Quantcast
Channel: Remote Desktop Services (Terminal Services) forum
Viewing all 25525 articles
Browse latest View live

How to deploy a classic RD Session with Server 2012 R2

May 12, 2016, 1:58 pm
$
0
0

I am needing to deploy a W2K12r2 Classic Remote Desktop.  I am having a hard time collecting documentation to setup.  Here is our setup

2 W2K12r2 Session Host Servers

1 w2k12r2 hosting RD Web Access, RD Gateway, RD Connection Broker

The plan is to host RD Licensing on our DC

20 Clients connect using a Wyse WTOS Thin Client (there is no browser only a mstc client)

I want users to connect to a classic remote desktop.  I want sessions to be evenly divided between servers.  Users should only use one address to connect to the servers

Is there a doc that will walk me through the complete setup process.  I find docs on how to run through the Remote Desktop Services deployment wizard but nothing that explains how to get all the pieces working.  I am hoping there is a setup doc that walks one through each step to deploy in a production environment.  Since all clients are internal can I deploy with a self-signed SSL cert?  If so is there a doc that instructs how to setup, issue wildcard cert, and deploy certs to all servers.

I currently have Remote Desktop services depolyed in a lab environment, assigned the different rolls, and created a collection.  I connected through a browser but need to be able to connect with a mstsc client. 

Assistance is greatly appreciated

Bret Snipes

Search

Specific Clients Taking up Multiple RDS CALs

October 16, 2014, 2:03 pm
$
0
0

We use per device CALs on our Windows 2012 License server. We have 150 device CALs installed. We have about 45 thin clients logging into Windows 2012 server to get to their point of sale software. Our problem here is not the thin clients taking multiple licenses but it's the administrator's computers taking multiple licenses. I use RDC Manager to attach to the terminal servers on Windows 8. Other Admins here don't use RDC Manager, just the RDP app. They are using Windows 7. We are all getting multiple RDP CALs assigned to them.

My computer has over 30 permanent CALs assigned to it. There are days when my computer will take up 7 or 8 licenses. I have over 100 temporary licenses assigned to my computer!!

If a user calls and their terminal is getting a license error, I can go in and revoke one of the licenses for my computer, they get logged in fine. Do a refresh of the RD License Manager and I can see the terminal that user was having license problems on has a license from a week ago and the only new license handed out at that time is issued BACK to my computer!!!

If I install more licenses, our computers start eating them up. We had MS look into this about 2 months ago and they rebuilt the server and now we are back where we were at 2 months ago. Tried to re-contact MS on this but I have been waiting for 2 weeks for them to call back.

Basics of RD licensing count, windows server 2012, 10 unused licenses, 13 issued to Built-In Overused?

April 22, 2016, 12:19 pm
$
0
0

I have a server that showed these counts in the RD Licensing Manager list (ignoring windows 2000 entry):

Windows Server 2012 - Installed RDS per User CAL Program: Open Total Licenses: 5 Available: 0 Issued: 0 keypack id: 7

Windows Server 2012 - Installed RDS per User CAL Program: Open Total Licenses: 5 Available: 0 Issued: 0 keypack id: 4

Windows Server 2012 - Installed RDS per User CAL Program: Built-in Overused Total Licenses: 0 Available: 0 Issued 13

The firm that set this server up (long gone) probably bought ten licenses, is that how I interpret?

Does built in overused count 13 mean that the normal licenses are not being used, and up to 13 sort of temporary licenses have been issued? The license server and the rd host are both o windows 2012.

The site has at most 10-12 users active at any time. The other day a person could not log on;  I think there were ten listed users at the time; and after I logged off a disconnected user he was able to log on. I might guess that we need to buy some additional licenses...but, does server 2012 rd license server stop issuing licenses after it exceeds 10 in our case? I just want to make sure that is the reason he was able to log on after I dumped an inactive user.

I don't understand about the overused licenses and why the two sets of 5 don't seem to be used?


The trust relationship between the primary domain and the trusted domain failed.

May 3, 2016, 4:57 am
$
0
0

Hi,

I am getting this message in the application event log ( relating to IIS) when trying to connectusers to our RDS environment from a trusted domain. It was working earlier in the day and the domain trust is working fine on all servers as I can add and remove users from file shares to test, as well as search the trusted domain list.

A work around seems to be an IISreset on the gateway server, but that is not good as it kicks existing connections off.

Is there anything else I can check on why the trust fails after a period of time? I am running RDS GW on 2012 R2, with 3 x 2012 R2 session servers, and both AD's are 2008 R2 in different forests.

DNS forwarding is setup and both domains can ping eachother servers without any problem.

Thanks

Remote desktop services not working from outside the network

May 11, 2016, 12:09 am
$
0
0

I am trying to get my head around a problem I have with Remote Desktop Service on a single Windows Server 2012R2 Essentials server installation.

I added the server role and have an external certificate and DNS for the server I installed the certificate. The websites RDWeb and remote are up and running. I forwarded ports 80 and 443 to the server. For remote desktop connections I forwarded an external port to the server port 3389.

Now everything works fine within the network. From outside the network I can ping the FQDN. But if I try to open the link to the RDWeb or remote website. I get an error: page cannot by displayed.

If I try to set up a regular remote desktop connection from outside the network to the external port that works fine too. So I guess that it has something to do with the way the sites are setup by the wizard. But I don’t know what to look for. Any help will be appreciated.

Thanks in advance.

Arrange shortcuts within the RDWeb Interface

May 11, 2016, 11:00 pm
$
0
0

Is there a way to re-arrange the Application shortcuts within the RDWeb Interface? 

Currently it is Alphabetical, I'd like to sort it by most used.

RDS 2012 R2 Implementation need Gateway server if using TMG

May 7, 2016, 1:24 pm
$
0
0
Do I need an RD Gateway server role if I'm going to be publishing my RDS services to the internet with a TMG server or does having TMG in place negate the need for the RD Gateway role?

Display user numbers on each server

May 12, 2016, 1:07 am
$
0
0

Hi,

We have several session host servers in our setup, and short of going through huge logged in list, is there an easy way for me to list how many sessions are on each server rather than just count them manually?

Thanks

Search

Remoteapps cert error @@@HELP@@@

May 10, 2016, 12:00 am
$
0
0

Hi All.

i have been breaking my head off for several days now and i need some help.

i must have implemented remoteapps using server 2012 r2 hundreds of times, but this time, something is not going right! 

here is the deal:

1. dc + ca

2. sql server

3. sccm server

4. rdsh server

on the rdsh server i have deployed remote desktop services - session based deployment (aka remoteapps)

1. i have created a collection and deployed several apps

2. in IIS console i have created new domain cert

3. in IIS console i have changed the https bindings to the newly created cert

4. in the deployment properties i have changed the security settings and introduced the new cert

5. the deployment status is cerrently "trusted"

6. on a client VM (win7): control panel - remoteapps - typed the https://servername/rdweb/feed/webfeed.aspx

7. got the error in the screenshot:

i have done this process from start to finish many times,

always worked out flawlessly!

what am i missing?

Problems with downgrading 2012 RDS CAL to 2008 R2

May 11, 2016, 2:30 pm
$
0
0
I have been bouncing back and forth on the phone all day trying to get this solved.  I have a retail 2012 RDS CAL license key that I need to have downgraded to 2008 R2.  The clearinghouse tells me that the CAL is coming up invalid, but it's been activated before.  I was told to open up an online cause, but I don't have a contract and don't really want to pay $500.  What can I do?

RemoteApp disconnects

May 4, 2016, 1:35 am
$
0
0

We encounter a reconnection problem to disconnected RDP sessions.
We have 9 users connecting to a RemoteApp this works.
All the 9 users close the app and leave a disconnected session, disconnected sessions are not logged off and is set to 'Never'.
When all the 9 users reconnect to the RemoteApp approx 6 to 8 users reconnect to their disconnected, we see on the broker it redirects them to their disconnected session on the terminal server.
But approx 1 to 3 users are redirected to their session by the broker to their session on the terminal server but they get almsot disconnected instant , the remoteapp does not start/open.
When we click for a second time on the remoteapp in the RDWeb it opens instant.

In eventvwr on the TS we see "The Desktop Window Manager has exited with code 0xd00002fe"

Problem: broker redirects user to their session on the TS but user gets disconnected.

What we tried:
- Use TCP only for RDP
- NTLM v2
- installed all updates on all TS servers
- installed all applicable recommended hotfixes on all TS and broker and RDweb server
- disabled NLA
- disable Receive Side Scaling 
- disable chimney
http://support.citrix.com/article/CTX117374


Sync RDWeb customizations

May 11, 2016, 11:05 pm
$
0
0
Hi everyone. Have a question about RDWeb directory. How we can keep sync c:\windows\web\rdweb directory accross all our RDWeb servers. I have a 10 RDWeb server and we use shared config for IIS. We wont customization wich we made to webconfigs replicate to other servers and do not wont do same customization on all our 10 RDWeb sites. I try DFS replicatin but it do not sync this directory. But works fine for diferent directory out of C:\windows.

Windows 2012 R2 Session Themes Randomly Reset to Windows Basic

May 13, 2016, 4:59 am
$
0
0

Hi,

We have set up a Remote Desktop Services Session Host server with Desktop Experience installed. The user sessions are locked down, but access to Control Panel / Personalization is allowed. From here, users can change the High Contrast colour settings to match their preferences. These colour changes remain in place after logging off and back in again, but at random times, the changes are reset to the Windows Basic colour scheme.

What could be causing this?

  • I have tried blocking Group Policy inheritance for a test user but the test user is still affected
  • I have tried manually running gpupdate /force in case there is a Computer Policy that unsets the Theme settings, but this does not cause the issue.
  • I have removed all User Config settings from the GPO that is connected to the Server OU, but this makes no difference. I have removed all Computer Config / Admin Templates / Control Panel / Personalization settings from the same GPO. No difference.
  • I have trawled the Event Logs for errors/warnings at the approximate times of the theme changes but nothing stands out to me. There is Event 9009 "The Desktop Window Manager has exited with code (0xd00002fe)" but this seems to be related to disconnections
  • The Themes services seems to be running ok, though I can't find any logs to confirm one way or another
  • I have changed the Control Panel / System / Advanced System Settings / Performance / Visual Effects to Custom with most of the options unchecked - but the problem persists.

There may have been other things - but this makes no sense to me whatsoever.

Could someone help me here?

Thanks

Local Service system profile grown to extremely large size

February 11, 2013, 12:50 am
$
0
0

Was doing some routine maintenance on my RDSH farm and noticed that one server has much less free space than the others.  I looked at which folders were the culprit and found this one:

C:\Windows\ServiceProfiles\LocalService\AppData\Local

It was full of files like the following:

FontCache-S-1-5-21-30371924-1664817342-1491421105-149182.dat

These files take up 50+GB of space.  My guess they're associated with user profiles.

Are they safe to delete?  I don't want to delete an actively used file.

Configuring end to end SSO in an 2012 RDS environment.

May 11, 2016, 12:20 pm
$
0
0

Our long term goal is to configure RDS to work with  Kerberos Authentication as provided by our APM module in our F5 Big-IP.  As we see it the first step is to get RDS to function by itself with Kerberos authentication End to End without password prompts.  We have tried following multiple documents on the web, but none of them get us to where we want to be. 

We currently have one Windows 2012 R2 test server providing the Web, gateway, broker and session host roles.  We are testing with Windows 10 clients.  We are able to get RDWeb to do Windows Authentication, but once that works we get prompted for credentials when we launch an application. 

Is this configuration even possible?

Thanks for your Help

Brent

Search

Domain computers can’t runt RD Web applications when connected from outside company – Windows server 2012 R2

June 16, 2014, 3:35 am
$
0
0

Hi Everyone,

I have a question related to RDweb service.

I have successfully installed RD web role on windows server 2012 R2.

All went ok. I also installed a valid third party certificate.

I can connect from outside to the server and run applications using any devices: Ipad’s, mobiles and laptops.

The problem is that: Any Computer/Laptop that is joined on the domain can connect to RDWEB from outside the company BUT CAN'T RUN ANY APPLICATIONS. The RD session is taking long time it failes. Note that from inside the network is working.

What it can be?

Thank you in advance,

Criss


RDP ClientActiveX has been disconnected (Reason= 50331678)

May 13, 2016, 11:16 am
$
0
0

Is anybody ever seen this before? Is this a user initiated disconnect?

Does anybody know what (Reason= 50331678) means?

Is there a technet or msdn page that shows these codes?

Thanks.



Note: Forgot to mention, this was on win7 client machine, RDC 8.1.

Blocking Mobile RD Client from Connecting to RDS - Or Selectively Choosing Apps to Deliver

February 24, 2016, 12:58 pm
$
0
0

We have RDS setup in a way that:

A) 2FA must be used to sign into RDWeb

B) A user, as non-admin, cannot add a feed to Windows

C) Via GPO, we deny the local-login ability to the terminal servers

In this way, the only way to connect to remote desktop apps is through two-factor RDWeb; perfect.

However, I'm finding the RD Client on Android/iOS is able to still connect and get through. Any way to block this?

Ultimately what I'm looking for in the end, is to allow RD Client but only for certain delivered apps. For example, we actually only 2FA users that have access to the financial system, which is delivered as an app over RDWeb. I do not ever want them to be able to access the financial system via their mobile devices. However, I have other apps that I do want users to access via RD Client, and it just so happens that these users are users that do not access the financial application, so I could potentially see using something to the effect of two RDWeb servers. Still need to work that all out, but any solution is dependent on blocking RD Client, as I want to close the hole where an enterprising financial user could figure out how to add the feed to RD Client and get the financial applications. Until I figure this out, I don't want to advertise the service to non-financial users.

RD Gateway Unable to Negotiate TLS 1.2 with Windows 7 clients

May 13, 2016, 7:42 am
$
0
0

We have a requirement to disable TLS 1.0 to meet PCI compliance.  We have remote desktop gateway installed on a Windows 2012 R2 server and disabled TLS 1.0.  Windows 8 and 10 PCs can still connect to the remote desktop server through the remote desktop gateway, however Windows 7 clients just won't connect anymore.

We have installed the update on the Windows 7 clients, https://support.microsoft.com/en-us/kb/3080079, however this is still not working.

Steps to reproduce:
1. Install and configure an RD Gateway.

2. Disable TLS 1.0 on the Gateway

3. On a Windows 7 computer, enable TLS 1.2 for RDP by installing KB3080079

4. Attempt to use the Gateway from the Win7 computer

5. Despair as the Gateway refuses to negotiate TLS 1.2, attempts to use 1.0, then fails to connect.

From SCHANNEL logs, making a direct rdp connection from the patched Windows 7 client to a target seems to allow TLS 1.2 negotiation, but going through the Gateway forces TLS 1.0 negotiation. Interestingly, when TLS 1.0 is enabled on the gateway, Windows 7 clients will negotiate TLS 1.0 while connecting to the Gateway, then use TLS 1.2 for the "final" connection to the target.

Any ideas?

halemat1

How to discover license keys for installed windows server 2012 rds per user cals?

May 13, 2016, 2:55 pm
$
0
0
There are 2 sets of 5 user cals installed on a windows 2012 (not r2) server which I will need to reinstall. I don't have the original paperwork on them. I assume I will need the license keys; is there a way to recover them from the server? These are not volume license cals, as far as I know they were purchased 'retail' or whatever the term might be.
Viewing all 25525 articles
Browse latest View live
Search
<script src="https://jsc.adskeeper.com/r/s/rssing.com.1596347.js" async> </script>