Quantcast
Channel: Forum Remote Desktop Services (Terminal Services)
Viewing all 27650 articles
Browse latest View live

Remote Desktop / Terminal Services monitoring

September 25, 2013, 6:57 am
$
0
0

Hello everyone,

 I have been running into a problem with my network where the users are seeing a large slowdown with their connections from their location to the cloud, and there is plenty of bandwidth, and it appears to be an issues with the cloud server we are running (win 2008r2)  it seems as though when they experience this issue, that it may be that all users are using the same software at a time causing the connection/ server to bog down, my questions is if there is a way to monitor this issue, and not by just looking at the task manager as an administrator, that isn't very helpful. We also have a VPN tunnel from our office to the cloud as well, and we have troubleshooted everything else. i would like to find out if someone is somehow abusing the connection.

Search

Login script not mapping drives for users

November 5, 2009, 8:50 am
$
0
0

I am in the process of configuring a new Windows 2008 terminal server in an existing Windows 2003 domain.  The TS is installed on a member server running Windows Server 2008 SP2.  The problem is that the domain login script (set in group policy) does not seem to be working for the users.  

I have a special TS group policy for the new terminal server and have enabled loopback processing on the default domain policy. The only setting configured in the TS policy is the location of the user's terminal server roaming profile. This seems to be working.  Other than the login script, other elements of the domain-level group policy, such as folder redirection, seem to be working. When I run the GP result tool on the terminal server, it shows all of the appropriate group policies from both the TS policy and the domain-level policy, including the login script.  This login script is vital, since it does drive mapping for a bunch of resources on the domain that users need to run certain programs.  The odd thing is that the login script runs for the Administrator account, which uses a separate group policy that has inheritance blocked.

Any help would be appreciated!

Laurie

Terminal server 2008 Access Denied issues

September 25, 2013, 10:31 am
$
0
0

Hello I have two 2008 Terminal server (Enterprise Edition) and licensing server on a 2008 Standard domain controller.  Both servers have no problem finding the license server but for reason after a few weeks it will all of sudden they suddenly get a event ID error 1061 and that's when the users gets access denied when trying to logon... any advice will appreciated.

Thank you,

Jose

External/Internal Certificates for Windows 2012 RDS on Single Server

September 25, 2013, 11:47 am
$
0
0

Goal: Use RDP Access to RD Session Host through gateway and web access through gateway externally

Info: Single Domain, All RDS Roles on same server(Windows Server 2012), Portforwarding on Firewall

At the Moment, I have one Trusted Certificate from Thawte (Name is ts.domain.com), which I deployed to these parts:

Remote Desktop Connection Broker - Enable Single Sign On
Remote Desktop Gateway
Remote Desktop WebAccess

The Remote Desktop Connection Broker - Publishing Role Service didnt accept my certificate for ts.domain.com, so I used a Self Signed Certificate for this.

Is this constellation possible, or do I need multiple certificates?

Which certificates could be internal to reduce the costs for certificates?

If there is a document that describes the required certs with an example, I would be very interested in seeing it.

Thanks

USB Redirection Per Session

September 25, 2013, 3:41 pm
$
0
0

I am trying to decide between thin or fat clients for a customer. Each station has a USB credit card reader and a USB signature pad in addition to the standard keyboard and mouse, and occasionally uses USB storage. My question is, how does Windows Server, also trying to decide between Windows Server 2008 R2 or Windows Server 2012, handle the USB redirection for multiple sessions.

If I have 40 clients each with their own signature pad and card reader, will each USB device be locked to the individual session or will the host appear as having 40 of each device connected to it?

This would be session based virtualization locked down to essentially a kiosk mode. I am also trying to determine if this would be better to run in a VM or natively on the host. I would like the ability to leverage RemoteFX to provide better graphic support for one department that renders schematics and drawings.

They are also looking to possibly utilize webcams at a future date, I was unable to determine from reading the new information about USB redirection in Server 2012. Am I correct in understanding that RemoteFX USB redirection (and thus webcams) are now supported in Server 2012 session based Remote Desktop connections?

Roaming profile fails on two servers

September 24, 2013, 7:04 am
$
0
0

We've got 12 terminal servers (XenApp 6 on 2008 R2) that are in a load-balanced pool, with users accessing the desktop. I have one user who can log into all servers, but when she logs into two of them, she gets a temporary profile. 

Here are the steps I've taken:

  1. System properties -> profiles: When she's logged in, Windows reports that she has a roaming, temporary profile. When she logs out, there is no reference to the user
  2. HKLM\Sofware\Microsoft\Windows NT\CurrentVersion\ProfileList: There is no reference to the user, nor are there any keys with .bak in the name
  3. C:\users: There is no folder for the user, but there is a TEMP folder that she has NTFS rights to. I deleted the folder
  4. I have verified that the user has NTFS rights on the roaming profile folder

When the user logs in, on the two impacted servers, we see event 1511 and 1521 in the Application log.

I'm not sure what else to check. Thoughts?

Thanks.


User profile migration from one File Server to another.

September 6, 2013, 2:49 pm
$
0
0

Hi All, 

Sorry if this has already been answered but my search brings up nothing.  I am moving roaming user profiles from network location A, to network location B.  

My procedure is 

1. Run powershell script I wrote to take ownership of the profile files, give me full access to the profile files, fix profile permissions to reflect proper user permissions, move them to the new location, update active directory to reflect the new path.

2. Then I update the group policy for those users particular OU and their roaming profile location.

The issue is, even after I've moved the files and the profiles look to the new location, the user profiles still act as if they are being setup for the first time upon next login.

Basically is there a recommended way to move a users roaming profile, without it recreating the account?

Here is the code for the powershell script ( sorry for it not being documented ) just in case you want to look at it.  As far as I can tell though it successfully restores the correct ownership and permissions so I don't think the focus should be at the scripts code( as ugly as it may be )

Assume this script is launched from a separate server that is not contosofs01, with an account that has the ability to view all drives with the 

Add-PSSnapin Quest.ActiveRoles.ADManagement -erroraction silentlycontinue
## RUN THIS SCRIPT AS ADMINISTRATOR 
###############
$loop="Y"
$PSSession = New-PSSession -ComputerName "CONTOSOFS01" -Credential "contoso\Administrator" 
while ($loop -eq "Y")
{
$Root=read-host "Enter the Customer OU"
$Groups="contoso\Administrator","contoso\sg.glo.GO Support Users","contoso\sg.loc.GO IT","ADMINISTRATOR","SYSTEM","contoso\svc.CreateAvGOUser","contoso\Nathan.Julsrud"
$PathsBeforeMigration="C:\IT\$Root.txt"
#####################

$users=get-qaduser -searchroot "OU=$Root,OU=customer GO,DC=contoso,DC=local" -sizelimit 0 | sort-object
get-date | out-file $PathsBeforeMigration -append
foreach ($user in $users)
{
$Username="contoso\"+$user.samaccountname
$samaccountname=$user.samaccountname
write-host -fore green "Processing $Username"
$Folders=@()
[string]$ProfilePath=$user.ProfilePath
$ProfilePath="$ProfilePath.V2"
[string]$HomeFolder=$user.HomeDirectory
$HomeFolder=$HomeFolder.Replace("\My Documents","")
"sAMAccountName=$Username" | out-file $PathsBeforeMigration -append
"ProfilePath=$ProfilePath" | out-file $PathsBeforeMigration -append
"HomeFolder=$HomeFolder" | out-file $PathsBeforeMigration -append
$ProfilePath=$ProfilePath.Replace("\\contoso.local\redirectedfolders","c:")
$HomeFolder=$HomeFolder.Replace("\\contoso.local\redirectedfolders","c:")
$Folders=$Folders + $ProfilePath
$Folders=$Folders + $HomeFolder
$Count=0
foreach ($Folder in $Folders)
{

$string=$String + '`n'
$Count++
if (Test-Path $Folder.Replace("c:","\\contosofs01\c$"))
{
write-host -fore cyan "Setting permissions on $Folder"
Invoke-Command -Session $PSSession -ScriptBlock { takeown /f $args[0] /r /d y} -argumentlist $Folder | out-null

foreach ($Group in $Groups)
{
Invoke-Command -Session $PSSession -ScriptBlock  { icacls $args[0] /grant "$($args[1]):(OI)(CI)F" /t  } -argumentlist ($Folder,$Group) | out-null 
}
Invoke-Command -Session $PSSession -ScriptBlock  { icacls $args[0] /grant "$($args[1]):(OI)(CI)F" /t  } -argumentlist ($Folder,$Username) | out-null 
Invoke-Command -Session $PSSession -ScriptBlock { icacls $args[0] /setowner $args[1] /c /t } -argumentlist ($Folder,$Username) | out-null 
write-host -fore cyan "Copying $Folder"

if ($Count -eq 1)
{
ROBOCOPY $Folder.Replace("c:","\\contosofs01\c$") "\\contosofs06\D$\Profiles\$samaccountname.V2" /E /R:0 /MIR /COPYALL | out-null
rename-Item $Folder.Replace("c:","\\contosos01\c$") "$Root.$samaccountname.V2"
}
else
{
ROBOCOPY $Folder.Replace("c:","\\contosofs01\c$") "\\contosofs06\D$\Home\$samaccountname" /E /R:0 /MIR /COPYALL | out-null
rename-Item $Folder.Replace("c:","\\contosofs01\c$") "$Root.$samaccountname"
}
}
else
{
"NotFound: $Folder" | out-file $PathsBeforeMigration -append
}
}
$NewP="\\contoso.local\RedirectedFolders\UserProfiles\$samaccountname"
"NewProfilePath=$NewP" | out-file $PathsBeforeMigration -append
$NewU="\\contoso.local\RedirectedFolders\HomeFolders\$samaccountname"
"NewHomeFolder=$NewU\My Documents" | out-file $PathsBeforeMigration -append
$user | set-qaduser -ProfilePath $NewP -HomeDirectory "$NewU\My Documents" | out-null
}
$loop=read-host "Run again? Y/*"
}

Remove-PSSession -Session $PSSession
write-host -fore green "Complete"

Single server solution for RDS / TS / RDP using Windows Server 2012 R2

September 23, 2013, 11:48 am
$
0
0

Planning on setting up a small single server and  need this functionality:

* 3 local users runnnig Windows 7 Home Premium needs to access files on the server

* The same 3 users should also be able to connect from home (PC, Mac, iPhone) and run an application on the server. (Session-Based Remote Desktop).

We want to use Windows Server 2012, and found out that Essentials does not support RDP, so that leaves Foundation and Standard versions.

However, I also found out that in WS 2012 the RDP can not be on the same server as the Domain Controller, and we therefor needs to run 2 server instances on our hardware. I think this starts to look way to complicated for what we want to do, but found out that WS 2012 R2 allows a single server to run RDP (See TechNet article 2833839).

So we will go for Windows Server 2012 R2, either Foundation or Standard to set up our RDP.

So now the question: Will that solution work with our local machines running Windows 7 Home Premium, as they cannot connect to a domain? Can we set up some kind of simple file share or Workgroup to acces files locally while still keeping the RDP functionality on the server?

And, will WS 2012 Foundation R2 do this as well as WS 2012 Standard R2?

(I have been asking several locat MS representatives to find a solution to our needs, but no one seems to know how this works....of cause we could just get 2 WS 2012 Standard server instances, run one as DC and on as RDCB and upgrade all our clients to Win 7 Pro, but we would like a solution with minimal investment in time and money)

Rgds

Petter

 




Search

Windows 2008 - RDS Password Expired

September 23, 2013, 11:49 am
$
0
0

Hi..

I've got 40 or so users who all autologin to Windows Embedded 7 as a generic account. I then auto run an MSI published application which asks them to enter in their Windows domain details. The thing is, if their Windows P/w has expired 1 of two things can happen...

i) With the RDP Connection Manager security set to Negotiate it gives the user an error message 'You must change your password when logging on for the first time' and they can’t do anything...

ii) If I change the RDP Connection Manger to 'RDP Security Layer' it does allow them to login and RemoteApp comes up - However it hangs waiting for the user to click 'Show Details' which then shows their Password needs changing..

Am I missing something? I prefer option two but I don't know how to get RDS to default to Show Details so the users know the password has expired and it's not hanging for ever and a day for the fun of it...


Remote App disappears from client desktop

September 25, 2013, 1:08 pm
$
0
0

I am currently running Windows 2008 RS2 Terminal Server.  I created a remote App.  Every now and than the App will just disappear from the client desktop.  The user will be using the app and than poof the app disappears. If the user clicks on the App icon the app reappears exactly where the user had left off.  This app has a login but does not ask for login info it just reappears, just as if  the app had been minimized but in fact has not been minimized. This is happening on many of the client PC's. I run the App on two different Windows 2008 R2 terminal servers and it is happening on both.

Any ideas as to why this is happening and how to correct it?

Thank you

 

Multiple Collections on Windows 2012 RDS

September 27, 2013, 2:12 am
$
0
0

Hello all,

We have a problem with accessing to remote applications which are published on 2 collections. There are 1 rd web access+rd gateway server, 1 rd connection broker and 3 rd host servers in environement.

We created 2 collections; Collection1 and Collection 2. We published 2 different applications, one is running on collection 1 and one is running on collection 2.

All domain users have access to Collection 1 but specific domain users have access to Collection 2.

A domain user who has rights to access on both collection, can't open a second remote app on other collection without disconnecting the active session. 

"The following RemoteApp program is not in the list of authorized programs :" warning appears.

We couldn't find an exact solution to fix this problem.

Regards,

Emre

Logging into server 2012 RDS with UPN

September 4, 2013, 8:00 am
$
0
0

It would appear the Server 2012 RDS Login does not support using the UPN. This does work fine on a 2008 R2 RD Server.

if I try to login via the remote desktop client(latest version) using a UPN it goes to the login screen and says the user name or password is incorrect. The username then appears as " \user@mydomain.com". It authenticated properly to the rd gateway first.

If I then manually type in the UPN on the logn screen it will work.

If in the RD Client I use: "domain\samAccountName" it works

If in the RD Client I use: "domain\user@mydomain.com" it works

KB2821895 : RDS install impossible?

July 5, 2013, 2:30 am
$
0
0

Hello everyone,

I need to install RDS service on Windows 2012 server but i can't install it because  apparently a reboot is needed.. but no update are available..

Can't use normal or quick install..

I built another Windows Server 2012 RDS and no problem...

On the server who has the problem a KB2821895 is installed.

After a long research on internet, it seems to be a KB problem, do you agree with that?

What can i do to solve this problem?

A microsoft employee can confirm KB2821895 fails with RDS 2012??

Thanks.


Error: Unable to display RD Web Access from external IP. Internal IP it works .

September 27, 2013, 3:13 am
$
0
0

Hello,

Trying to build a test-environment with remote desktop web acces and virtual desktops on my MS Server 2012. Got internally from servername/rdweb everything works.
Installed RD-Gateway server. Created a self signed certificate. Imported it in TMG. Imported it in IIS and selected it at bindings. SSL Bridging is enabled for HTTPS -> HTTPS bridging
Selected the self made certificate on certificates for RD-Connection broker RD-Webacces and RD-Gateway

No errors on TMG. No errors on the dashboard or eventviewer. But still getting the errorError: Unable to display RD Web Access

Installed Chrome the webpage loads partially. Getting the error on almost every element :ERR_SSL_PROTOCOL_ERROR

Please help



La connexion a été coupée car l'ordinateur distant a envoyé un certificat d'authentification inattendu

September 27, 2013, 6:57 am
$
0
0

Bonjour,

Merci d'avance pour votre aide.

Voilà, j'ai une ferme RDS dans un domaine. 

J'ai des postes en windows XP SP3 dans un workgroup qui doivent s'y connecter.

J'ai installé le certificat. 

J'ai mis à jour mon RDP et mstsc.exe avec les correctifs préconisés par microsoft.

Mais le message "La connexion a été coupée car l'ordinateur distant a envoyé un certificat d'authentification inattendu" persiste.

Sur les postes Windows XP SP3 du domaine, ainsi que les postes Windows Seven, je ne rencontre pas ce problème.

Si quelqu'un a une idée, je suis preneuse, car là je sèche 

Merci à vous.

Search

Server 2012 Remote Desktop Services with Windows 7 and IE10 - Remote Apps Not Opening

July 8, 2013, 4:40 am
$
0
0

Hi All. This is not so much a question as a workaround or bug we have found

We have a Remote Desktop Services server publishing multiple applications, office 2013 apps included.

We have demonstrated the following behaviour.

After logging in as a user, and with the applications initially being able to open and work fine, after some time, when they are all closed but your session is still open to rdweb, the applications no longer open. You can click on them, but IE10 simply flashes, and nothing happens

We have found that if you logout and back in, it makes no change. If you kill any IEXPLORER tasks it doesn't make a difference. A Restart resolved it.

However we then found after a while that the MSTSC.exe task was not closing. Killing this task resolved the issue. I cannot determine if the issue is with RDS or with MSTSC on the local machine.

We have demonstrated this on Windows 7 and Windows 8

Copy/Paste stops working on certain RDP Sessions

September 27, 2013, 7:42 am
$
0
0

I have done a bunch of searching on this and havn't found an answer to my exact problem.

Running Windows 7 Professional, Copy and Paste works fine, until I open a remote desktop to one certain VM (lets call it VM1), all other RDP sessions work fine.

If I close the remote desktop to VM1, my copy and paste starts working on my desktop.  If I open an RDP to another VM (lets call it VM2) my copy and paste works fine.

I have run sfc /scannow on my desktop but nothing has shown up.

I am confused as to why this one RDP causes my copy and paste to stop working.


Operations Manager 2012 Console via RemoteApp

July 24, 2013, 9:14 am
$
0
0

I have a working Remote App Farm(3 servers with Session host and 1 Connection Broker server) that has allowed my to publish everything from the SCCM 2012 console to 3rd party consoles with no problems, however when I attempt to publish the SCOM 2012 Console ( not the web console) it appears to setup properly, but the program never shows up in the list.

I have verified that all three of the session hosts have the same setup, and that the console runs normally, locally on each server.

Any ideas where / what to check to troubleshoot this?


some more info: the Servers are 2008 R2 x64, and Ops Manager is 2012 Sp1

Unable to copy/paste from Event Viewer on 2008 R2 Server

September 27, 2013, 5:41 am
$
0
0

When connected via RDP to a Windows 2008 R2 w/SP1 server, I am unable to copy/paste information from event viewer on the server to my local desktop clipboard.  However, I can copy/paste from event viewer on the server to notepad on the server, and then copy/paste from notepad on the server to notepad on my local system (so copy/paste works in RDP).

Is there some security feature in Event Viewer on Windows 2008 R2 w/SP1 that prevents me from copying the details directly from the server to my local workstation?

Thanks

Remote Desktop Connection to Domain Controllers has stopped working

September 26, 2013, 9:35 am
$
0
0
For the last month, I've been unable to make a Remote Desktop connection to either of our two Server 2008 Domain Controllers.  I've tried two accounts that have worked in the past, but now the result is: "Your credentials did not work.  The logon attempt failed."  I can use both accounts to log in at the console of both DCs.  I am able to make a Remote Desktop connection to our other servers (2003, 2008, 2008R2, and 2012) using those accounts.  Our domain was set up with an OU for DCs that has a Group Policy Object linked to it, and another OU for  servers that has a separate Group Policy Object linked to it.  As an experiment, I moved one of the DC computer objects to the  servers OU, and I am still unable to make a Remote Desktop connection to the DC.  Can anyone provide me with some troubleshooting tips for this situation?
Viewing all 27650 articles
Browse latest View live
Search
<script src="https://jsc.adskeeper.com/r/s/rssing.com.1596347.js" async> </script>