Quantcast
Channel: Forum Remote Desktop Services (Terminal Services)
Viewing all 27650 articles
Browse latest View live

2019 RDS Gateway slow logon. Approx. 80-100 seconds.

November 4, 2019, 2:57 am
$
0
0

Can't figure out why login through RDS Gateway is so slow...

I've setup a 2019 RDS environment.

It's all VM's
Server: Connection Broker and License Server
Server: Session Host (Server 2019)
Server: Gateway (in DMZ)

Using FSLogix.
MFA plugin through Azure.

When logging in from inside network it's fast. (Not asking for MFA)
When logging in from outside through gateway, it takes 1:40 minutes before desktop is ready. (Asking for MFA)

Using a RDP file.
MFA challenge comes ~11 seconds after password is entered.
After that: "Configuring remote session" in a long time.
Occasionally the login is way faster.
(after I wrote this, the MFA challenge took 4 seconds and was 100% logged in in about 10 seconds through gateway)

I can't see where to begin troubleshooting...

Sometimes the connection is lost, asking the MFA challenge again.
Tried using "Negotiate" and  "RDP Security Layer"

Tried looking Event Viewer on several servers with no luck

Sorry for the jumping in text.


Search

Issues with RDS web client to gateway

November 28, 2019, 4:35 am
$
0
0

Side note. this all works fine using the legacy reweb and rds client.

When trying to connect using the web client, we get the usual "Oops, we couldnt connect".

When i look in the dev view, I see websocket connection to the gateway failed, 404:

WebSocket connection to 'wss://gateway.testcloud.co.uk/remoteDesktopGateway?CorId=%7B334da63a-1571-428b-903f-b23d4a860000%7D&ConId=%7B32369577-63bd-4dee-a4bc-dd8f08495d4e%7D&ClGen=HTML%3D1&ClBld=Type%3DRdClient%3B%20Build%3Dprivate&AuthS=SSPI_NTLM' failed: Error during WebSocket handshake: Unexpected response code: 404

Any ideas?

ntuser.dat and GPO Issue

November 27, 2019, 11:43 pm
$
0
0

Dear all,

Enviorment:

2 DCs: Windows Server 2012R2
1 Terminalserver Session Broker: Windows Server 2016 (Session Broker and License Server)
3 Terminalserver Host: Windows Server 2016 (RDS Host)

If I deploy a new GPO on the DCs to the OU of the terminalservers the deployment works fine for all users. If I deactivate the GPO on the DCs and force the gpupdate on the terminalservers the GPO will stay activated to the users. After a bit of research it seems like the ntuser.dat from the user stored in the user profile disk won't be updated. If I delete the ntuser.dat manually and login again to the terminalservers I will get the right activated GPOs.


Folder permissons for the folder where the UPD are stored: Everyone (Read and Execute, Read Folder), System (Full Access), Every Terminalserver (Full Access), Domain-Admins (Full Access), Local Users (Read and Execute, Read Folder) Local Admins (Full Access)

File permissions for UPD vhd-files: Everyone (Read and Execute), System (Full Access), AD User himself (Full Access), Every Terminalserver (Full Access), Admin (Full Access), Domain-Admins (Full Access), Local Users (Read and Execute, Read Folder) Local Admins (Full Access)

For me it seems like the ntuser.dat do not work fine. Has anyone an idea?

Thanks!

Check Health status from RDS Farm

November 28, 2019, 2:47 am
$
0
0

Hi all,

We have made a RDS Farm to deploy a Virtual App. After configuring the roles, we have this structure:

  • server1 - RDBroker/RDGateway/RDWeb access
  • server2 - RDBroker/RDGateway/RDWeb access
  • server3 - RDLicensing/RDSH
  • server4 - RDLicensing/RDSH
  • server5 - RDSH

server 1 and 2 are in DMZ VLAN, and server 3, 4 and 5 in midd VLAN. To publish our public DNS, we use a pool into VIP F5 that balance the connections with Round Robin mode and assign a static public IP to this DNS.

All roles are in HA: RD bróker have a DNS RR register with the server 1 and 2 IP, RDGateway is duplicated on both servers, RD Web Access and IIS is installed on both servers and the RDSH role is blanacing via RDBokrer service.

The question is: Is possible to check the health status of every role (RD Gateway, RD Bróker and RD Web Access) to remove of the F5 pool the machine when some role is out of service in a server1 or 2 ?

Thanks!

Gerardo,

Blackscreen after logon

November 22, 2019, 6:33 am
$
0
0

Hi

We have a problem with logon times on our RDP 2012R2 servers. It must be related to the roaming profile.

The problem:

The users logon on via RDP. The profile gets loaded, applying group policy settings and so on, and then the "black screen" starts. I can take up to 15 minutes before the users desktop is visible and ready to work.

While there are black screen I can press CTRL+ALT+DEL and go to the task manager. The only process that is working is explorer.exe.

If we create a new profile the users are logged in less than a minute, but the logon process and the time for the black screen increases over time. It happens for all our users on our 30 RDS servers.

Any suggestions?

Windows 10 Remote Desktop Session Randomly Unexpectedly Exits and Terminates all apps - please help!

November 22, 2019, 11:41 am
$
0
0

I remote desktop to my Window 10 Surface laptop via LAN (to use Outlook from the laptop) allowing me to create send/emails on the Surface laptop via remote desktop from my desktop PC. This has been working fine for 2+ years. Recently the Surface 10 has started ending the remote desktop session randomly perhaps 2 or 3 times per day. The worst parts is that it also terminates all running applications so when I can finally remote desktop back in my Outlook sessions have been lost. This is frustrating as I have lost a lot of drafted emails.

(I’ve setup Outlook to save every 1 minute but even so sometimes I lose the active email I'm working on in Outlook or recently received emails - I've lost lots of work because of this - it is driving me crazy.)

If I try to immediately log back in via RDP I sometimes get:

The number of connections to this computer is limited and all connections are in use right now. Try connecting later or contact your system administrator

I wait and try again and I can log back in but all my applications have been terminated. Perhaps the user session is being logged out and back in – I can’t tell.

Why on earth would all apps be terminated - it's as if the Surface computer user session is logged out and terminates all running apps for absolutely no reason.

There are no failed attempts in System Event Log Security, only forced log off. I noticed over 100 Audit Success security events at same time:

Credential Manager credentials were read.
Subject:
    Security ID:        DOMAIN\My Name
    Account Name:       My Name
    Account Domain:     DOMAIN
    Logon ID:           0x1A293A3D8
    Read Operation:     Enumerate Credentials
This event occurs when a user performs a read operation on stored credentials in Credential Manager.

This is then followed with:

An account was logged off.
Logon Type:         3

This event is generated when a logon session is destroyed. 
It may be positively correlated with a logon event using the Logon ID value. 
Logon IDs are only unique between reboots on the same computer.

Windows System Events at arounds this time shows a number of Errors:

The server {AAC1009F-AB33-48F9-9A21-7F5B88426A2E} did not register with DCOM within the required timeout.
The system is exiting connected standby 

Reason: Input Keyboard.
A timeout was reached (30000 milliseconds) while waiting for the Sync Host_1a14de225 service to connect.
A timeout was reached (30000 milliseconds) while waiting for the Windows Push 

Notifications User Service_1a14de225 service to connect.
The Clipboard User Service_1a14de225 service failed to start due to the following error: 
The service did not respond to the start or control request in a timely fashion.
A timeout was reached (30000 milliseconds) while waiting for the Clipboard User Service_1a14de225 service to connect.

The Connected Devices Platform User Service_1a14de225 service failed to start due to the following error: 
The service did not respond to the start or control request in a timely fashion.
A timeout was reached (30000 milliseconds) while waiting for the Connected Devices Platform User Service_1a14de225 service to connect.

The Clipboard User Service_1a14de225 service terminated unexpectedly. 
It has done this 1 time(s). 
The following corrective action will be taken in 3000 milliseconds: 
Restart the service.

The Sync Host_1a14de225 service terminated unexpectedly. 
It has done this 1 time(s).
The following corrective action will be taken in 10000 milliseconds: 
Restart the service.

The Windows Push Notifications User Service_1a14de225 service terminated unexpectedly.
It has done this 1 time(s).
The following corrective action will be taken in 10000 milliseconds:
Restart the service.

Note, I posted this at https://superuser.com/questions/1484818/windows-10-remote-desktop-session-randomly-unexpectedly-terminates 

But no-one could help there.  This is really driving me crazy as I am losing emails on a daily basis





Connecting to RDWeb issues.

November 28, 2019, 11:08 am
$
0
0

Hi

I have set up RDS on Win 2019 server, but when trying to connect to the I keep getting that the Gateway in unavailable.

I can connect to there server with RDP fine, but not RDWeb. Could someone point me in the right direction.

I am using Azure

RDS 2016 - Connection certificate

December 4, 2019, 2:27 am
$
0
0

Hi,

I'm sure this has been asked many times before, and I'm probably just missing something simple but we've built a new RDS 2016 system consisting of 2 Connection Brokers and a few RDS Hosts which will be used for plain Remote Desktops. 

Clients are getting certificate warnings when connecting as the DNS name for the farm (RDSFARM.domain.com) is different to the host name on the self-signed certificate which is presented. We have a wildcard cert which we could use, in place of a SAN certificate, but I'm unsure where we configure this. 

In the RDS Server Manager, you can configure the RD Conncection Broker for SSO, Publishing, Web Access and RD Gateway but these aren't related to what I'am talking about are they? 

I've also tried putting this wildcard cert into the RDS system certificate store and removing the self signed cert, but no luck doing that. So what is the right way to configure this? 

Thanks in advance, 

Dave

 

Search

FSLogix Profiles being overwritten

December 4, 2019, 2:56 am
$
0
0

Hi, 

We've been rolling out FSlogix and so far have been loving it. We came from roaming profiles.

When we migrated I left the 'Profile Path' field set on the AD object as there are app servers and various others that users may logon to without FSlogix - so keeping roaming for these seemed ideal.

For two users, whenever they login to the RDS Farm with FSLogix, the roaming folder in their VHDX gets overwritten (*profile*\appdata\roaming) Weirdly the local folder is unaffected. If I restore the VHDX and remove the Profile Path field this stops happening.

Only happens for these users and I cannot find any documentation related to this.

Anyone have any ideas?

Thanks,

Andrew

RDS Server 2016 & SSL's

December 4, 2019, 4:19 am
$
0
0

Hi everyone

We have recently renewed our SSL wildcard (GoDaddy) certificate and have successfully installed it.  However we now have a problem where some users are unable to connect and I suspect its an issue with SSL and possibly something I've not done correctly.  Below is a brief overview of the RDS deployment

7 Servers - 1xGateway/web access, 1xConnection broker/licensing, 4xdesktop hosts and 1xapplication host.
SSL Wildcard purchased from GoDaddy and assigned to each server.  CN *.abcd.co.uk

Server FQDN (as seen from connection broker) is server.ad.domain.com (I think this has changed since adding the new SSL from server.abcd.co.uk but can't be certain).
Forward looking DNS A record abcd.co.uk set to private IP for gateway and connection broker servers.

We have a mixture of W7 & W10 Pro clients, a large number of HP thin clients and a few Apple Mac's.

Connecting internal seems to work for Windows user and some thin clients but the Apple users and some of the HP clients cannot get on.  If we change the Gateway settings from defined to automatically detect on on the connection broker, the Apple clients work but not some of the thin clients.

I am convinced the root cause is the way we have configured our Wildcard SSL which has effected the gateway and other settings.

Unfortunately, I cannot find any literature which gives in depth instructions on how to configure and assign SSL certificates from start to finish for an RDS deployment.  

Prior to us renewing the certificates, everything was working fine.

If there is anyone who can advise, then I would be grateful.

Regards

Thackers

RemoteApp - Reconnecting to a Disconnected Session on RDSH Server

November 27, 2019, 12:24 am
$
0
0

Hello,

I am currently evaluating RemoteApp to deliver applications to our roaming users. It is working well.

However, whenever user reconnects, it creates a new session rather than hooking up to a disconnected session. My requirement is that till the time a disconnected session does not end, user must reconnect to their corresponding disconnected sessions only.

I have tried configuring following Group Policy Settings on the Session Host Server, but could not achieve the objective:

  • Automatic reconnection = Enabled
  • Configure keep-alive connection interval = 30 mins
  • Restrict Remote Desktop Services users to a single Remote Desktop Service session = Enabled

Request if someone can guide me about some missing configuration to achieve the objective.

Thanks,

Amit Jogi

Cannot connect to Remote Desktop from Android (error 0x1307), but I can from a Windows PC

November 30, 2019, 3:38 pm
$
0
0

Using Group Policy Editor, I have added Administrators into Computer Configuration\Windows Settings\Local Policies\User Rights Assignment\Deny access to this computer from the network. This is to make sure that file sharing users cannot bypass the NTFS rights. However, I want members of the Administrators group to be able to login interactively using Remote Desktop. It works from Windows PCs, but not from Microsoft RD Client for Android, where I get the following error message:

  • We couldn't connect to the remote PC because the admin has restricted the type of logon that you may use. Ask you admin or tech support for help. Error code: 0x1307

I can connect from Android only if I remove that policy.

Any ideas?

Windows 2016 and 2008 r2 RDS issue

November 26, 2019, 10:15 am
$
0
0

I have the following:

RDS Gateway = Windows 2016

TS server = Windows 2008 R2

TS Server2 = Windows 2016

I get into the RD webpage without issue, there lies 2 RDP published apps pointing to 2 different servers.

When the icons are launched and authentication box appears, domain credentials are put in, and the error stated below comes up.

End users can access the gateway without issue, when they select the TS Server RDP icons they get the following error:

RemoteApp Disconnected - Your computer can't connect to the Remote Desktop Gateway server. Contact your network administrator for assistance.

The TS connection is set to maximum, everything else is set correctly to. I have read all the articles I can find and it has not resolved the issue, is there something I am missing?



Vpn to,server without RDS for users to login from outside office

December 4, 2019, 4:41 pm
$
0
0

hello all,

I appreciate any feedback on this question. we are trying to have six users work remotely from outside the office. We have an server 2012 r2 in a workgroup environment. No RDS licenses.

are we able to set up VPN through the router for six users to log in to the server at same time if there are no RDS licenses? Or can we set up VPN directly to six computers desktops using the router.

Thank you

Server 2016 RDS Start Menu and Taskbar Issues

March 28, 2019, 6:41 pm
$
0
0

We're running a single RDS setup with Windows Server 2016 Standard and about 2 weeks back we started to experience Windows Start Menu and Taskbar issues where these functions would suddenly stop working for all of the RDS users.  We are not using profile disks and each user connects to the RDS via our gateway server and their profile is stored locally on the RDS server.  No desktop or Start Menu redirection is setup.  We have 25 RDS CALs and there's normally about 20 users logged into the RDS server.  The server is a physical server running a 12core Intel CPU with 32Gb of RAM and an NVME SSD Intel disk.

The desktop apps like Microsoft Office will continue to function fine but if you minimize the running apps, the user can not click on the minimized apps as the Taskbar doesn't respond along with the Start Menu.  The only thing that currently works is to logout the user session using Task Manager or to reboot the server.  When the user reconnects and gets a new session, the Start Menu and Taskbar will work for several hours before it goes back to the locked state.

I have read quite a few posts and I have re-installed the Windows apps with the following PS script:

Get-AppXPackage -AllUsers | Foreach {Add-AppxPackage -DisableDevelopmentMode -Register “$($_.InstallLocation)\AppXManifest.xml”}

I have run a full sfc /scannow and checked the health of the windows image.  These all complete fine without issue.

Tonight I have found some older posts from 2017 about Server 2016 RDS black screens that are caused by duplicate Windows firewall rules getting created for each user every time they login.  While we don't have the black screen issue, I'm wondering if our issues with the Start Menu and Taskbar could be related to this same duplicate firewall rules for each user.  When I checkedHKLM\SYSTEM\ControlSet001\Services\SharedAccess\Parameters\FirewallPolicy\RestrictedServices\Configurable\System on our RDS, I am seeing thousands of entries.

Does anyone know if these duplicate firewall rules can cause the Start Menu and Taskbar issues?  If so, what's the proper way to delete them?

Thanks for any input.

Ken 

Search

Remote Desktop License issue on Server 2016

November 26, 2019, 11:52 pm
$
0
0

We have installed Server 2016 and installed Remote desktop services and license activated on the server.

When we connect to the server 2016 from windows PC and its connecting without any issue.

But when when we connect through Ncomputing Vspace session thin client and we are getting the below error message.

There is a problem with your Remote Desktop License, and your session will be disconnected in 60 minutes.Contact your system administrator to fix this problem.

Please help on this issue.

Thanks

Krishna

rds user profile disks still being used after mole removed

December 5, 2019, 4:36 am
$
0
0

Hi

We installed the roles on one server and enabled user profile disks, then we uninstalled the roles. Now when a user remotes to the server user profile disks are still being used.

Is there a way to stop them being used?  

Server RDS agruments missing in rdp file

November 4, 2019, 5:29 am
$
0
0

Hi everyone,

This is my first post in this website ! :)

I try to deploy an RDS solution with 3 RDS Server (Windows Server 2016) and 1 RDS Broker (Windows Server 2016).

All servers are in VMWARE Environment 

My RDS servers have RemoteApp (1 per server) and I have an issue with one.

First I deploy my RemoteApp, no problems, no errors messages.

Next, I connect to my Web RemoteApp Work Ressources and I download the RemoteApp file (.rdp file)

Now Impossible to open it because the application can't find the remote computer. When I edit the rdp file I have some missing arguments :

  • videoplaybackmode:i:1
  • audiocapturemode:i:1
  • gatewayprofileusagemethod:i:1
  • full address:s:MYBROKER.mydomain
  • gatewayhostname:s:mygateway.mydomain

I try to remove my RDS server VM and create new one with the same name, but same problem.

In this example I tried to deploy calc32 in RemoteApp.

When I go in regedit I see that arguments are missing but I don't know why.

If y ou have ideas to repair, Thanks for your future answers!

Sincerely, :)



Remote session was disconnected because there are no Remote Desktop client access licenses available for this computer. Please contact the server administrator

November 17, 2019, 8:16 pm
$
0
0

Hi All,

I have created a DC and I have 5 servers which have to be using RDS User CAL Licensing. DC is one of the 5 Servers that I have.

Now I have added all the machines to the Domain that I have created and also configured the Licensing Role as required, but now the servers are disconnected stating that it has passed the grace period. I have a User CAL License available with me. Below details are configured as per the requirement on of them

RD Licensing / RD Session Host / RD Gateway - All Servers

RD Connection Broker / RD Web Access - only on one server which is not a DC

I want to activate the license and make sure I have access to all the 5 Servers which are configured in the same domain.

Kindly suggest if any changes with the gpedit.msc is required or with the regedit which I presume shouldn't be done as I have a proper license available.

I would like to configure the existing mis-configuration to be corrected. Let me know what kind of details you need in order for me to get this fixed.

Help with RDWeb, error "Can't connect to Remote Desktop Gateway server..."

November 27, 2019, 8:23 am
$
0
0

Hello, I am trying to access an EMR system for a new client and have been able to access it from my personal computer and from other computers, but not from my work laptop. I keep getting the error message " You're computer can't connect to the Remote Desktop Gateway server. Please contact your system administrator for assistance." when I try to connect. I have spoken to as many system administrators as I could, have worked with two different IT teams, and no one can seem to figure out what is wrong! If anyone has any ideas of how to fix this I would greatly appreciate it! Thank you!



Viewing all 27650 articles
Browse latest View live
Search
<script src="https://jsc.adskeeper.com/r/s/rssing.com.1596347.js" async> </script>