-TWinUI/Operational log for additional information."
↧
↧
Server 2016 RDS Gateway clients unable to connect via RDP
I am in the process of upgrading my Server 2008R2 gateway server to 2016. On the 2008r2 server, clients currently are able to connect from both external and internal hosts. I setup the 2016 server to mirror the config of the 2008r2 server. When testing internal clients on the 2016 gateway, I am hit with "Your computer can't connect to the Remote Desktop Gateway server. Contact your network administrator for assistance.".
I've read several technet posts for Win10 I need to add a d-word key to HKCU>Software>Microsoft>Terminal Server Client> and add RDGClientTransport 0x01. I've tried this and it doesn't work for me. I also tried to do this from a Win7 machine, and was met with the same result. Now comes the interesting part. I tested this from my Remote Desktop Connection Manager console, and I can get through with no issues. It works perfectly. I see on the server it has connect with RPC-HTTP.
Any advice is greatly appreciated.
↧
Cannot add second Connection Broker Server to HA
I was able to successfully configure the HA for the connection broker, however when I try and add the second server to HA, I get the following error.
Failed:
The database specified in the connection string DRIVER=ODBC Driver 13 for SQL Server;SERVER=RDSDB01,1433;Trusted_Connection=Yes;APP=Remote Desktop Services Connection Broker;DATABASE=RDSCB is not available from the RD Connection Broker server RDSSVR02. Ensure
that the database server is available on the network, the SQL Server Native Client is installed on all RD Connection Broker servers, and the computer accounts of the RD Connection Broker servers are members of the RDS Management Servers group on the database
server.
I have verified all the info and it is correct, I have also made sure that the Server can connected to the SQL Server using the ODBC connection. The only difference is this server is in a different subnet as we want this to be available if there is a problem with the primary site. Does anyone have any suggestions on what might be causing this issue?
Servers are 2016 and SQL version is 2017.
Thanks,
Gavin
↧
RDSH network printer driver sometimes lost automatically
Hi,
We are using remote desktop session host. the operating system is windows server 2016. Recently several user complain that their printer gone automatically. the printer installed on the printer server. we connected to printer through\\servername\printername.
on the event viewer. Applications and services----->Microsoft----->windows---->print service_
there have some error message like the following:
1. the default printer was changed to \\serveranme\printer name . see the vent user data for context information
2.\\servername\printer name initialization failed at \\servername\print$\BID\HPBOID.dll. Error 3. The system can not find the path specified occur because of system instability or a lack of system resources
3. Settings for printer.... were changed. No user action is required.
Anyone what is the problem of this
Looking forward for your feedback
Best Regards,
Apollo Ye
↧
RDS Session Host keep disconnecting
Hello All
I have something very weird, when I'm trying to Access the RDS Session from RDweb the session keep disconnecting however when I tried the normal RDP to the session host the Performance was amazing and even no single disconnection happened.
any Clue??
Ahmed Ali
↧
↧
applying different policy for external and internal connections
Hi,
We are currently setting up RDS within our envirnoment.
We have: RDCB in HA setup
RDWA & RDGW setup running on same machine (x2 for loadbalancing) behind an F5 load balanding VIP.
We want to expose some resources also externaly. This is not the issue but I have following concern:
We would like to have different GPO applied for the user based on their location (external vs internal).
If as user is inside the lan (=internal), working on his work laptop, we know that the client is safe as we have a decent antivirus running on our PC's. While when if he is working from external location, we don't know 100% that the user is working on a clean
client..
For this we want to strengthen the RDSH more when a user connect from external location.. (example, don't redirect local drives, stop copying over clipboard, don't redirect printers, perhaps way more settings yet to decide,... )
First possible solution:
We were thinking of creating 2 security groups -> RDS_internal_appX & RDS_external_appX. Depending on which group a user is in, he would receive the correct GPO.
It is quite possible though that a user resides in both groups, as he can access the resources from the internal lan & also sometimes work from home..
Issue here is: when he is in both the groups, he will apply both GPO's and have conflicting settings..
Is there a way to check from which origin a user comes? I know when we bypass the GW, that we are internally and when connection is setup from external, via the GW, we receive a connection with the GW's IP address.. Is there a way to use this in for instance
a WMI filter?
Second possible solution:
Setup extra sessions hosts, some for internal & some for external.. But this is a bit overhead as we will have to manage all of them..
Do you guys have any idea how to approche this ?
Thx!
↧
RDS2016 - Black Screen on RemoteApps
Hello Guys,
In the last time since we upgraded our Terminal Services to Windows Server 2016, we're facing a problem.
Sometimes it happens that when a user starts a RemoteApp, he get's a black Screen on Logon and nothing more happens.
When he closes the Window and start the RemoteApp again he login successfully.
Have some of you expierienced with this problem?
Thanks for your help!
Regards,
Dominic
↧
RDP Over TLS 1.2 Only.
Hello Experts,
I am looking for guidance on how to allow RDP over TLS 1.2 only in windows 2008, 2008R2. 2012, 2012R2.<o:p></o:p>
I used IIS Crypto tool to remove all vulnerable ciphers, protocols hashes etc. but when I reboot machine I lost RDP access. I googled a lot and found many articles that state that MS has released a update to support RDP over TLS 1.2 for windows server 2008 and previous versions but I can’t see TLS 1.2 in RDP security layer level in group policy. same goes for windows 2012/R2 etc.<o:p></o:p>
so I can disable vulnerable protocols using IIS Crypto but not sure how to make sure that RDP is set to happen over TLS 1.2 only. <o:p></o:p>
Any help would be highly appreciated.
Thank you
↧
Windows Server 2016/RemoteFX virtualization compatibility with Tesla M6/M60 driver version 385.54
Looks like, we cannot use 385.54 drivers for virtual GPU, unable to run virtual GPU (Remote FX) as GPU does not show in the HyperV setting. Once they reverted to old driver 376.84, physical GPUs under Hyper-V settings can be seen.
This are not grid Software just drivers downloaded from website.
Is anyone facing the same issue with the driver version.
Thanks in advance
↧
↧
2012 RDP / RDS Remote Desktop Terminal Server incompatible with Windows 2016 Domain Controllers? Access Denied
So we have a few 2012 R2 Terminal Servers at my company that were working fine until we started the process of replacing our Domain Controllers with new Windows 2016 Servers.
Since then our users are getting intermittent "Access Denied" errors when they try to RDP to these terminal servers.
Generally the "Access Denied" error occurs when a terminal servers starts to use one of the newly added 2016 domain controllers. We can workaround the problem by sending an command telling the terminal server to use one of the older 2012 R2 domain controllers instead. Then things work again.
So the question:
Is there a misconfiguration with the new 2016 domain controllers or can an adjustment be made with the 2012 Terminal Servers?
Is the problem that Windows 2016 Domain Controllers are not compatible with 2012 R2 Remote Desktop Services servers?
We are having problems finding documentation on this.
What we do know is that if we decide to start upgrading to new 2016 Terminal Servers we will have to purchase new 2016 RDS Cals (not sure if we are budgeted for that...)
For those interested, you can find out the domain controller you are using by running the following elevated PowerShell command (this assumes the command is run remotely as you might be locked out due to the RDP access denied error):
nltest /Server:<your-terminal-server> /DSGETDC:<ad domain>
to specify the domain controller you want to be on (in our case we want to switch to back to a 2012 R2 domain controller), the command is:
nltest /Server:<your-terminal-server> /SC_RESET:<ad domain>\<specific domain controller>
↧
Server 2008R2/2012R2 Entire Domain Seems Not To Be Running Login Script Suddently
We have a domain, with multiple servers and multiple users. We use a domain login script, which primarily maps drives, and everyone is setup to run the login script in Active Directory. It has been working for years. Suddenly, last week, I'm getting reports of drive letters not being mapped. I tested several users, and it wasn't running the script on login, on either our 2008R2 or our 2012R2 servers. If I manually run the script, it works fine, so there isn't anything regarding access to the script, or the locations. Temporarily, I setup group policies to map the drive letters, but that isn't really the way I'd like to have things work. Any idea what might be wrong?
Thank you.
Jeremy Heymann Market Mentor Online
↧
RDS 2016 - HTML5 Client certificate error
Hi,
Ive recently deployed the HTML5 Web Client, at an existing RDS 2016 setup, using this guide:
https://custominterfacesolutions.com/html5-web-client-microsoft-remote-desktop-services-2016-steps-install-rd-web-client/
The setup contains 1 x RDWeb server, 2 x RDGW and 2 x Connection brokers.
A single public trusted wildcard certificate is used, for the entire RDS setup, containing the domain name, that the servers is belonging to.
Im able to login to the Web Client, and see all the published applications, that is available.
But when trying to connect, i then get an certificate error, containing the name of the Remote Desktop Session host...
Ive managed to find the certificate at the Session Host, containing the same thumbprint as the one on the picture.
Added the certificate to the trusted root cert auth, across all the frontend RDS servers (Web,GW,CB) - but that didnt help.
What seems to be the problem, since i cant find any solution to this error?
↧
2 or 3 server rds 2016 farm in azure, setup questions
I have a client that is on a single 2012 rds server now in azure using remote apps internally and externally.
We'd like to do two 2016 servers for more redundancy. Is it possible to install the gateway/connection broker/web/session host roles on both servers and configure for high availability? Otherwise could we do 2 session hosts and 1 server with the gateway/connection broker/web services on it. A lot of the examples show 4,6 or more servers but they do not want to pay for that. Just looking for some ideas here, thanks!
↧
↧
poor performance
Hi,
We have a server 2008 R2 with Hyper-v rule and some VM servers on it. when we connect to the VMs everything is OK.
we have a customer with a connection of 130Mbits/S when they access one of the servers and they open a picture (5mb) and try to zoom in and scroll the pic then we see pic move block by block.
Any idea why with 130 Mb/s connection this customer has poor performance when come to scrolling a picture?
Thanks
Shahin
↧
moving remote desktop terminal license from 2008 r2 to 2016 server, after license 10 cal user license install its asking for 5 5 alpha char
I assumed its the 25 alpha of the OS of a connecting user, but all that i attempt to input fail.
Is it looking for another 25 alpha other than OS, connecting computers are win 7 pro and windows 10.
Server is setup in a workgroup.
When purchased on the last workgroup server in open volume licensing we received one 7 5 alpha character code and the remote desktop licensing accepts that license.
Any input appreciated
↧
Black Screen on all new Connections, SessionHost has to be rebooted
hi,
we're suffering from session hosts that produce black screen errors in a RDS 2016 farm.
already connected users can mostly work, all new connections end up with a black screen.
to resolve the error the server has to be restarted.
i can say that
- this error appears after error 1534 (Fehler bei der Profilbenachrichtigung des Ereignisses Delete für Komponente {709E2729-F883-441e-A877-ED3CEFC975E6}. Fehlercode: Das System kann die angegebene Datei nicht finden.) starts appearing in the eventviewer.
- upon checking the registry for this SID i end up at "ProfileNotifyHandler Class app id {E10F6C3A-F1AE-4adc-AA9D-2FE65525666E} inprocserver32, C:\Windows\System32\gameux.dll".
- starting explorer.exe per taskmgr does not open an actual explorer window although the process appears in taskmgr
- tskmgr, eventvwr, cmd can be started without problems
- affected users appear as active in RDS management
- no third party security software is installed
- farm is fully patched
- HKLM\Software\Microsoft\WindowsNT\CurrentVersion\ProfileGUID and ProfileList are ok (no old or .bak entries)
looking forward on how to resolve this without rebooting the server or a permanent fix
thank you
best regards
↧