Quantcast
Channel: Remote Desktop Services (Terminal Services) forum
Viewing all 25525 articles
Browse latest View live

The Windows logon process has unexpectedly terminated

October 31, 2016, 5:07 pm
$
0
0

I'm having issues with a Windows 2008 (non R2) Terminal Server where users can't logon in the morning, either internally or externally. If I try to logon at the console using an admin account it sits there for ages trying to load profile and eventually after 5-10 mins fails.

The only thing I can find to go on in the logs is event ID: 4005 "The Windows logon process has unexpectedly terminated" we have to physically hard reset the server by holding the power button in and everything is fine again until late at night when this starts happening again. There's no specific time it starts happening but it seems like it typically happens when no one is logged in.

This started about a week ago and besides this the server has been fine for the past 4 years.

When i research the issue it seems like one of the following is to blame, however I don't believe any relate to me.

This error might be caused by one of the following conditions: 
•  System resources are inadequate or unavailable. - plenty of resources happens when no one is using it
•  The Windows registry is corrupted. - hard reset of the hardware wouldn't resolve registry corruption
•  A service failed to start. - nothing in event viewer about failed services


Search

RDP Frequent Disconnects. Windows 10 1607 and Server 2016 Essentials - TCP socket WRITE operation failed, error 64.

November 3, 2016, 5:45 am
$
0
0

Hello,

I have a small, newly set up network consisting of three Windows 10 Build 1607 desktops, all up to date, a 2016 Essentials server and a Windows 10 Build 1607 laptop and desktop on the other end of a OpenVPN tunnel. The remote laptop and desktop are successfully joined to the domain and mapping drives no problem. I've been pushing GPOs out to all the machines and everything seems to work, up to the point where I enabled remote desktop and began to test with it. The OpenVPN tunnel should not be an issue, as the remote desktop session to the Server 2016 Essentials machine from the remote machine is rock solid stable, even when the network is under heavy use. My problem lies with making and maintaining remote desktop sessions to each of the three Windows 10 machines in the office from the remote Windows 10 machines. All three office machines exhibit the same issue.

Here is a scenario:

You are already pinging the remote machine you want to control with RDP, and you are getting responses back as expected. You can make a connection just fine, but whether using the session or leaving it idle, you can watch the pings going to the machine randomly drop as if the NIC on the remote machine has been reset. The RDP session is interrupted, then a few seconds later reconnected. It has done this thousands of times during my troubleshooting session on all three office machines. You can see that the session is not being starved for bandwidth. The first event in the RDPCoreTS logs that happens right at the time of the connection drop is almost always a slew "TCP socket WRITE operation failed, error 64." and "TCP socket READ operation failed, error 64" followed by "The server has terminated main RDP connection with the client." Then another error-level event comes up: "'Failed CreateVirtualChannel call on this Connections Stack' in CUMRDPConnection::CreateVirtualChannel at 2349 err=[0x80004005]" followed by number disconnect events, and then: "Disconnect trace:CUMRDPConnection Disconnect trace:'calling spGfxPlugin->PreDisconnect()' in CUMRDPConnection::PreDisconnect at 4477 err=[0x0], Error code:0x0." The last event you see in this grouping is: "The disconnect reason is 14." Upon automatically reconnecting, you see: "The network characteristics detection function has been disabled because of Reason Code: 2(Server Configuration).." Then the connection is restored, only to drop in anything from a few seconds up to a few minutes later.

So, in recap (TL:DR):

RDP from the remote machines to the 2016 Essentials Server through the VPN tunnel:Rock Solid Stable
RDP from the remote machines to the office machines through the VPN tunnel: Constant drops and numerous logged events.
RDP from 2016 Essentials Server to office machines on LAN only: Rock Solid Stable
RDP from the office machines to the remote machines through the VPN tunnel: Constant drops and numerous logged events.
ALL network traffic ceases to and from the host machine when the drop happens, including ICMP traffic (pings).
ALL of the Windows 10 machines can ping each other without issue and without any drops when not using RDP.

What this tells me is that the issue lies in some configuration issue either with a GPO setting or something inbuilt wrong with all of the Windows 10 1607 machines I have.

I have tried a variety of fixes, and have probably put 20 hours into researching a solution to this problem so I am prepared for this to be difficult to fix. My google powers have failed me.

Okay here goes what I have tried:

Disabling firewall on both ends of the connection: no change.
Removing DHCP reservations: no change.
Adding every scope I could think of to the routing/firewall rules: no change.
Trying to move RSA crypto keys as suggested in another post: no change.
Changing the physical NIC in the office machines to a add-in PCI-e one: no change.
Re-installing all suspect machines: no change.

GPO settings I have tried both ON and OFF:
-Allow users to connect remotely by using Remote Desktop Services: Enabled
-Configure compression for RemoteFX data: Optimized to use less network bandwidth (tried balanced too)
-Require use of specific security layer for remote (RDP) connections: Enabled, SSL
-Require user authentication for remote connections by using Network Level Authentication: Enabled
-Set time limit for disconnected sessions: Enabled, Never
-Set time limit for active but idle Remote Desktop Services sessions: Enabled, Never
-Set time limit for active Remote Desktop Services sessions: Enabled, Never
-Windows Firewall: Allow inbound file and printer sharing exception: Enabled
-Windows Firewall: Allow ICMP exceptions: Enabled, Allow inbound echo request
-Windows Firewall: Allow inbound Remote Desktop exceptions: Enabled, 10.0.20.0/24,10.0.25.0/24

I have also generated a Wireshark packet capture from both ends of the connection during the RDP drop, but I don't want to share them publicly. I will share them with you privately if asked, though. I am not a professional packet inspector, so I couldn't gleam much from it. I can also provide a dump of the event log on the main PC I have been troubleshooting, if needed.

Any insight or suggestions you can give me would be very much appreciated. This issue is has really been trying my patience.

Thank you! 

Outlook 2013 - Trust center - Win SVR 2012 R2 Standard

November 2, 2016, 4:21 pm
$
0
0

HI, 

we have a virtualized environment with AD and TERM server. Term server is running Win 2012 R2 Standard and users are RD to it. It has Outlook 2013 installed. Because Win server does not have Security Center that detects antivirus state (Sophos), it is causing Outlook Trust Center coming up with "Antivirus status: Unavailable". We're using Accounting app that uses Outlook to send emails. However, every email asks for confirmation. I need to disable this security check - only one user or everyone.

I checked other topics , but i don't have the registry record (even the office group). Thank you

unable to load communication Module, ODBC Connection error on Windows server 2016 Std Remote desktop Session Host

November 9, 2016, 2:46 am
$
0
0

Dear Sir,

Recently i am testing our existing Applications on Remote Desktop Session Host (Windows Server 2016 Std) and getting the issue with ODBC Connection & our ERP Software (Built on VB6 and SQL 2014) is not running. 

Pl. find the error as below: 

I am getting this error only with Windows server 2016 Std Remote desktop Session Host, same application is working on Windows server 2012 R2 Session Host. 

When system was on workgroup, Application was running. 

After joined the System on domain, Application was running.

But when i joined the system on remote Desktop Session Host, getting error as unable to load communication Module.

Our IT Setup are as below:

Server 1-DC1: DC, DNS, DHCP, RDweb, RD Gateway, RD Licensing (Windows Server 2012 R2, Std)

Server2-DC2: ADC (Windows Server 2012 R2, Std)-On HyperV

Server3-FS1: Remote Desktop Session Host  (Windows Server 2012 R2, Std)

Server4-FS2: Remote Desktop Session Host (Windows Server 2012 R2, Std)

Server5-FS3: Remote Desktop Session Host (Windows Server 2012 R2, Std)

Server6-FS4-Remote Desktop Session Host (Windows Server 2016 Std)--Test Server

So, please suggest.

Windows 2012 - Server Hungs when i try to login with terminalserver.

November 9, 2016, 1:46 am
$
0
0
After that im not able to login with anything. Just to restart the server the hard way.

RDP session loose printers

November 9, 2016, 2:34 am
$
0
0

Hello,

we have Windows Server 2008 R2 and we have RDP service. Sometimes printers mapped to the RDP sessions disappear... 

All printers are connect to the network (IP). We can repair this by reset services - port forwarding user mode Remote Desktop Services. 

How diagnose this or repair this problem.

Best regards,

Shadow a users fails... sometimes

November 9, 2016, 6:23 am
$
0
0

Hi

We have a RDS 2012R2 environment with 30 RD session hosts. We use Server Manager (Remote Desktop Sevices -> Collections) to shadow our users when they need assistance.

But often when we try to shadow it hangs with a white square until the windows closes and disappears (after 30-40 seconds). If I try again it often connects without problems in about 1-2 seconds.

On the source computer I see the following two events in the Remote Desktop Services event log:

Source:

Log Name:      Microsoft-Windows-TerminalServices-RDPClient/Operational
Source:        Microsoft-Windows-TerminalServices-ClientActiveXCore
Date:          09-11-2016 13:40:13
Event ID:      1105
Task Category: Connection Sequence
Level:         Information
Keywords:      
User:          DOMAIN\user
Computer:      source-server.fqdn
Description:
The multi-transport connection has been disconnected.

And

Log Name:      Microsoft-Windows-TerminalServices-RDPClient/Operational
Source:        Microsoft-Windows-TerminalServices-ClientActiveXCore
Date:          09-11-2016 13:40:13
Event ID:      1026
Task Category: Connection Sequence
Level:         Information
Keywords:      
User:          DOMAIN\user
Computer:      source-server.fqdn
Description:
RDP ClientActiveX has been disconnected (Reason= 2308)

Destination:

On the destination server I only see this event:

Log Name:      Microsoft-Windows-TerminalServices-RemoteConnectionManager/Operational
Source:        Microsoft-Windows-TerminalServices-RemoteConnectionManager
Date:          09-11-2016 13:39:23
Event ID:      20510
Task Category: None
Level:         Information
Keywords:      
User:          NETWORK SERVICE
Computer:      destination-server.fqdn
Description:
Shadow Control Permission Granted

User Domain\user (Session ID: 3) granted permission to user domain\user
-------------

Any idea whats its happening here?



SKU information

November 9, 2016, 11:41 pm
$
0
0
What sku of windows server 2012 r2 will be required for VDI if i have 300 users in my organization ?
Search

Getting rid of the RDC certificate warnings

November 9, 2016, 10:39 am
$
0
0
I have an RDS collection that has 2 RDSH servers as members that get accessed internally only.  I always get RDC certificate warnings when logging into the collection.  I cant seem to find the right solution with certificates to get rid of the warnings.  

Upgrade RDS Connection Broker to Windows Server 2016

November 4, 2016, 2:23 pm
$
0
0

Hello, I tried to research this, but Microsoft (or anyone else) doesn't seem to have to much info on this. https://technet.microsoft.com/en-us/windows-server-docs/compute/remote-desktop-services/upgrade-to-rds-2016 only states that Connection Brokers must be upgraded first; it doesn't state if they should be new servers, upgrades, etc.

I have an HA RDCB Farm (2 Servers) both running Windows Server 2012 R2.  What is the correct way to start getting to server 2016.  Typically, I try to rebuild new servers and migrate, but not sure if that is the case or recommended with RDCB?  Is the recommended method to just upgrade the servers in place?  Is there a supported method to do this with new servers?

Anyone have any insight? Thanks!

login failure: unknown user name or bad password

November 10, 2016, 12:21 am
$
0
0

Hi,

I am facing a chalenging situation.

In a windows 2012 RDS Farm i have published a group of applications and have provided them to users via RemoteApps and via Web Access.

This is working for long time without any issues for 100+ users.

This week a user got a new laptop and I tried to configure the RemoteApps again.

After providing the URL and giving the account's credentials I get the following:

I checked everything about Access Rights and I found no issues there.

This is confirmed also by 2 facts:

The user has still the RemoteApps working on his old laptop.

User is able to access the application via Web Access URL with no problems

A day later another user got the same issue when trying to configure the RemoteApps on his new laptop. Same description applies for second user.

I guess i will be having more incidents like this soon.

------------------------------------------------

Environment details:

RDS Farm

1x Broker [2012]

2x RDHS [2012]

Client devices are Win7

-----------------------------------------------

Do you have any ideas where to look for a solution or even identify the issue?

The error message is about misauthentication but RemoteApps are working on old laptops and via Web Access....

Win 10 - User not allowed to login

October 12, 2016, 7:45 am
$
0
0

Hi all,

In active directory we defined that users can log in only to a list of server.

I have a win 10 pc and for some activities I need to login to these server from my pc with a user account but when I log in it give me an errore saying "user not allowed to access to the server".

I think the problem is that the login is made first in my pc (not in list) and then to the server.
How can I do it?

Server Getting hang while try to login through RDP/ILO

November 8, 2016, 4:10 pm
$
0
0

Windows server 2008 R2 Enterprise SP1

Dhcp services is not required in our environment.

Below event are found as follows.....

Log Name:      System
Source:        Service Control Manager
Date:          11/9/2016 3:18:16 AM
Event ID:      7036
Task Category: None
Level:         Information
Keywords:      Classic
User:          N/A
Computer:      A1.abc.com
Description:
The Windows Error Reporting Service service entered the stopped state.
Event Xml:
<Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event">
  <System>
    <Provider Name="Service Control Manager" Guid="{555908d1-a6d7-4695-8e1e-26931d2012f4}" EventSourceName="Service Control Manager" />
    <EventID Qualifiers="16384">7036</EventID>
    <Version>0</Version>
    <Level>4</Level>
    <Task>0</Task>
    <Opcode>0</Opcode>
    <Keywords>0x8080000000000000</Keywords>
    <TimeCreated SystemTime="2016-11-08T21:48:16.265808100Z" />
    <EventRecordID>124800</EventRecordID>
    <Correlation />
    <Execution ProcessID="1628" ThreadID="8344" />
    <Channel>System</Channel>
    <Computer>A1.abc.com</Computer>
    <Security />
  </System>
  <EventData>
    <Data Name="param1">Windows Error Reporting Service</Data>
    <Data Name="param2">stopped</Data>
    <Binary>5700650072005300760063002F0031000000</Binary>
  </EventData>
</Event>

Log Name:      System
Source:        Service Control Manager
Date:          11/9/2016 3:37:17 AM
Event ID:      7001
Task Category: None
Level:         Error
Keywords:      Classic
User:          N/A
Computer:      A1.abc.com
Description:
The WinHTTP Web Proxy Auto-Discovery Service service depends on the DHCP Client service which failed to start because of the following error: 
The service cannot be started, either because it is disabled or because it has no enabled devices associated with it.
Event Xml:
<Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event">
  <System>
    <Provider Name="Service Control Manager" Guid="{555908d1-a6d7-4695-8e1e-26931d2012f4}" EventSourceName="Service Control Manager" />
    <EventID Qualifiers="49152">7001</EventID>
    <Version>0</Version>
    <Level>2</Level>
    <Task>0</Task>
    <Opcode>0</Opcode>
    <Keywords>0x8080000000000000</Keywords>
    <TimeCreated SystemTime="2016-11-08T22:07:17.585553300Z" />
    <EventRecordID>124803</EventRecordID>
    <Correlation />
    <Execution ProcessID="1628" ThreadID="1780" />
    <Channel>System</Channel>
    <Computer>A1.abc.com</Computer>
    <Security />
  </System>
  <EventData>
    <Data Name="param1">WinHTTP Web Proxy Auto-Discovery Service</Data>
    <Data Name="param2">DHCP Client</Data>
    <Data Name="param3">%%1058</Data>
  </EventData>
</Event>

Log Name:      System
Source:        TermDD
Date:          11/7/2016 3:37:03 PM
Event ID:      56
Task Category: None
Level:         Error
Keywords:      Classic
User:          N/A
Computer:      A1.abc.com
Description:
The Terminal Server security layer detected an error in the protocol stream and has disconnected the client. Client IP: 10.125.239.224.
Event Xml:
<Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event">
  <System>
    <Provider Name="TermDD" />
    <EventID Qualifiers="49162">56</EventID>
    <Level>2</Level>
    <Task>0</Task>
    <Keywords>0x80000000000000</Keywords>
    <TimeCreated SystemTime="2016-11-07T10:07:03.719000900Z" />
    <EventRecordID>124660</EventRecordID>
    <Channel>System</Channel>
    <Computer>A1.abc.com</Computer>
    <Security />
  </System>
  <EventData>
    <Data>\Device\Termdd</Data>
    <Data>10.125.239.224</Data>
    <Binary>0000040002002C000000000038000AC00000000038000AC000000000000000000000000000000000B50000D0</Binary>
  </EventData>
</Event>

TS 2016 RemoteApp does not have sufficient rights

November 8, 2016, 3:14 am
$
0
0

I'm having a problem with Server 2016 TS RemoteApp. 

When a user logs in directly on the server via RDP, the app they need opens without any problems. When trying to open the same app via the same user but with remoteapp, the app complains the user doesn't have the necessary rights... which I don't understand because the user HAS the necessary rights. 

I'm guessing there's a setting I'm missing, but I'm unable to find out which one it is. 

FYI: the user logs in just fine, the profile is ok, it only happens when using remoteapp. 

Please advice cause I'm out of idea's.

File Explorer on Remote App

November 1, 2016, 1:33 pm
$
0
0

Hi!

I'm new in the networking world, I've just put RemoteApp on my WS2012 machine. How can I publish the File Explorer (Windows Explorer) as a RemoteApp? I can't work out how to do it and it's really annoying me. Please be specific otherwise I probably won't know what you mean as I don't have much experience.

Thanks

Nicholas

@NicholasHayman

Search

How to confirm the number of users or device CALs activated

November 8, 2016, 6:39 am
$
0
0

how is it possible to check and confirm the number of User or Device CALs activated to a 2012 R2 Server RDS host? I am finding info regarding 2008r2, does this info carry to 2012/12r2?


Thank you!

Revoke RDS CAL from powershell or and command

June 9, 2014, 12:50 pm
$
0
0

I am trying to use powershell to query all the LicenseID  and the ones that come up as unknown send a revoke command.

I have everything ready up to the revoke part. i cannot find a revoke command .  i saw this on a site but now sure how to implement it :

Win32_TSIssuedLicense:

Windows Server 2008 has a WMI class named "Win32_TSIssuedLicense" for managing issued per device CALs. This WMI class provides the following interface to manually revoke issued CALs:

Revoke: This API can be used to manually revoke an issued CAL. This is a not a static function.

The syntax of the API is 

uint32 Revoke(
[out] uint32 RevokableCals,
[out] DATETIME NextRevokeAllowedOn );

Windows 2012R2 RDS hangs on (4) users

November 10, 2016, 9:11 am
$
0
0

I see Citrix users are experiencing, that 4 process hangs on session limit time out GPO when it is enabled. They have a hotfix for their VDA environment.

We have the same problem on our RDS farm that just got fully patched.

The issue is still present on the farms. A solution to disable the GPO can´t be done. Because of the session broker, doesn't like disconnected sessions for a longer period. Then it doesn't get re-connected to the session, but rather the user get's a new session and temp profile.

This is how the issue looks like. The RDS server needs a power cycle before it is okay again. You can't sign users out either, tried on may different ways. And the users can not sign in while their session/process hangs.



 I can't seem to find any patch or hotfix for this.

Have anyone else run into the problem  and have anything to share about a fix or resolution to it. Anything would will be highly appreciate.

Regards
Adam Andersen 

 

Remote App window stays minimized

June 22, 2009, 8:41 pm
$
0
0
We are trying out TS 2008 and using Remote App.  The application is launched and within the application we launch another application.  We then minimize this application and cannot restore it to make it visable.  This not the issue with the timeout disconnect problem as the the minimized application stays visable on the task bar.  The parent application that was originally lauched can be minimized and restored normally.  The only option is to righ-click on task bar, close the minimized application, and relauch it.  This problem essentialy makes TS 2008 unusable for our application.  Anyone have an idea?

your password cannot be changed. please contact your administrator for assistance RDWEB 2012 R2

June 17, 2015, 3:57 am
$
0
0

I activate today on our RDweb Server (server 2012 R2) the ablility to reset user's password following the link here:

http://social.technet.microsoft.com/wiki/contents/articles/10755.enabling-the-rd-webaccess-expired-password-reset-option-in-windows-server-2012.aspx



the page is active and a link was inserted on the main page of the RDweb, but when I try to reset a expired user's password, I receive the following message:

Your password cannot be changed. Please contact your administrator for assistance.



I found KB2793072 regarding this issue https://support.microsoft.com/en-us/kb/2793072 , but it's only valid for Server 2008R2 or Server 2012.

No clue at all of what's happening here.

The server is e member server of our domain, the message happen for evey reset password attemps (expired or not)

Any help woud be appreciated.

Viewing all 25525 articles
Browse latest View live
Search
<script src="https://jsc.adskeeper.com/r/s/rssing.com.1596347.js" async> </script>