Quantcast
Channel: Forum Remote Desktop Services (Terminal Services)
Viewing all 27650 articles
Browse latest View live

Remote Desktop web client exception with disconnect code GatewayProtocolError 52 , extended code=, reason = Gateway tunnel authorization failed with error code = 2147965403

May 1, 2019, 11:33 am
$
0
0

Scope of this is that out of dozens of accounts that work fine for rdwc sessions, there are two that do not.  The connection starts but within a few seconds fails with, user facing side, 'we couldn't connect to gateway because of an error.'  When running a capture, the key error appears to be:

"The connection generated an internal exception with disconnect code=GatewayProtocolError(52), extended code=<null>, reason=Gateway tunnel authorization failed with error code=2147965403"


This is what’s in the nps log from the RD server:

"orgRD","RAS",04/05/2019,15:22:31,1,"DOMAIN\SAMACCOUNTNAME",,"UserAuthType:PW",,,,,,,,,,,,5,,,12,,,0,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,"TS GATEWAY AUTHORIZATION POLICY",2,"TS GATEWAY SERVER GROUP","xxx.xx.xxx.xx",,
"orgRD","RAS",04/05/2019,15:22:31,11,,,,,,,,,,,,,,,,,,,,,0,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,"TS GATEWAY AUTHORIZATION POLICY",2,"TS GATEWAY SERVER GROUP","xxx.xx.xxx.xx"",,

And this is from the NPS server:

"FILES","IAS",04/05/2019,15:22:31,1,"DOMAIN\USERNAME","domain.org/Users/FirstnameLastname","UserAuthType:PW",,,,,,,0,"xxx.xx.xxx.xx","orgrd",,,5,,,12,7,"RDpolicy",0,"311 1 xxx.xx.xxx.xx 03/19/2019 04:54:59 292",,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,"RDGWauth",1,,,,
"FILES","IAS",04/05/2019,15:22:31,11,,"domain.org/Users/FirstnameLastname",,,,,,,,0,"xxx.xx.xxx.xx","orgrd",,,,,,,7,"RDpolicy",0,"311 1 xxx.xx.xxx.xx 03/19/2019 04:54:59 292",,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,"RDGWauth",1,,,,

Any pointers in the right direction, or if anyone else has seen these errors, would be much appreciated!

Search

New to RDS with RDP

May 7, 2019, 6:43 am
$
0
0

I came from the VM Ware remote desk top services so stumbling a little getting up and running. I have a windows 2019 farm built and working with published apps and 2 windows 10 pools one pooled and one personal. Everything is working across HTTPS including html 5 where I have an issue is with some thin clients I am running ( RDP protocol ) . I point them at my RD Connection Broker server and added the reg entry to redirect to my  windows 10pooled pool everything works great. With only one RD Connection Broker ( in this case 2 clustered ) how can I redirect some thin clients to the personal pool and others to the pooled pool. Thanks for any help you can give me here.

Unable to RDP to windows 2k12 server

May 7, 2019, 6:49 am
$
0
0
After patching server we are unable to RDP the server from its Public IP and VPN but are able to RDP the server via Internal/Private IP. Any help would be appreciated.

Intermittent connection issues to our RemoteApp via RD Gateway

April 29, 2019, 8:13 am
$
0
0

We are getting intermittent errors only when connecting to one of our Remote App servers. When users attempt to connect using an RDP file we provided them they occasionally get,

"RemoteApp Disconnected"
"Remote Desktop can't connect to the remote computer "MACHINE.DOMAIN.COM" for one of these reasons:

1) Your user account is not authorized to access the RD Gateway "RD-GATEWAY-DEV.DOMAIN.COM"

2) Your computer is not authorized to access the RD Gateway "RD-GATEWAY-DEV.DOMAIN.COM"

3) You are using an incompatible authentication method (for example, the RD Gateway might be expecting a smart card but you provided a password)

Contact your network administrator for assistance.

If they trying logging in with the same RDP file a couple of times, it eventually works. Not sure how to track this issue down.

We know that the RDP is ok, because it works much of the time.

Any ideas on what logs to look at on the server?

Lenovo YOGA 3 Pro-1370 Product Key error

April 29, 2019, 2:12 am

Terminal services login issue

April 27, 2019, 7:52 am
$
0
0
Once the server has started, you can log in to it. However, after some time, the server will stop accepting log ins from both the console and RDP and will just sit on "configuring remote session". I have had this on many Server 2016 servers with remote desktop services installed. If you leave RDP to sit on this message it eventually errors with an 'internal error occurred' message.

Intermittent Connection Issues to our Remote Desktop Server

June 26, 2015, 2:27 am
$
0
0

So we have a Hyper-V VM that is running Server 2008 R2. When using remote desktop to connect to this server we are randomly having issues connecting when trying to connect using both our external dns and ip address and also with the internal server name.

We receive the following error:

Remote Desktop can't connect to the remote computer for one of these reasons:

1) Remote access to the server is not enabled

2) The remote computer is turned off

3) The remote computer is not available on the network

All of the above are fine as we have used this server for a number of years. Its only been a recent thing that this has stopped working intermittently. I have 6 users connected today and now if i try and log in i get this message and i am trying several users who i know have connected recently.

Any ideas would help ?

Remote Apps do not display in RDWeb - Remote desktop server 2016

May 7, 2019, 9:41 am
$
0
0

I have a single Remote Desktop Server on the domain.

I have added the server to  the RDS Access Servers group on the local server and Active Directory.

All of the Remote Apps are set to be visible in RD Web Access.

I did setup the server and publish the apps prior to adding the Remote Desktop Web Access role.

Joshua Lance

Search

Sign in option

May 7, 2019, 12:04 pm
$
0
0

Can i add custom sign in option in addition to already available sign in options (password, smart Card) ?

Custom sign in option is related to smart card but without reading certificate on smart card. Rather it will perform sign in on other attributes fetched through smart card and comparing them againstemployee ID attribute of AD?

Rox_Star

Windows Server 2012 R2 Remote Desktop Services - RDP client gets black screen, System Event ID 4005, TerminalServices Event ID 36

May 7, 2019, 12:26 pm
$
0
0

RDP users (Citrix XenApp) are getting connections refused/dropped and a black screen. This is Citrix MCS spawned terminal services on Windows Server 2012 R2. On the server seeing these messages:

Log Name:      Microsoft-Windows-TerminalServices-LocalSessionManager/Operational
Source:        Microsoft-Windows-TerminalServices-LocalSessionManager
Date:          5/7/2019 12:08:15 PM
Event ID:      36
Task Category: None
Level:         Error
Keywords:      
User:          SYSTEM
Computer:      CTXIAHYP004.mydomain.com
Description:
An error occurred when transitioning from CsrConnected in response to EvCsrInitialized. (ErrorCode 0x80004005)

Log Name:      Application
Source:        Microsoft-Windows-Winlogon
Date:          5/7/2019 12:08:15 PM
Event ID:      4005
Task Category: None
Level:         Error
Keywords:      Classic
User:          N/A
Computer:      CTXIAHYP004.mydomain.com
Description:
The Windows logon process has unexpectedly terminated.

After extensive Internet search with these symptoms I am coming up empty.

I reviewed EventTracker and related MicrosoftHelp but these recommendations do not seem to apply in this case or are too vague to be useful. Those articles suggest a server resource constraint (we do not see this, unless it was temporary and is no longer present when the system event occurs), registry corruption (this seems very unlikely, but even if true, how do we determine which registry hive or key is corrupt?) or a service that needs restarting (which service? we do not see any errors showing failed or stopped services).

Any other tips?

RDS with Azure Load Balancing

April 28, 2019, 5:12 pm
$
0
0

Hi Folks,

I was testing out the solution provided by MS in one artciles to configure RDGW/WEb access server behind Azure LB but was confused with step3.https://docs.microsoft.com/en-us/windows-server/remote/remote-desktop-services/rds-rdweb-gateway-ha


Scenario: RDS GW/Web Access in HA running behind a Standard Azure Public Load balancer..The solution works good  but If i start restricting the traffic via NSG...the only way rd Gateway/WI URL works publicly  is if i put the 
source :Internet;destination : IPs of my RDS GW/WebAccess Servers; port :443... 

Ideally,shouldn't it be working if i enable the port 443 from outside network to the IP of Public Load balancer (behind which actually are my RD GW/Web Access servers)or Am i doing something wrong?...
If it works by allowing port 443 to internal IP of RD GW/Web Access server ,isnt it a  secrutiy risk?
Please let me know if somebody can help out to clear the confusion

ManeeshB

W10 1709 RemoteApp - Pop-ups hidden behind main window

November 16, 2017, 1:28 pm
$
0
0

Hi, I've this issue after migration of RDS server from 2012 R2 to 2016 and client have Windows 10 1709 but with Windows 10 1703 no issue.

Any suggestions?

Hyperv enhanced session and RDP

April 29, 2019, 9:48 pm
$
0
0

I have a windows 10 computer and it has a hyperv windows 10 VM within it. When I try to log into the VM using enhanced session mode of HyperV, which requires RDP support, my logon is refused with the classic 'you need the right to sign in...".

I have verified the following:

The account I am using to logon is an administrator account and also has the User right 'allow logon on through terminal services'

Remote desktop connection is enabled through control panel system.

Firewall port for RDP is open and allows anyone in.

Is there something I have missed?

Thanks

David Z

Select Icons To Appear In Taskbar Doesn't Stay Selected Between Sessions - Possible UPD Issue

May 6, 2019, 4:20 pm
$
0
0

Every time I log into RDS, I have to re-"Select which icons appear on the taskbar" to have my notification shown in the system tray.  Every time.  I have UPD and Redirected Folders.  In User Profile Disks setup within the RDS setup, I chose "Store all user settings and data on the user profile disk".  Yet, it's not saving my selection of icons that I want displayed within my system tray upon logging off.  What do I need to do so that users don't have to keep re-selecting every time they log into RDS?  It seems to defeats the purpose of using UPD, i.e., is unable to roam properly.  Thank you!  -John Babbitt-

VDI and RDS

May 7, 2019, 6:11 pm
$
0
0

Hello, I've got a question regarding the use of VDI and RDS at the same time.

We managed hotels and most of our front desk computers will be required to use VDI and not RDS due to software that has to be installed at each front desk pc for credit card and room keys and it won't work on RDS since each reader is independent.

My question is if we setup VDI for the front desk computers which will use Dell Wyse ThinOS and then all the other computers in the Hotel are RDS on Dell Wyse ThinOS can we set it up so that if a user logs into a front desk computer it goes to the VDI machine and then if they sign into a back office terminal it goes to the RDS server?

If that's possible do you just have the wyse terminal set to sign into the VDI machine using the vdi hostname or would you still point it to the Broker?

For RDS I've went into the DNS and put in a A record since we have multiple RDS servers. How would this work with VDI? 

The other question is what is the difference between buying a VDI license vs just buying a Windows 10 license and putting that on a Hyper-V VM?

Thanks

Search

Windows 2016 RADC URL rejects credentials. An Error has Occured.

April 16, 2019, 7:38 am
$
0
0

Good Morning,

Hoping to get some insight on troubleshooting this.

I have a brand new single instance Windows 2016 Standard Remote Application and Desktop Server.

The server hosts the following roles;

Gateway
Licensing
Connection Broker
Web Access

The server is protected via a public CA Cert and works as far as being a Gateway, and Web Access is concerned.  Users can connect thru it to other servers via gateway and can open and launch applications via the Web page.

When users try the add the URL https://servername/RDWeb/Feed/Webfeed.aspx  in the RADC applet in control panel,  they receive an error that they are using Incorrect Credentials.  When they type in their credentials in either DomainName\username or username@domainname format it errors out and they need to try again or cancel.

I have looked in the event log in the server and while I can see the transactions happening in the IIS logs,  the end user never is allowed to log in or receives apps.

Could use some insights here?

If I type the URL correctly in a web browser,  I receive a login prompt which once submitted provides me what appears to be an encrypted token.

Mouse cursor interacting with Remote Desktop App windows on the wrong monitor

May 7, 2019, 7:26 pm
$
0
0

We have a WinForms application we use as a remote desktop app and recently we've had multiple users report a situation where clicking on one monitor actually interacts with windows on another monitor. Restarting the remote desktop application seems to fix the problem. Our users have a two monitor setup.

Has anyone else experienced this issue?

Azure RDS HTML5 Web Client Unable to Access Gateway

May 3, 2019, 3:49 pm
$
0
0

We have a RDS (Remote Desktop Services) deployment, and recently went through the process of installing the HTML5 web client as per the directions at:

https://docs.microsoft.com/en-us/windows-server/remote/remote-desktop-services/clients/remote-desktop-web-client-admin

Our deployment is hosted on domain A, which has an active directory instance. There is also domain B with its own active directory instance, there is a two way trust between the two.

The problem we are having is that the traditional RD Web Access works fine for all users, but when users from domain B log on to the HTML 5 web client and try to open an app they get a message "We couldn't connect to the gateway because of an error". At the same time the browser console shows the following error:

Connection(ERR): The connection generated an internal exception with disconnect code=GatewayProtocolError(52), extended code=, reason=Gateway tunnel authorization failed with error code=2147965403

During troubleshooting we’ve tried:

  • Verified that required ports are opened.
  • Disabling all firewalls between gateways, brokers, and session hosts – same error.
  • Re-applied the publicly trusted cert to the HTML5 client (via Import-RDWebClientBrokerCert) – same error
  • Verified that the proper cert was bound to the HTML5 client – same error.
  • Enabled NTLM by setting the GPO: Computer Configuration -> Policies -> Windows Settings -> Security Settings -> Local Policies -> Security Options -> Network Security: Restrict NTLM: NTLM Authentication in this domain. To “Disable” (within same domain as RDP) – same error.
  • Ran regsvr32 wksprtps.dll (dll was already registered, but tried it anyway)
  • Verified that the required KB4025334 from July of last year was installed or not necessary (OS was up to date)

Any ideas on other areas we can look at?

2019 RDSH - not able reconnect to Disconnected session, every time new session (with fSingleSessionPerUser=0)

May 3, 2019, 10:46 am
$
0
0

Hello colleagues

When we are doing such config (enable multiple sessions per user):

Computer Configuration\ Administrative Templates\ Windows Components\ Remote Desktop Services\ Remote Desktop Session Host\ Connections

Restrict Remote Desktop Services users to a single Remote Desktop Services session     Disabled

We are not able to reconnect to any disconnected session that was running previously.

It seems that it was mentioned here for Inside build, but we have same...

https://techcommunity.microsoft.com/t5/Windows-Server-Insiders/Bug-no-reconnect-to-disconnected-session-with/m-p/282056/highlight/false#M829

Any solutions for this problem?

Regards,

Sergii V

batch file issue

May 3, 2019, 6:09 am
$
0
0

Hey

I have a few creative studens, who bypassed the blocking of cmd, and created some batch file.

One of them give the access to whole path c:/ trough the file explore .with this command:  start %windir%\explorer.exe "C:\"

Im running some batch files my self for all the users, so i wont block for batch file running. 

How do I stop or block for these creative studens. :-(

King Regards
Jerry


Viewing all 27650 articles
Browse latest View live
Search
<script src="https://jsc.adskeeper.com/r/s/rssing.com.1596347.js" async> </script>