Quantcast
Viewing all 27533 articles
Browse latest View live

Remote Desktop Connection Broker not starting after reboot

January 25, 2019, 1:43 am
$
0
0

Hi,

I have recently set up a number of new Server 2016 Remote Desktop Servers. I have a timed script which runs at 6am to reboot them all, as we have some Excel add-ins which have tendency to crash and require a reboot, and a scheduled reboot means the servers don't have to be checked regularly for this.

I've always done this with the previous Remote Desktop Server (2012 R2), and never had any issues. With the new ones, most of them are fine but on two of them there is an intermittent problem (at least 1 in every 2 days) of them being inaccessible by RDP after the reboot. When I go into thm via VMWare, I can see that the Remote Desktop Connection Broker (Tssdis) service is stopped. If I manually start the service, or reboot the server again, it's then fine.

I can't replicate the problem manually - if I copy the line from the batch file which reboots all the Remote Desktop Servers and use it to reboot one of the problem ones from a command prompt, they are fine.

I've checked the event log, and on both of them there's a information item saying that the service has started after the reboot, as would be expected - but then another one saying it has stopped a few seconds later.

Anyone able to suggest anything? At the moment I'm checking these two servers before most of our staff start work, and starting the service if it's stopped - but this isn't a long-term solution!

Thanks

David

Search

Missing setting in Windows server rds 2016 Clients must send sohs

January 28, 2019, 12:01 am
$
0
0

Dear all,

 

I'm missing the following setting in  windows 2016 server RDS remotedesktopgateway-manager, which was present in RDS 2012. This settings is/was located under the tab RD-CAP Store.

The setting should be located as follows in Server 2012:

Remotedesktopgateway-manager -> Servername -> Properties -> RD-CAP Store (Tab)

It is called: " Clients must send SoHs (Statement of Health)

In Server 2016 this Setting is missing.

 

many thanks in advance

Haydar


RDWeb: can't connect, RD Gateway server temporarily unavailable

January 19, 2019, 10:58 am
$
0
0

Hello everyone,

We are having the "can't connect, RD Gateway server temporarily unavailable" on RDWeb, only when accessed externally. Internally, the same external URL works. Server 2016.

This feature was working externally some time ago and we are not sure of what exactly broke it.

BPA's only warning is:

"The RD Gateway server SSL certificate must be configured with a valid certificate subject name

Severity: Warning

Problem:
The Remote Desktop Gateway (RD Gateway) server Secure Sockets Layer (SSL) certificate may not have a valid certificate subject name.

Impact:
If the RD Gateway server is configured to use an SSL certificate with a certificate subject name that is not valid, users cannot connect to internal network resources (computers) through the RD Gateway server.

Resolution
Use the RD Gateway Manager tool to select a valid SSL certificate for the RD Gateway server to use."

We have tried other certificates and the result is the same. All other certificates are also ok, they are valid and were made from Let's Encrypt.

Any help will be highly appreciated!


Migrate from Windows Server 2008 RDS environment to 2016

January 28, 2019, 12:19 am
$
0
0

Hi!

I need to migrate a Windows Server 2008 RDS environment to 2016. The current situation is that i have;

- 20x RDS Session Hosts (2008)
- 1x RDS Session Broker (2008)

What i want to know is, can i deploy the new Windows 2016 Session Hosts behind the same 2008 connection broker? Or do i need to upgrade this connection broker to Server 2012 first?

RDWeb Password Reset not working - Windows Server 2016

January 21, 2019, 1:10 am
$
0
0

Dear readers I have the following issue when a user wants to reset their password via the RDWeb password reset.aspx

"Your password cannot be changed. Please contact your administrator for assistance." 

What I have done so far : 

- Went into the IIS Manager and set the "PasswordChangeEnabled" to true.
- Reset the IIS Manager via CMD.
- Activated the logging (which doesn't work by the way).
- Rebooted the host & client to be sure.

Does anyone else have this problem aswell or does someone know the solution to said problem?

Hope to hear from someone.

Kind regards,

Sander ten Voorden

Using Remote Desktop Session Host Configuration in Windows Server 2012 and Windows Server 2016

January 28, 2019, 4:37 am
$
0
0

Hi,

Can I use Remote Desktop Session Host Configuration in Windows Server 2012 and Windows Server 2016 through the Group Policy? And if I can use this policy on the local client machine? Thanks

Image may be NSFW.
Clik here to view.

Remote Desktop session : disconnect through command line (PowerShell or batch)

January 15, 2019, 5:58 am
$
0
0

Hello,

What is the best way to disconnect a Remote Desktop Session through command line()s, with batch or PowerShell ?

Regards,


How to enable Enhanced RDP Security for RDP shadow sessions

January 23, 2019, 3:39 am
$
0
0

Hello,

Traffic network captured shows that the RDP shadow sessions uses Standard RDP Security.Can we force the use of Enhanced RDP Security (SSL/TLS) for RDP shadow sessions ?

Thanks

Search

Install of Danish language pack change Settings panel!

January 28, 2019, 6:31 am
$
0
0

Install of Danish language pack change Settings panel!

Hi.

We are running Remote Desktop 2016 with Danish language pack.

We have noticed that the GUI changes and control options are missing as soon as I add the danish language pack.

initial I did a offline install from a cab file, first I thought that I was using a outdated cab file or something.

Then I tried to make a new server from our image(without language pack) and add the language pack from the control panel, and auto downloaded it.. same problem.

Then I installed a new server from ISO and did not join our domain, just bootet and add language from control panel.. same problem, I am unable to create a new working server with danish language pack.

We currently have 14 RDS2016 server deployed from the same image 6 of the have the same problem, settings panel is missing options and icons and labels do not match when using danish language pack.

Any suggestions how to fix this?

https://ibb.co/tH764ty

Left is correct and right is wrong. (sorry Screenshot is in danish!)

Windows 7 using Self-Signed certificate when connecting via Web Access externally

January 28, 2019, 7:27 am
$
0
0

When logging in via our external facing WebAccess configuration to a Windows 7 vm we see the screenshot below. When we connect to a windows 10 vm it connects straight away no problem.

Image may be NSFW.
Clik here to view.

When we look at the certificate it's a self-signed one, why is W7 using this..? What are we missing with Windows 7...?

Windows update breaks Remote Desktop service on Windows 2008 R2

January 22, 2019, 8:17 pm
$
0
0

Dear Sir,

We hit the issue on 2 windows updates - KB4462915 & KB4462923 (KB4462927). Once we apply them, the RD connection via RD gateway to RD Host is not working. but the internal connection is no issue if I bypass the RD gateway.

In Event Viewer, I found the connection and resource authorization polices are passed but it can't connect to the farm address with warning / error message below in different logs

TerminalServices-Gateway Log: The user "DDD\ABC", on client computer "W.X.Y.Z", met connection authorization policy and resource authorization policy requirements, but could not connect to resource "farm.domain.name". The following error occurred: "817".

System Log: A fatal error occurred while creating an SSL client credential. The internal error state is 10013.

There are the system setting we applied on Remote Desktop Service (all RD servers are Windows 2008 R2),

- Only TLS1.2 is enabled with FIPS (Disabled TLS1.1/1.0)

- "Send NTLMv2 response only" is applied

- RD Gateway and Broker are in the same server and RD Host is in the other machine

If we can enable TLS1.0 on RD Gateway, the RD connection can be resumed but this is not a good solution and will leave the backdoor on server.

Besides, we tried to change security layer to negotiation or enabled back NTLMv1 on servers but they didn't help.

I suspect the main issue might be on the change by KB4462923(KB4462927) which fixes TLS1.0/TLS1.1 issue on FIPS (see below) but MS didn't have a fix for RDG / RDCB to support TLS1.2 completely

  • Addresses an issue that makes it impossible to disable TLS 1.0 and TLS 1.1 when the Federal Information Processing Standard (FIPS) mode is enabled.

At this moment, we only can stop the windows update on RD gateway to prevent the blocking again on RD connection. 

I tried to apply the latest windows update (up to Jan 2019) for the test but the problem is still there...

Does Anyone have the solution to enable TLS1.2 only for RD Service for Windows 2008 R2 with update applied? 

Any advice is much appreciated..

MK

Idle Time reset for all users at logon

December 20, 2016, 7:49 am
$
0
0

When I run a 'query user' command to get the idle time for each user, I have noticed that it gets reset back to 0 when a new user logs in. This is a problem because our session timeouts never kick in, even if a user actually is idle. Every single time a user logs on it resets the counter for everyone.

Has anyone seen this behavior before or know how to prevent it? We have idle users who are never kicked off the server because the counter keeps getting reset.

Windows Server Terminal Server no longer issues permanent licenses....

January 10, 2019, 12:36 pm
$
0
0

First, I understand that Windows 2003 is no longer supported.  However the reason for this server is that is runs old software accessed by clients thru Terminal Services.  Currently the vendor and client are in negotiations for a new software but need this to run until that is finished...that being said....

Windows 2003 Terminal server is also a Licensing Server.  All purchased licenses are groups of device CALs, (50 Open CALs, 400 Volume CALs, 200 Open CALs, and 8 Open CALs (to total 658 available)).  However within the past few months, the pack of 200 Open CALs has decided to stop issuing licenses to client PCs.  They have worked since 2008 but now once a permanent license expires, (say from a PC no longer in use), it goes back into the pool of 200 as available, but is never issued to a client.  The other CALs still function as normal.

Temporary licenses are still being issued, but of course are limited in time (like 90 days), and then we get errors that there are no licenses available on the server and in turn try to run the MSLicensing registry fix which has helped keep us going but has also failed on some PCs.  Which leaves us with clients unable to connect at all.

Questions:

1. Is there some way of "cleaning up" the Licensing database, by resetting, reinstalling, or reactivating just this set of licenses so that they start issuing to clients again?

2. Is it worth trying to upgrade to Windows 2008, and if so, do the TS licenses technically upgrade with them?

I know the overall fix is to get to a newer version of OS and client software, but I have no control over that at present time.  Any ideas?

NSG

User having problem changing password on Windows 2008 R2 via remote desktop win7

October 17, 2011, 10:07 am
$
0
0

I have a remote user in another building with OS 7 remote destkop to Windows 2008 R2 Server.  The users account is set to change password on first login.  when the users trys to change his pw he gets error "Configuration information could not be read from domain controller, either because the machine is unavailable, or access has been denied.

We are not using domain controller on the Windows 2008 R2 Server it is set to workgroup.

Any help ASAP would be greatly appricated.

Thanks,

Rob Jung

Disabling TLS 1.0 on Server 2012 R2 causes Remote Desktop Management Service to fail to start

August 15, 2016, 1:11 pm
$
0
0

Very basic RDS setup on Server 2012 R2.  Single VM running all roles.  Everything works fine until I disable TLS 1.0 on the Server.

Then Remote Desktop Management Service fails to start with Error code: 0x88250003.  

Service Control Manager error gives error code: %%2284126211

And I see tons of SChannel 36871 errors: A fatal error occurred while creating an SSL client credential. The internal error state is 10013.

Any ideas?

Patrick

Search

Fail RDS windows server 2016

January 15, 2019, 7:57 am
$
0
0

Good Day,

I have a Windows Server 2016 RDS server with the failure to add the TSL group to the active directory group, the domain controllers are 2012 R2 the rds server was added manually to the TSL group and the failure continues.

Image may be NSFW.
Clik here to view.

Regards,

Unable to start RDMS service

January 22, 2019, 3:59 am
$
0
0

am using Windows 2012 R2 server, I have licensed it with 50 user CALs. I want to deploy apps via RemoteApps, but I cant get into the overview of the Remote Desktop services. when I try to start the Remote Desktop management service, it throws an error saying"The Remote Desktop Management Service started and stopped.Some services stop automatically if they are not in use by other services or programs"

I really need to fix this. Please help.

Validating and reusing Windows Server 2016 volume licenses

January 23, 2019, 6:11 am
$
0
0

We have changed Managed Service Providers multiple times in the last couple years andcannot seem to get any answers about Windows Server 2016 Standard licenses we purchased due to an audit from our MSP in 2017.

We’ve given the volume license key we received from our MSP at the time, xxx, in 2017 to our current MSP, yyy.  

That License Key is: ........

It is supposed to be for 40 Windows Server 2016 Standard (2 core pack) licenses.  But xxx can’t seem to confirm our licenses. 

Just a few months ago we had an issue where we had to move our virtual machines from Hyper-V to VMWare.

Those Hyper-V VMs originally held the licenses.  We want to apply the licenses to the VMWare replacements.

The VMWare replacements were apparently built with trial licenses which are about to expire.  So we really need

to apply the purchased licenses to our servers.  How can I verify our key?  Don Johnson, don@healthdecisions.com

Is RD Web Access role required for access using the standard RDP client?

January 13, 2019, 4:40 am
$
0
0

I'm setting up several new Remote Desktop servers (session-based). Do I need to install the RD Web Access role if the users will only be connecting via the RDP client? It wants to install it as part of the default installation, but for security reasons I think it might be better not to have it, unless not doing so will cause loss of other functionality.

Thanks

David

Desktop Not Refreshing / Updating

January 20, 2019, 10:10 pm
$
0
0

Hi folks,

I have 2 different Win10 laptops signing into my desktop via RD, but both show an older layout of icons than I currently have when working directly from the desktop PC.

If I rearrange icons on desktop, but then RD login, they are still the same as a month or two back.

If I rearrange via laptop when connected to the desktop, no changes are made when I got back to the PC to work.

Frustrating!

Any ideas why it isn't auto-refreshing/updating?

Viewing all 27533 articles
Browse latest View live
Search
<script src="https://jsc.adskeeper.com/r/s/rssing.com.1596347.js" async> </script>