Hi,
I'm experiencing a weird issue when I try to connect to a RemoteApp using Windows 10. When setting up a connection for the first time, or after a credentials dialog, the connection is established successfully. However, when I choose to save credentials and reconnect after the successful first attempt, Windows 10 asks for credentials again with an authentication error message at the bottom of the dialog.
Other perhaps relevant information about the environment:
- Fresh Windows 10 and Server 2012R2 installations
- Windows 10 client not joined any domain
- Simple RDS deployment: all relevant/required roles (session host, gateway ed) on the same machine, except:
- Domain Controller and License server on different machine
- Windows 7 or Windows 8.1 clients, also not joined to any domain, do not experience this problem
I already checked on solutions to common RDS single signon issues without luck. So far, I was able to track down my problem to the following, with netlogon debugging enabled:
01/20 00:51:18 [LOGON] [2256] SamLogon: Network logon of
NETBIOS-DOMAIN\NETBIOS-DOMAIN\
So it seems, only when using the saved credentials, the domain name gets appended twice to the username and therefore fails authentication. When I re-enter the same credentials, the connection is established successfully and credentials saved. The debug logs shows the username is passed without the domain name twice:
(...)
01/20 00:50:05 [LOGON] [3920] SamLogon: Network logon of NETBIOS-DOMAIN\User from DESKTOP-ABC1234 Returns 0x0
01/20 00:50:05 [MISC] [2256] DsGetDcName function called: client PID=2212, Dom:NETBIOS-DOMAIN Acct:(null) Flags: NETBIOS RET_DNS
01/20 00:50:05 [MISC] [2256] NetpDcInitializeContext: DSGETDC_VALID_FLAGS is c07ffff1
01/20 00:50:05 [MISC] [2256] NetpDcGetName: domain.local. using cached information ( NlDcCacheEntry = 0x000000E79ABE4630 )
01/20 00:50:05 [MISC] [2256] DsGetDcName: results as follows: DCName:\\dc01.domain.local DCAddress:\\1.2.3.4 DCAddrType:0x1 DomainName:domain.local DnsForestName:hdomain.local Flags:0xe000f3fd DcSiteName:Default-First-Site-Name ClientSiteName:Default-First-Site-Name
(...)
When I reconnect, the just saved credentials are used and results in appending the domain name twice again. Using the User@domain.local notation at the credentials prompt does not make any difference as well.
Anyone experienced this behavior before? Any tips or recommendations are welcome.
Thanks,
Jan