Quantcast
Channel: Remote Desktop Services (Terminal Services) forum
Viewing all 21489 articles
Browse latest View live

Recreating Gen2 Virtual Desktop Pool

January 19, 2017, 4:25 am
$
0
0

Hello

I am running a Server 2016 based RDS deployment. I have created a virtual desktop collection with Gen2 VM as the master image.

The collection will deploy initially with no issues at all and work as it is expected to do.

However, when I attempt to recreate all desktops due to updates etc, the job will fail with the following error reported in Server Manager:

Failed: Task: Calling into Hyper-V: failed. Result of task [0x80004005]

Looking in the event logs on the CB I am able to find this message under Microsoft-Windows-TerminalServices-SessionBroker/Admin:

VM host [host.name] failed to execute VM Provisioning operation [Task: Calling into Hyper-V: ] for virtual machine [Gen-0] in pool [Gen_2_Test], Error: [Unspecified error ]

If I look in the VMMS event log on the actual Hyper-V host itself I can find this message:

The description for Event ID 4120 from source Microsoft-Windows-Hyper-V-VMMS cannot be found. Either the component that raises this event is not installed on your local computer or the installation is corrupted. You can install or repair the component on the local computer.
If the event originated on another computer, the display information had to be saved with the event.
The following information was included with the event:
Gen-0
ꐿ˜
崜݋翶
%%2147942402
0x80070002
The locale specific resource for the desired message is not present

However, the machine is still there and booted? However it will stop the rest of the recreations so a collection with more than one vm will not finish.

Any pointers would be really appreciated I've Googled everything, tried with/without checkpoints, with/without the machines started at the time of recreation, with/without secure boot and nothing works. All that works, is regeneration with a Gen1 VM

Please help :)

Steve


Search

RD Client Android and iPad issues with Server 2016

May 11, 2018, 4:36 am
$
0
0

Hi,

Since a recent update, it is no longer possible to connect to a machine running Server 2016 on the iPad and Android MS RD apps. The following message appears when trying to connect:

We couldn't connect to the remote PC. This might be due to an expired password. If this keeps happening, ask your admin or tech support for help. Error code: 0x207.

This has been tried on several servers, including fresh installs, with separate users.

There is not a problem with server 2012 R2.

Please can you help? Our staff are unable to use their iPads and Chromebooks to access important software on a remote server.

I would appreciate it if someone could get back to me as soon as possible as this is getting quite urgent now.

Kind regards,

Mark Cromwell

RDS problems

July 10, 2018, 8:51 am
$
0
0

Hi,

We have a RDS server ( Windows Server 2012 ) connected to a DC controller ( Windows 2016 ) : frequently users can't login because domain can't be reached.

We already pushed the server in the domain again but problem remains, the events logged are

- 36887 schannel

- 1061 : remote desktop session host server was unable to retrieve users licensing information from AD. Error 0x8007054b

- 5719 NETLOGON

After sometime ... adn without changes users can login again.

What could the problem be and how could we solve that ?

Best regards

Dirk

Can't connect to RDP on Windows Server 2016

April 25, 2018, 2:52 am
$
0
0

Hi,

We have a Server 2016 with Remote Desktop Services enable but we can't connect to it anymore (it worked before).

We tried a lot of things already but not solved it yet. It seems the RDS isn't accepting connections on port 3389.

- telnet to it on port 3389 not working

- ping does work

- verified the port setting in registry

- rebooted the server

- added a separate rule to allow 3389 always

- netstat -an doesn't show an listening port on 3389

Someone an idea?

Kr Kevin



Help with CAPTCHA on Web RDS

July 10, 2018, 1:54 pm
$
0
0
I am trying to find a workaround for my company to secure our Web RDS gateway. Putting it on the VPN is the last option we want to take, and as such I have been looking into implementing CAPTCHA to stop brute force attacks from occuring. Any help on how to do this would be great! P.S: Multiple Factor Authentication is simply not an option. Otherwise we would go with this. 

RemoteFX Display problems with Windows 8.1 VM but not with Windows 7 VM running on Hyper-V VDI Server 2012R2

January 26, 2015, 3:59 pm
$
0
0

Has anyone seen anything like this?

After many, many, hours of wading through and eliminating potential variables the issue has been narrowed down to being present with a Windows 8.1 VM and not on Windows 7 VM.

The problem is with glitchy display issues (Random Pixellation, Fuzzy Screen areas, Entire Screen filled with random shapes/colors etc.).  

This is a Server 2012 R2 environment it is running Hyper-V Remote Desktop Virtualization Host.

  1. An Nvidia Quadro K2200 adapter has been enabled for RemoteFX and passed through.
  2. Also have tried Nvidia Grid K2 adapter. Both adapters use same driver set and multiple driver versions have been tested.
  3. Two Generation 1 VM's have been created.  One for WIndows 8.1, One for Windows 7.  All updates installed.
  4. Each VM uses the same set of Hyper-V resources, Virtual Switch etc.  (The settings for each VM are the same).
  5. With RemoteFX disabled on each VM the issue is not present on either VM.
  6. With RemoteFX enabled on each VM the issue is present on the Windows 8.1 VM and not the Windows 7 VM.
  7. There is no difference if only one VM at a time is enabled and running.  (Not GPU load related)

Talmage D. Holt

How to connect to different Collections from the same Web Access server?

July 10, 2018, 6:11 pm
$
0
0

I am looking for a way to use a single RD Web Access page to connect to different Collections. Here is what I have.

Session Collection 1 - Application published using farm webapp.domain.com (Five servers)
Session Collection 2 - Remote Desktop published using farm rds01.domain.com (Five servers)
Session Collection 3 - Remote Desktop published using farm rds02.domain.com (Five servers)

Each farm has a different use case and applications, hence the three farms. But I would like users to access any of them by logging into https://web.domain.com/RDWeb.

The farms are using round robin DNS, which could be part of the problem. I did this so if you use mstsc, the computer name points to rds01 which has an A record to all five servers.

The other potential problem could be that I used Set-RDPublishedName on the Connection Broker and changed the name to webapp.domain.com. I did this so the wildcard SSL certificate didn't issue any warnings.

It appears that the published name on the Connection Broker is what the Web Access server uses to launch everything. So instead of Remote Desktop going to RDS01 or RDS02, everything redirects to webapp. If what I am trying to do is possible, what do I need to change?

Cant log onto more than 2 RDS connections 2016

July 10, 2018, 7:17 pm
$
0
0
I have installed RDS licence for 3 users on windows server 2016. None of the licences seem to be assigned when i generate a report. The licencsing server is activated, as is the host server. But it still will try and force another user off when more than one RDS user tries to log in. Also, when i look at the propertied for deployment, it appears that there are 2 liceinsing servers- one with the local name and one with the internal  ip address of the server. Any ideas? 
Search

RDSH network printer driver sometimes lost automatically

July 4, 2018, 2:19 am
$
0
0

Hi,

We are using remote desktop session host. the operating system is windows server 2016. Recently several user complain that their printer gone automatically. the printer installed on the printer server. we connected to printer through\\servername\printername.

on the event viewer. Applications and services----->Microsoft----->windows---->print service_

there have some error message like the following:

1. the default printer was changed to \\serveranme\printer name . see the vent user data for context information

2.\\servername\printer name    initialization failed at \\servername\print$\BID\HPBOID.dll.  Error 3. The system can not find the path specified occur because of system instability or a lack of system resources

3. Settings for printer.... were changed. No user action is required.

Anyone what is the problem of this

Looking forward for your feedback

Best Regards,

Apollo Ye

Memory exhaustion on Win10 Pro via RDP

July 11, 2018, 1:36 am
$
0
0 
Hello,

I'm using freerdp to check RDP availability of a Win10 virtual machine running under Proxmox 5.2 (kvm). The command used is:

/usr/bin/xfreerdp /cert-ignore /auth-only /u:$USER /p:$PASS /v:$HOST

Every time this command is launched, the svchost.exe process related to "TermService" grows around 8MB in its "private bytes" memory. That amount is reduced to around 5MB if you set the display size in freerdp to 1x1 (/size:1x1). That memory is never returned to the system and in a few days some messages related to "resource exhaustion" are logged and eventually RDP stops working. At that time, that svchost.exe process has more than 10GB of "private bytes" (VM has 20GB total memory). Win10 needs to be restarted for RDP to work again, as restarting TermServices service does not help.

Adding memory or a bigger pagefile to the VM only delays the time when RDP stops working, it will eventually fail anyway.

I dont know if this is caused by FreeRDP shutting down the connection without notifying the RDP Server properly or if it is a Windows issue or a configuration issue. It's very easy to create a DoS to a Win10 Pro RDP
server if you have valid credentials. I haven't tested any other Windows version nor any other virtualization environment. Luckly, it doesn't happend if you dont have valid credentials.

Please, give it a look to find out what could be causing this behaviour.
Thanks a lot

Issues connecting to RD Gateway

July 9, 2018, 12:44 am
$
0
0

Dear all,

I have some trouble with some (not all) users connecting to RD Gateway. The RD Gateway is running Windows Server 2012 R2, the clients having the issues are Windows 10.

When these users try to connect to the GW, the following error with Event ID 306 occurs in the Eventlog:

The user "Unknown", on client computer "x.x.x.x", was not authorized to connect to the RD Gateway server because a tunnel could not be created. The authentication method attempted: "Cookie" and connection protocol "HTTP". The following error occurred: "2147965432".

I tried to Google that but with little to no success. I found similar issues though, talking about checking the GW Certificate in one post, actually that was setup correctly. Another post talked about just doing an iisreset, which I did but also to no avail.

Also I checked the LANMan settings (Network security: LAN Manager authentication level) on server and client both seem to be established via Domain GPO (I can't change them. Anyway, they are both set to the same level.

Did anyone else face similar issues with RD Gateway and Windows 10? What else could I do?

Any help is much appreciated.

Thanks,

Harald


Server 2008R2/2012R2 Entire Domain Seems Not To Be Running Login Script Suddently

July 8, 2018, 8:13 pm
$
0
0

We have a domain, with multiple servers and multiple users. We use a domain login script, which primarily maps drives, and everyone is setup to run the login script in Active Directory. It has been working for years. Suddenly, last week, I'm getting reports of drive letters not being mapped. I tested several users, and it wasn't running the script on login, on either our 2008R2 or our 2012R2 servers. If I manually run the script, it works fine, so there isn't anything regarding access to the script, or the locations. Temporarily, I setup group policies to map the drive letters, but that isn't really the way I'd like to have things work. Any idea what might be wrong?

Thank you.

Jeremy Heymann Market Mentor Online

Server 2008 R2 logs off users at login

July 11, 2018, 4:25 am
$
0
0

We have an issue that just started happening today on our standalone Windows Server 2008 R2. There is no domain it's just using local users and groups when a particular user tries to login it goes through the process and then immediately logs them off before the desktop is reached.

The following errors are logged in the event viewer:

Event ID 5: source: Kernel General{Registry Hive Recovered} Registry hive (file): '\??\C:\Users\username\ntuser.dat' was corrupted and it has been recovered. Some data might have been lost. followed by a event id 7002: User Logoff Notification for Customer Experience Improvement Program

If I setup a brand new user they have the same issue, if I then add the existing user or newly created user to the administrator group they can both logon, remove them from the group and they can no longer logon anymore.

I have run a scandisk, sfc /scannow, rebooted the server, disabled customer experience improvement, If I try to run gpedit.msc I get "Administrative templates encountered an error while parsing incorrect document syntax" I get a half dozen of these before it allows me in. I tried to delete the users profiles and copy over another working users ntuser.dat but that doesn't help. All terminal server licensing is correct and working.

Leaving these users as admins is not a solution for obvious reasons, any ideas?

Disable TLS 1.0 on a FIPS enabled Windows 2012 R2 server

June 29, 2018, 12:34 pm
$
0
0

We are disabling TLS 1.0 per the standard recommendation via keys:

HKLM:\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols\TLS 1.0\Client

HKLM:\SYSTEM\CurrentControlSet\Control\SecurityProviders\SCHANNEL\Protocols\TLS 1.0\Server


What are seeing is very odd.  On all systems that are not FIPS enabled, RDP (port 3389) is only accepting TLS 1.2 connections (this is per our Nessus scans).  On all systems thatare FIPS enabled, RDP is accepting TLS 1.0-1.2 connections.  



The reg keys are the same.  Is this a known issue with FIPS + RDP + these protocols?  Can someone provide any documentation?



Thanks much

Blake


Issues with RODC in DMZ

July 11, 2018, 8:19 am
$
0
0

Hi, 

I am following the guide (https://docs.microsoft.com/en-us/windows-server/identity/ad-ds/deploy/rodc/install-a-windows-server-2012-active-directory-read-only-domain-controller--rodc---level-200-#stage-rodc-workflow)  to install 2 RODC servers in our DMZ. 

All setup goes ok, until I reach the Attach stage, then I get error on both systems 'The wizard cannot access the list of domains in the forest.  The network path was not found. 

I can ping the Default gateway, Nslookup sees the Primary Domain Controller, I have flushed the dns, but always the system fails with the above error.  Also, always fails is Dfsrdiag command. 

Adding the A record in DNS did not fix either. 

Help please?  Thanks 

Search

Issues with RDP after RDS install

July 11, 2018, 10:13 am
$
0
0

Hello hoping someone has a quick answer. I have a 2012 R2 server I installed RDS on. After I installed RDS I attempted to configure a collection. I install the collection with pretty basic settings. I give it a collection name, I add the local server to the server pool ( its the only option) I remove the domain user group and add domain admin to the "User Groups". I unchecked user profile disks because its not required. I then hit create. It does its thing and comes back with the error " Unable to configure the RD Session Host server <SERVER / FQDN> Invalid operation.

When I hit close the collection is there. I have not been further than this to test anything. There is another issue. After I add the RDS role and do this. When I attempt to RDP back to the same server I can no longer RDP. I get an error the server refused the connection. When I remove the RDS role I can remote back to the device.  

I did find this article ( https://support.microsoft.com/en-us/help/3014614/you-cannot-create-a-session-collection-and-an-error-occurs-in-windows ). This did not help.  Any thoughts would be great. 

2012 RDP / RDS Remote Desktop Terminal Server incompatible with Windows 2016 Domain Controllers? Access Denied

July 7, 2018, 11:11 pm
$
0
0

So we have a few 2012 R2 Terminal Servers at my company that were working fine until we started the process of replacing our Domain Controllers with new Windows 2016 Servers.

Since then our users are getting intermittent "Access Denied" errors when they try to RDP to these terminal servers.

Generally the "Access Denied" error occurs when a terminal servers starts to use one of the newly added 2016 domain controllers. We can workaround the problem by sending an command telling the terminal server to use one of the older 2012 R2 domain controllers instead. Then things work again.

So the question:

Is there a misconfiguration with the new 2016 domain controllers or can an adjustment be made with the 2012 Terminal Servers?

Is the problem that Windows 2016 Domain Controllers are not compatible with 2012 R2 Remote Desktop Services servers?

We are having problems finding documentation on this.

What we do know is that if we decide to start upgrading to new 2016 Terminal Servers we will have to purchase new 2016 RDS Cals (not sure if we are budgeted for that...)

For those interested, you can find out the domain controller you are using by running the following elevated PowerShell command (this assumes the command is run remotely as you might be locked out due to the RDP access denied error):

nltest /Server:<your-terminal-server> /DSGETDC:<ad domain>

to specify the domain controller you want to be on (in our case we want to switch to back to a 2012 R2 domain controller), the command is:

nltest /Server:<your-terminal-server> /SC_RESET:<ad domain>\<specific domain controller>

moving remote desktop terminal license from 2008 r2 to 2016 server, after license 10 cal user license install its asking for 5 5 alpha char

July 6, 2018, 5:39 pm
$
0
0

I assumed its the 25 alpha of the OS of a connecting user, but all that i attempt to input fail.

Is it looking for another 25 alpha other than OS, connecting computers are win 7 pro and windows 10.

Server is setup in a workgroup.

When purchased on the last workgroup server in open volume licensing we received one 7  5 alpha character code and the remote desktop licensing accepts that license.

 Any input appreciated

2 or 3 server rds 2016 farm in azure, setup questions

July 6, 2018, 12:32 pm
$
0
0

I have a client that is on a single 2012 rds server now in azure using remote apps internally and externally.

We'd like to do two 2016 servers for more redundancy.  Is it possible to install the gateway/connection broker/web/session host roles on both servers and configure for high availability?  Otherwise could we do 2 session hosts and 1 server with the gateway/connection broker/web services on it.  A lot of the examples show 4,6 or more servers but they do not want to pay for that.  Just looking for some ideas here, thanks!



Windows 2016 RDS Deployment

July 5, 2018, 12:21 am
$
0
0

Dear All,

We are planning to deploy Windows 2016 RDS infrastructure. does Windows 2016 RDS support windows 2008 RD sessions?

Viewing all 21489 articles
Browse latest View live
Search
<script src="https://jsc.adskeeper.com/r/s/rssing.com.1596347.js" async> </script>