how can i change the email for a microsoft vlsc portal
↧
how can i change the email for a microsoft vlsc portal
↧
RDS 2019 Gateway compatibility with 2012 R2 sessionhost
Hello
Can a Windows Server 2012 (R2) sessionhost be added to a Windows Server 2019 Gateway, and is this supported?
The Microsoft documentation has not yet been updated for Server 2019.
(https://docs.microsoft.com/en-us/windows-server/remote/remote-desktop-services/rds-supported-config)
I would like to migrate existing SH's to a newer Gateway to make use of a broader set of security ciphers.
Kind Regards
D.
↧
↧
Issues with resource redirection and server management on 2008 R2, 2012 R2 and 2016
Hi All
We are encountering a rather strange issue on a few of our VMs. We are running a Hyper-V environment on 30 physical hosts. The hosts are made up of 4 different models, from 2 different manufacturers (Dell and Cisco). All our VMs are Server 2008 R2, 2012 R2 or 2016. They are either Enterprise or Datacentre edition and full desktop installs, nothing running core edition. We run Symantec Endpoint Protection on all physical and virtual servers.
The issues we are having seem to manifest themselves in 2 main ways, although both seem to be connected. The first thing we notice is issues with resource redirection. We run an RDS environment for clients. With some of the VMs, the clients are unable to see their locally connected printers. On some of these machines, restarting the spooler seems to sort this. On the rest, a full server reboot is required. Following the reboot, it seems to work fine for that day, then it drops off again requiring another reboot. No errors or warnings in the event logs. It just doesn’t seem to work. We tested the drive redirection, and this also seems to drop off when the printers fail to connect. However, if the printers failing to work is fixed by the restarting of the spooler alone, the drive redirection is not affected and always stays working. This seems to happen on all 3 releases of Windows Server. It happens on different physical hosts from different manufacturers and ranging from 4-year-old hosts to 2-month-old hosts.
The other issues we have noticed is in the Server Manager. When you select the All Servers tab, you get a box in the middle showing the list of the servers that are online or offline, and deeper details if its online but cannot talk. Some servers seem to show up as “Online – Cannot get role and feature data”. These servers we cannot manage properly remotely or indeed locally for things such as RDS Broker that requires the Server Manager. We are unable to change any of the roles or features, to remove or add new ones. We are unable to install or uninstall any applications or Windows Updates. We are also unable to access Disk Management, the VDS being unavailable. We reboot the affected server and that will bring it back online, but the issue will come back, it may be an hour, or it may be a few days.
I have taken copies of VMs that are struggling and removed the AV, and removed all updates installed in the last month. The issue persisted. What is interesting, I took another copy of the same VM and popped it into an isolated network (Private Network) and it didn’t seem to be affected by the issue. I am running this test again and will update this with the results to confirm, but that does seem to be hugely out of the pattern, purely by isolating it. Now this may be due to another VM causing issues, or a lack of WAN access but I am pretty much out of ideas. I have tried as many iterations of this as I can think of, removed and tried various versions of it. I cannot see what is causing this. It seemed to start badly 3-4 weeks ago. It is not affecting all servers, and it is affecting different clients with their environments ranging from Workgroups to Domains, each client having their own space on the hosts. However, the network is one large subnet, so it is possible that something is passing across the LAN. As I say, I have tried everything that I normally would and done lots of digging online and found nothing.
Many Thanks
James
↧
NPS Azure MFA working for RDWeb but not RDC
Single RDS gateway 2016. Both RDweb and RDC point to same Gateway. We have NPS extention configured.
When we login on to RDweb we get the MFA prompt from Ms Auth
When we log on to the same GW via RDC the logon never gets to NPS for MFA.
I am trying to ID the issue. RDweb is aware and looks to the NPS CAP store. But RDC seem oblivious. How do these two authenticate differently? Any ideas on how to troubleshoot to ID and resolve?
I have even remove NPS completely and rebuilt but same issue. So I am convinced the issue is w. RDC/RDGW and not the NPS/MFA side of things.
Thanks,
SJMP
↧
Windows Server 2016 MSI Installer appears and application freezes
Hello,
I'm banging my head against the wall and can't figure out my problem on my own. So I would be very happy about some feedback.
Following situation:
I have a Windows 2016 server running as a terminalserver. I have 5 clients connected to my server. I mainly use 2 applications on my server which communicate with eachother (medical programs, one for managing patient data and the other one to show imported
images).
Whenever I start my program A and navigate to options a MSI installer appears which wants to install application B (even tho it is already installed). The MSI installer stops during "Preparing to install..." and program A freezes.
I took a look at my logs and it gives me the following warning: "Detection of product 'xxx', feature 'OleInterface' failed during request for component 'xxx'. It then tries to open the MSI installer and stops.
When I deinstall application B the MSI installer doesn't appear.
My Application A does not need the OLE interface but I tried both installing application B with and without OLE interface with the same result.
Here is what confuses me the most: with the administrator account aswell as with 4 other user accounts I run in the problem mentioned above. But with 2 other user accounts I do not have any problem at all. There is no MSI installer appearing and my program does not freeze.
What am I doing wrong?
Thanks
↧
↧
Windows 10 black screen with remote app
We have started seeing black screens with Windows 10 builds 1709 1803 1809. The black screens are intermittent and for the most part can be resolved by minimizing and maximizing the remote app. This leads me to believe this is a screen redraw
issue and not a problem with any of the remote apps.
The RDWEB farm is server 2012R2 with 2 gateways, 2 session brokers, 2 web servers. There are 207 collections with 171 host servers. Windows 7 w\ rdp 8.1 does not seem to have this issue.
The RDWEB farm is server 2012R2 with 2 gateways, 2 session brokers, 2 web servers. There are 207 collections with 171 host servers. Windows 7 w\ rdp 8.1 does not seem to have this issue.
↧
RDS connection broker HA 2016 failover problem
Hi!
I apologize for my English.
Question about RDS connection broker HA 2016 failover.
I set up an RDP farm.
Two connection broker servers (CB1 and CB2) HA and 2 rd session host servers (T1 and T2).
As long as both CB servers are online, everything works fine. CB1 is an active management server.
I connect to T1 and then perform a disconnect. In server manager and SQL DB, I see the session in the disconnect state. After that, I suddenly turn off CB1.
1. If wait for about 5 minutes until the system itself makes management server CB2 active and then connect to T2, the RDP session will be redirected to T1. This is the expected behavior.
However
2. If immediately after suddenly turn off CB1 to attempt to connect to T2, then the session will be connected to it. Two sessions will appear in server manager and SQL DB. One is in the disconnected (T1) state, the other is in the active (T2) state.
Is this the correct behavior of the system, or have I configured something wrong?
Thanks in advance for your help.
I apologize for my English.
Question about RDS connection broker HA 2016 failover.
I set up an RDP farm.
Two connection broker servers (CB1 and CB2) HA and 2 rd session host servers (T1 and T2).
As long as both CB servers are online, everything works fine. CB1 is an active management server.
I connect to T1 and then perform a disconnect. In server manager and SQL DB, I see the session in the disconnect state. After that, I suddenly turn off CB1.
1. If wait for about 5 minutes until the system itself makes management server CB2 active and then connect to T2, the RDP session will be redirected to T1. This is the expected behavior.
However
2. If immediately after suddenly turn off CB1 to attempt to connect to T2, then the session will be connected to it. Two sessions will appear in server manager and SQL DB. One is in the disconnected (T1) state, the other is in the active (T2) state.
Is this the correct behavior of the system, or have I configured something wrong?
Thanks in advance for your help.
↧
Change expiration time for issued CAL's
Hi All,
I am trying to check if we can change the default expiration days (60 days) for the RDS licenses issued. Right now we use "Windows Server 2016 -RDS Per User CAL" and we could see some old users who are not exclusively using the RDS application. I want to check if there is way to reduce the expiration days to 7 or 10 days so that we can avoid the license shortage. I also want to check if there is way to get monitoring if the license usage reached 90% or more.
Thanks in advance!
↧
Windows 2016 RADC URL rejects credentials. An Error has Occured.
Good Morning,
Hoping to get some insight on troubleshooting this.
I have a brand new single instance Windows 2016 Standard Remote Application and Desktop Server.
The server hosts the following roles;
Gateway
Licensing
Connection Broker
Web Access
The server is protected via a public CA Cert and works as far as being a Gateway, and Web Access is concerned. Users can connect thru it to other servers via gateway and can open and launch applications via the Web page.
When users try the add the URL https://servername/RDWeb/Feed/Webfeed.aspx in the RADC applet in control panel, they receive an error that they are using Incorrect Credentials. When they type in their credentials in either DomainName\username or username@domainname format it errors out and they need to try again or cancel.
I have looked in the event log in the server and while I can see the transactions happening in the IIS logs, the end user never is allowed to log in or receives apps.
Could use some insights here?
If I type the URL correctly in a web browser, I receive a login prompt which once submitted provides me what appears to be an encrypted token.
↧
↧
Guide for transitioning from Win2008R2 RDS to a Win2012R2/2016/2019 RDS?
I have a Windows Server 2008R2 server that i installed Remote Desktop Services on many years ago. It only has two role services installed.
Remote Desktop Server. It is as basic a configuration RDS can be. It only has Remote Desktop Session Host and Remote Desktop Licensing Server installed. Nothing else. And all i do is create local users, put them in the Remote Desktop Users group and i let them remote to this server using "Remote Desktop Connection" in Windows 7/10.
How do i replicate this environment as closely as possible in Windows 2012R2/2016/2019? I see that those versions introduced a bunch of new features and role services, all of which look like stuff I DONT NEED. :) I dont need a connection broker or a web server! None of that. I just want what i already have today and nothing more. Is that possible?
Has anyone written a guide for building a bare bones RDS server on the newer OS that doesnt have all this new stuff?
↧
VDI Shutdown inactive machines
Hello,
Is there any documented approach to minimize the number of running VDIs?
I'd like to :
- Schedule starting the machines early in the morning.
- Schedule shutting down the machine after working hours.
- Allow the users to start their machine without admin support.
1 and 2 are easy, my concern is with 3. or any other recommended approach.
Thanks
↧
RDS licensing issue in windows server 2012 R2 Datacenter evolution.
we are facing RDS licensing issue in windows server 2012 R2 Datacenter evolution.
Error : RD Licensing Manager : the license code is not recognized .ensure that you have enter thr correct code
↧
Help with migrating RDS servers to new domain
Hi,
We have two AD forests and I'm moving users from one domain to another. Domain A have 100 users and two terminal servers 2012 r2 (TSSRVR1 is session host, connection broker, RD web, license server and TSSRVR2 is session host only). I have migrated all users to new Domain B using ADMT, so they keep the same passwords. Now I am really confused what is the best way to move terminal servers to new domain, should I just disjoin and join to new domain or should I use ADMT to migrate them? what is the good working approach?
I did try to test migrating them in my lab using ADMT and when I open TSSRVR1 I get error following servers (TSSRVR1.DomainA, TSSRVR2.DomainA) are not part of deployment and add them into server pool. Which means rds deployment still searching for servers on old domain, I added TS servers from new domain using Add Servers but no luck.
Before I do migration in production, I really need to know if disjoin and re-join is better than ADMT? If I go with this approach what are steps involved to make TS servers functional again?
There are no profiles to migrate or to worry about, they will have new profiles from Domain B because they only use one published app on terminal servers.
Thank you and your expert help will be highly appreciated.
↧
↧
Load Balance 3391/UDP and 443/TCP for RDS Gateways
Looking for some help concerning the RDS Gateway Role and load balancing.
I have an pre-production RDS environment that contains 3x Gateway Servers. I have tested the environment by connecting through each one of the individual Gateways and everything works just fine.
I'm now at the point where I want to use my hardware load balancer to receive the connections and distribute them between the 3 Gateways. I would also like to use the UDP Transport on 3391 as well.
The part that I don't completely understand is that I'm assuming that each individual connection, which will be coming in initially on TCP 443 and then UDP 3391 would need to be routed to the same gateway?
It would make sense and be easy to set the LB up to balance both ports to the 3 Gateways, but without any specific load balancer magic, connection "A" might go to one gateway for 443 and a different gateway for 3391.
It's possible that I could be overthinking this and I'm not sure if this is a flat out requirement. In the case where the user initially connects on Port 443 to Gateway A, then the UDP traffic comes in and the LB forwards that to Gateway B. Does Gateway B know to forward that UDP traffic to Gateway A if all the gateways have the farm properties configured?
I have an pre-production RDS environment that contains 3x Gateway Servers. I have tested the environment by connecting through each one of the individual Gateways and everything works just fine.
I'm now at the point where I want to use my hardware load balancer to receive the connections and distribute them between the 3 Gateways. I would also like to use the UDP Transport on 3391 as well.
The part that I don't completely understand is that I'm assuming that each individual connection, which will be coming in initially on TCP 443 and then UDP 3391 would need to be routed to the same gateway?
It would make sense and be easy to set the LB up to balance both ports to the 3 Gateways, but without any specific load balancer magic, connection "A" might go to one gateway for 443 and a different gateway for 3391.
It's possible that I could be overthinking this and I'm not sure if this is a flat out requirement. In the case where the user initially connects on Port 443 to Gateway A, then the UDP traffic comes in and the LB forwards that to Gateway B. Does Gateway B know to forward that UDP traffic to Gateway A if all the gateways have the farm properties configured?
↧
Please help azure VMs cant RDP after removing weak Ciphers
Hi, I'm having a really rubbish time of trying to get my Azure VM's. I need to remove any weak ciphers suites and still have RDP work.
Please, in simple steps and English can someone tell me what settings to set. and if possible the actual registry keys I need to set to make it work.
If I require cipher</g> suites that are weak, but required can you please show which ones they are.
'TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384',
'TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256',
'TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384',
'TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256',
'TLS_DHE_RSA_WITH_AES_256_GCM_SHA384',
'TLS_DHE_RSA_WITH_AES_128_GCM_SHA256',
'TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384',
'TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256',
'TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384',
'TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256',
'TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA',
'TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA',
'TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA',
'TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA',
'TLS_DHE_RSA_WITH_AES_256_CBC_SHA',
'TLS_DHE_RSA_WITH_AES_128_CBC_SHA',
'TLS_RSA_WITH_AES_256_GCM_SHA384',
'TLS_RSA_WITH_AES_128_GCM_SHA256',
'TLS_RSA_WITH_AES_256_CBC_SHA256',
'TLS_RSA_WITH_AES_128_CBC_SHA256',
'TLS_RSA_WITH_AES_256_CBC_SHA',
'TLS_RSA_WITH_AES_128_CBC_SHA',
'TLS_RSA_WITH_3DES_EDE_CBC_SHA',
'TLS_DHE_DSS_WITH_AES_256_CBC_SHA256',
'TLS_DHE_DSS_WITH_AES_128_CBC_SHA256',
'TLS_DHE_DSS_WITH_AES_256_CBC_SHA',
'TLS_DHE_DSS_WITH_AES_128_CBC_SHA',
'TLS_DHE_DSS_WITH_3DES_EDE_CBC_SHA',
'TLS_RSA_WITH_RC4_128_SHA',
'TLS_RSA_WITH_RC4_128_MD5',
'TLS_RSA_WITH_NULL_SHA256',
'TLS_RSA_WITH_NULL_SHA',
'TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384',
'TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256',
'TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384',
'TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256',
'TLS_DHE_RSA_WITH_AES_256_GCM_SHA384',
'TLS_DHE_RSA_WITH_AES_128_GCM_SHA256',
'TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA384',
'TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA256',
'TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA384',
'TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256',
'TLS_ECDHE_ECDSA_WITH_AES_256_CBC_SHA',
'TLS_ECDHE_ECDSA_WITH_AES_128_CBC_SHA',
'TLS_ECDHE_RSA_WITH_AES_256_CBC_SHA',
'TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA',
'TLS_DHE_RSA_WITH_AES_256_CBC_SHA',
'TLS_DHE_RSA_WITH_AES_128_CBC_SHA',
'TLS_RSA_WITH_AES_256_GCM_SHA384',
'TLS_RSA_WITH_AES_128_GCM_SHA256',
'TLS_RSA_WITH_AES_256_CBC_SHA256',
'TLS_RSA_WITH_AES_128_CBC_SHA256',
'TLS_RSA_WITH_AES_256_CBC_SHA',
'TLS_RSA_WITH_AES_128_CBC_SHA',
'TLS_RSA_WITH_3DES_EDE_CBC_SHA',
'TLS_DHE_DSS_WITH_AES_256_CBC_SHA256',
'TLS_DHE_DSS_WITH_AES_128_CBC_SHA256',
'TLS_DHE_DSS_WITH_AES_256_CBC_SHA',
'TLS_DHE_DSS_WITH_AES_128_CBC_SHA',
'TLS_DHE_DSS_WITH_3DES_EDE_CBC_SHA',
'TLS_RSA_WITH_RC4_128_SHA',
'TLS_RSA_WITH_RC4_128_MD5',
'TLS_RSA_WITH_NULL_SHA256','TLS_RSA_WITH_NULL_SHA'
P.s I'm just on about a simple RDP connection to a server from a workstation.
Thanks
Russ
↧
Windows 2012 R2 RDS RemoteApp "Protocol Error"
One of our customer's is receiving a strange "Protocol Error" when connecting to a RemoteApp via RD WebAccess. They are able to log into WebAccess just fine and the vast majority of the time are able to launch RemoteApps successfully. On occasion however they receive the error below (RemoteApp Disconnected - "Because of a protocol error, this session will be disconnected. Please try connecting to the remote computer again.")
If the user immediately re-launches the RemoteApp it works just fine.
I didn't find anything relevant in the event logs.
- Their RDS environment is all Windows 2012 R2, with three session hosts, RD Gateway, RD Broker, and RD WebAccess.
- Affected users already have the latest Remote Desktop clients on Windows 7.
- Affected users are both local to the RDS servers and across private WAN links or site-to-site VPN's.
Here's a key piece of information - The problem started in April after RDS and the customer's RiverBed configurations were changed to match RiverBed's recommended best practices. Basically RDS traffic began being optimized by the RiverBeds so the compression& encryption settings on RDS was turned down/disabled to allow the RiverBeds to perform this function.
I don't believe that the RiverBeds themselves are the cause of the problem due to the fact that some of the users that experience the intermittent problem are local to the RDS servers, thus their traffic is not going through the RiverBed appliances. I suspect that the so called "Protocol Error" may be related to encryption or compression in RDS but I haven't been able to narrow it down. This conclusion is more due to the fact that the problem started after making the compression & encryption change and not really because of any specific evidence pointing in that direction.
I had suggested to the customer that we reverse the RDS compression & encryption settings (one at a time) as a test to try to narrow the problem. They are reluctant to do this however because making these changes in RDS and the RiverBeds in April made such a dramatic difference in their overall performance - they don't want to go backwards!
I am considering using WireShark to sniff some packets, but because the problem is so intermittent (it can be days between errors) and the fact that I don't know what "protocol" is causing the problem, it is likely to be difficult to come up with a decent enough filter to grab useful data. It would be like drinking out of a firehose!
Anyone else ever see this error? Anyone?
-Ted
↧
User is logged on to a temporary profile
Hi All,
A virtual server (with Terminal Server role) based on Windows Server 2016 was upgraded several times in attempts to rectify the issue with users logging on to temp profiles. The number of connected users roughly 30-35.
It now has 20vCPUs and 72GB or RAM and at the moment CPU usage is about 30% and RAM usage is about 70%. This means the server is not running out of resources.
Now that I can exclude the resources related factor what else might be the root cause of this issue which recur literally every day?
Regards
↧
↧
Publish custom rdp on rdweb
Hey
Is it possible to publish a cutom rdp on the rdweb? (for another company/connection broker)
Mike
↧
Windows Server 2012 R2
Hi,
I tried to install Microsoft Office 2019 in the Windows server 2012 and it says that the operating system has to be upgraded to Windows 10. I have Office 365 running in the same server, but, this error only happens for Office 2019.
Just wanted to know if the Office 2019 just works on Windows 10 and not in any other platforms. Also is there any other alternative that could make this work?
Thanks,
↧
Server OS 2016/2019 Session hosts (RDS) problems with Remote Desktop Services is currently busy
Dear colleagues and support.
That is not something that was solved here, I found a couple of similar problems with 2008r2, but it cannot be applied to latest OS. And problem described in other topics are a little different
Our case:
We are using large infrastructure based on many Servers 2012r2 all in one RDS servers (Broker, Web, SH is installed at every server). Many servers published behind some load balancer.
As we have a lot of servers in farm - we have a redirected profiles configured (over GPO) and placed at DFS.
We started testing 2016 servers, and our test group start reporting problems with "Remote Desktop Services is currently busy".
Usually problem solved itself in 1-2 min, user have to try several times before he is able to connect. There was no hanged user sessions or something like this or some useful even log as i can see.
There was no solution for 2016 problem over the internet, so I was hoping to find it with 2019 server.
But we are able to reproduce problem even on "clean", powerful (8 cores, SSD, 32 GB RAM), freshly installed server with single role (RDS) on it for the minimal number of users (1-2 users online)
So that is not something like server load or not enough resources.
I assume it is related somehow to redirected profiles or some service really "busy" with what? But why it is working stable for 2012R2 and has such problem with 2016/2019? May be we can adjust some parameters, timeouts or something like this?
Do we have any workaround for this except disabling redirected profiles or living forever based on 2012 r2 (that is not an option when you have a farm for 1000 users online and many member servers behind balancer)
Many thanks for your ideas!
Regards,
Sergii V
↧