Quantcast
Channel: Remote Desktop Services (Terminal Services) forum
Viewing all 25525 articles
Browse latest View live

Using RDWeb to connect to individual workstations

December 30, 2016, 7:14 am
$
0
0

My setup is RDWeb running on Server 2016.

When a user signs in on RDWeb, they are presented with one RemoteApp, which is a batch file, that wakes up the users workstation (Win10) from sleep and logs on to the machine using mstsc.exe

This works quite well.

However there are some differences from doing a ordinary RDP session. Windows keys fire shortcuts on your local machine instead of on the remote desktop. On mac I cannot use multiple monitors, and the desktop is not full screen buta maximized window.

My bet is that the batch file running as a RemoteApp prevents the session from behaving like a true RDP session.

Is there a better to setup connecting to individual workstations? I don't want the workstations open to the internet.

Search

Custom log to trace users

December 30, 2016, 7:55 am
$
0
0

Good day,

I wish to know if I can get a log that can filter users that have remote into my server?

Currently the log that i have after i export to csv from event viewer requires me to read the whole info in order to know who has logged in remotely.

So I wish to know if it is possible to create a custom log to only log the username, time, location and ip address used when user logged in remotely?

RDP File Based Off Collections

December 30, 2016, 11:48 am
$
0
0

Hello,

Is there a way to distribute an RDP file that allows the user to log on based on his or her collection. I know that they can see the correct <g class="gr_ gr_217 gr-alert gr_spell gr_run_anim ContextualSpelling ins-del multiReplace" data-gr-id="217" id="217">rdp</g> file when they log in to web access, but I specifically wanted to know how to make the RDP file based on what collection the users is allowed to log <g class="gr_ gr_488 gr-alert gr_spell gr_run_anim ContextualSpelling ins-del" data-gr-id="488" id="488">in to</g>. Thanks

Server 2012 RDS Users being logged into Broker instead of pooled Desktop

January 28, 2016, 1:14 pm
$
0
0

I have an issue where sometimes users will click on a desktop in RDWeb or through Work Resources and it logs them in to the actual RD Broker instead one of the VDI desktops. Restarting the Broker service usually corrects this but I would like to stop it from happening in the first place.

Any ideas?

Windows 2016 RDS event 1306 Connection Broker Client failed to redirect the user... Error: NULL

December 31, 2016, 11:06 am
$
0
0

I'm attempting to setup a Windows 2016 RDS Standard Deployment for Session Hosting.  The layout is as follows:
RDS01 - RDS Connection Broker and Web Access
TS02 - RDS Session Host
TS03 - RDS Session Host

The domain these servers are part of has (1) Windows 2008 Server and (2) Windows 2016 Servers acting as DCs.  The domain is running at Windows 2003 Functional Level.

All servers are on a single routed network with no firewall between them.  All DNS A and PTR records for all servers exist and resolve on all hosts.  All servers can be pinged by each other. In other words, there are no network connectivity issues.

I've setup the RDS deployment several times w/ the same results.

The Issue
I can login via the RDWeb interface on RDS01 from a Win10 desktop and connect to the published RDP desktop without issue (i.e. no error messages to the user) and no errors in the logs.  When I try to directly RDP to RDS01, I successfully authenticate as a user (per the event log) but get an error stating that the user doesn't have access to the system.  In the event log I get event id 1306 with the message of "Remote Desktop Connection Broker Client failed to redirect the user <domain>\<test user>.  Error: NULL".  

- <Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event">
- <System>
  <Provider Name="Microsoft-Windows-TerminalServices-SessionBroker-Client" Guid="{2184B5C9-1C83-4304-9C58-A9E76F718993}" />
  <EventID>1306</EventID>
  <Version>0</Version>
  <Level>2</Level>
  <Task>104</Task>
  <Opcode>13</Opcode>
  <Keywords>0x2000000000000000</Keywords>
  <TimeCreated SystemTime="2016-12-29T16:47:27.634726700Z" />
  <EventRecordID>47</EventRecordID>
  <Correlation ActivityID="{F4209120-29ED-44E4-845A-25A2570F0000}" />
  <Execution ProcessID="828" ThreadID="3668" />
  <Channel>Microsoft-Windows-TerminalServices-SessionBroker-Client/Operational</Channel>
  <Computer>rds01.[redacted.domain]</Computer>
  <Security UserID="S-1-5-20" />
  </System>
- <UserData>
- <EventXML xmlns="Event_NS">
  <param1>[redacted.domain]</param1>
  <param2>[redacted.user]</param2>
  <param3>NULL</param3>
  </EventXML>
  </UserData>
  </Event>


If I RDP to RDS01 as an administrator, I get the same error message but the RDP session opens and presents the desktop on RDS01.

I can RDP directly to TS02 or TS03 and login as a user and open the RDP session.  Redirection to some degree appears to be working in that I can disconnect a user session from TS02 and RDP to TS03 and the session is redirected back to TS02.  The event logs on RDS01 record this happening as well.

What I've tried already
1. In searching this event 1306 issue, I found several posts with this exact same behavior in WS 2012/R2.  Most "solutions" suggested point to the fact that the RDS Session Broker doesn't have sufficient authority to look up the users AD group membership via the tokenGroupsGlobalAndUniversal attribute or AuthzInitializeContextFromSid API function which leverages the tokenGroupsGlobalAndUniversal attribute.  (Example: https://social.technet.microsoft.com/Forums/windowsserver/en-US/29733a87-dbda-47bc-8b37-6eeac5ab5a0a/2012-rds-nonadministrators-can-not-access-vdi-pool?forum=winserverTS#97d883f1-7a64-4d02-9492-309638f92e79 )

The service is running as "Network Service" which does have network access via the Computer Object's authority in AD.  So following Microsoft's instructions (https://support.microsoft.com/en-us/kb/331951), I've added RDS01 to both the Windows Authorization Access Group and Pre-Windows 2000 Compatibility Access groups and rebooted RDS01 with the same results.  

2. I've verified the Windows Authorization Access Group has rights to read the tokenGroupsGlobalAndUniversal property/attribute on my test users and the computer objects of the servers.

3. I've setup an AD Service account following Microsoft's instructions (https://support.microsoft.com/en-us/kb/842423) with a similarly described access issue.  The service account user was added to the Windows Authorization Access Group.  This was unsuccessfully as well w/ the same event 1306 error.

4. I ran the following powershell commands to verify access of the Connection Broker to the OU (https://technet.microsoft.com/en-us/library/jj215512.aspx#)

Test-RDOUAccess -Domain [redacted.domain] -OU "Computers" -ConnectionBroker rds01.[redacted.domain] -verbose


This failed so I ran the following to grant access

Grant-RDOUAccess -Domain watsons.local -OU "Computers" -ConnectionBroker rds01.watsons.local -verbose


The Test-RDOUAccess then succeeded.

I repeated this for the OUs that contained the users and the server computer objects.

I've disabled all GPOs to ensure there's no conflicts but have seen no change in the behavior or error messages.

With all that, I've exhausted every option that I can find to resolve this error to gain the expected functionality.  As a work around for the moment, I've setup a round-robin DNS A record that points to TS02 and TS03 w/ a very short TTL.  This gives the test users the ability to login and atleast test the desktop functionality.

Sorry for being so long winded with this but I thought it better to put all the cards on the table.

I'm open to any and all suggestions.

Thx!

Multiple Acrotray.exe

December 31, 2016, 11:45 pm
$
0
0

Hi!

Is there a solution to get rid of Multiple instances of Acrotray.exe in Terminal Server 2012?

Thanks.

Rdp user

December 3, 2016, 10:59 am
$
0
0

Hi

How can I have standard RDP user open task manager without it asking for a admin usernmae and password. I need all rdp users to be able to open Task Manager without it asking for admin username and password. We are using windows server 2012 R2

RDS License Server - stand alone RDS host server

December 6, 2016, 8:23 am
$
0
0

In my current environment, I have 4 Windows Server 2008 RDS boxes on my domain.  They all point to a 2008 license server for the RDS licenses, also on my domain.

Have a new project that requires two new 2012 RDS servers.   One will be on the domain, one will be a stand alone server (can't be on the domain due to the users that will be accessing it).

Can the non-domain server still use my domain-joined License server?

Thanks in advance for any and all responses.

Search

Windows Server 2016 RDS on Baremetal or VM

January 2, 2017, 2:52 am
$
0
0

Hey

We have a HP moonshot with m710x cartridges (and Iris Pro P580 graphics)

Would you recommend installing the RDS on baremetal or as VM (hyperV)?

Thanks in advance

Mike


Black Screen of death on a 2016 RD Session Host

January 2, 2017, 3:15 am
$
0
0

Hi

I have received a call from a customer telling me that he is experiencing the black-screen-of-death issue on a newly installed 2016 RD session Host server. I know there was a fix for that issue in RDS 2012 R2, but I have yet to come across information about this issue in 2016.

Has anyone else seen this issue in 2016?


terminal serwer session

January 2, 2017, 5:39 am
$
0
0
Hi

My question is for Windows Server 2012 R2. I have two machines performing the functions of a terminal server. He needs to set equally user sessions were broken down into one and the second server how to do it?

thank you

RDS 2016 blue screen and issue with UmRdpService

January 2, 2017, 5:51 am
$
0
0

Hi

I have created a new infrastructure on Windows Server 2016 (French) :

- 1 DC

- 1 Broker RDS

- 2 RDS

- 1 RDS Web Access

I use the fonctionnality User Profile Disks for RDS

My first issue is a random reboot with a blue screen. Exactly the same issue that this post

https://social.technet.microsoft.com/Forums/exchange/en-US/cf843781-195e-418f-a124-5e40dee0d901/windows-server-2016-crashes-with-error-in-rdbsssys?forum=ws2016

As indicated, i turned off drive redirection in my GPO and since problem stopped.

I hope Microsoft will release a fix quickly.

Now i have a second issue where i don't find documentation to solve it.

Randomly on each RDS Server, no remote desktop connection can be established, i have a black screen after login to RDS Server.

In system event i have the error

Event ID: 7011 A timeout (30000 milliseconds) was reached while waiting for a transaction response from theUmRdpService service

I'm tried to reboot the RDS Service but the service doesn't restart.Currently i reboot the server but i want to fix this problem.

On Windows Server 2012R2, i finded the KB3047296 but it's not for my OS.

https://support.microsoft.com/en-us/kb/3047296

I don't know if my two issues are linked but i need help to solve it.

Thank you for your help

Best Regards

rds connection error WIN-2012r2

January 2, 2017, 9:39 am
$
0
0
Please SAVE ME!!!!!!
when i tried to connect my RDS server throw client Pc's RDC.
that connection was successfully with login terminal users rights. i can see what im published application from RDS server.
but i tried to open the published file(example from screenshot -"SBS") its not opening.
please suggest me some idea to open it.

Server 2012 with Windows 10 clients - 1 client works, the other does not

December 11, 2016, 5:51 pm
$
0
0

Hi,

Having an odd problem with a small deployment of Remote Desktop.

Server 2012R2 RDP server, 2x Windows 10 remote clients connecting via a SonicWall VPN

All was working fine until recently, when one of the client stopped connecting. As the other client still connects, I susspected an issue with the client config. So simply wipped it and rebuilt using a from the box Windows 10 install, connected via the sonicwall, joined the domian, installed the SSL certificates.

However the issue persists. When I go to control panel->RemoteApp and desktop connections->Access RemoteApp and desktops.

Then complete the URL (identical to working PC, same case etc.) I get the ready to setup connection screen, however as soon as I click next on this screen I get "an error occured. Contact your system administrator for assistance." there is no pause whilst it goes to check the server, this error appears instantly. The pc is able to ping the RD server by name without any issues, and ns lookup correctly returns the address of the server as well.

If I replace the FQDN with the IP, then click next, after a few seconds and a progress bar, I get a certificate error  which is correct as the certificate contains the FQDN.

This suggests that the remote app setup is not able to connect to the FQDN, however, as I say it is exactly the same on the other working PC. There is no av installed yet (appart fromwindows defender) and I have tried disabling the firewall - to no avail.

I'm reluctant to change settings on the server as the other machine is still working fine.

Open to suggestions - thanks in adance for taking the ti e to read this.

Richard

Adding an App to all desktops via remoteapp

December 21, 2016, 7:27 am
$
0
0

Afternoon.

I am currently testing out remoteapp in our dev environment.  I have previously used server 2008 and when i want to select a remote app to 'push'/show on the RDWEB i would have to make sure it is saved on the host server and it would work.  Now on Server 2012 r2 i have set up 2 servers with NLB, and one server asking as my broker and RDWEB.   I have set up 4 remote desktops (2 each server) and would like to push an app to it.  Office 2016 for example.

I have gone into my Collections and gone to publish an app.  In there i have got to this screen:

http://imgur.com/BR7vQ4e

I can't seem to find any explanation to this.  Which do i pick?  I would like Word to be available on the RDweb.  Why do i have to pick a host server?  Reading the explanation, do i need to install on just one of the desktops for it to replicate around?

What if i have 100 PCs on here and i want to update an app or push a new app out?  Am i missing something here?

Any advice here would be great.  Thanks.



Search

Problem using Windows Server 2016 as an Application Server with a direct Remote Desktop Session

December 29, 2016, 11:49 am
$
0
0

I work at a community college where we are converting and testing the labs for our Windows server classes to Windows Server 2016. We are experiencing a problem with one of our labs that we are testing using Windows Server 2016. We want to use the server as an application server using the Remote Desktop Session Host feature, i.e. a direct RDP session to the application server -- no browser. When setting up an application on a user's property sheet (see graphic below) where the user connects to the Remote Desktop Session Host Server; the application set in the Environment tab does not open. The user goes to the desktop, which is not how the lab is supposed to work.

The way that this lab should work is that the user logs on and the application opens to a full screen. When the user is done and exits the application, the user is immediately disconnected from the Remote Desktop Session. The user should never be able to access the Application Server's desktop. This is how this lab has worked with Windows Server 2008 through Windows Server 2012 R2.

If we use the Remote Desktop Web Access the lab works as intended and the same as it has with pre-Server 2016 operating systems. Has anyone else experienced this problem? Is there a fix for this other than to use the Remote Desktop Web Access? 

RDCms database RDS "Recovery pending" after every server reboot.

December 28, 2016, 8:34 pm
$
0
0

Hi,

I am facing above error. After every reboot of RDS server. RDS data base (RDCms) gose to recovery pending status due to that Remote desktop management service stops.

To fix this issue temperrory  i need take data base offline and online  through SQL management studio and then Remote Desktop  management  service starts successfully.

this happen after every server reboot.

I have provide sysadmin rights  and DB owner rights  to below users on the RDcms data base. But still facing same issue. Also

NT SERVICE\MSSQL$MICROSOFT##WID
NETWORK SERVICE
NT SERVICE\ALL SERVICES

-- Followed below articles but no success. Also provide "log on as a service" policy has been configured in default domain policies as per below articles

https://support.microsoft.com/en-in/kb/2832204

https://www.smallbusinesstech.net/more-complicated-instructions/windows/fixing-windows-internal-database-installation-error-on-windows-server-2012

server is using server 2012 standard OS.

Need your help to fix this.

Thanks, Sajjan T

Event 4005 - WinLogin [Windows logon process has unexpectedly terminated]

August 15, 2016, 4:01 am
$
0
0

Folks,

Just noticed this becoming an issue on a Windows 2012 R2 Terminal Server after the last round of Patch Tuesday updates stemming from August 9th, 2016.

Typically, I'm rebooting the server every 24 hours to over-correct the issue - rebooting not being the best option here.  

In previous discussions, it's advised to remove KB3002657 or KB3035132 from the server.  Is this still the best option to restore full functionality even with the last round of patches and updates? Just to confirm, we are not using webroot as an AV solution. 

RD gateway id temperorly available

January 3, 2017, 9:47 am
$
0
0
please help me....   showing this error on client PC connection throw RDS

Outlook Indexing and RDS

February 18, 2015, 6:21 am
$
0
0

Hi folks,

-We're running Outlook 2013 on our RDS pool machines (4x 2012 R2 servers).
-our Outlook mailboxes use Office365 accounts.
-Outlook is setup to cache 1 month (default is no caching but we've enabled it as it is the only way to get the yousendit plugin to work).
-Outlook Indexing however is disabled as adviced by our external consultants / MS Gold partner, using group policy : Computer configuration\Policies\Administrative Templates\Windows Components\Search\Prevent indexing Microsoft Office Outlook

The literal words of the consultants were : "you better disable indexing cause you might experience performance issues otherwise. Because Outlook will rebuild the index from scratch each time a user logs on on an RDS machine (with his/her roaming vxhd profile)".

Disabling Outlook indexing however results in advanced search features in Outlook being greyed out (I mean buttons "From", "subject", "more", etc. all greyed out).

My question is therefor multilayered :
-Is the consultant right about performance issues if we enable indexing ? Does it really have to rebuild from scratch with each logon ?
-If the best practice is indeed to disable indexing on an RDS machine : is there a workaround to get the advanced search features back ?

Thanks to anyone who can shed some light on this.
Kind regards, Vincent

Viewing all 25525 articles
Browse latest View live
Search
<script src="https://jsc.adskeeper.com/r/s/rssing.com.1596347.js" async> </script>