Quantcast
Channel: Forum Remote Desktop Services (Terminal Services)
Viewing all 27650 articles
Browse latest View live

Issues with RD Gateway and NLB

$
0
0

Hi,

I'm trying to configure a RD Gateway farm using Windows Server NLB. I've got everything to function as expected. But the UDP connections often ends up on the other gateway server.

Example: One user has a TCP connection on Gateway 1 and the UDP connections on Gateway 2. What should I do to avoid this? Can this cause any issues? I've tried to change the affinity settings and "Network" results in the fastest connection.

My configuration details below.

Cluster ip: xx.xx.xx.30
Operation mode: Multicast
Port Rules:
All IP:s
Port range: 443 - 443
Protocol: 443
Affinity: Network

Gateway 1 ip: xx.xx.xx.31

Gateway 2 ip: xx.xx.xx.32


Thanks in advance

Best regards 

Markus

Edit: all servers are running Windows Server 2012 R2 Standard.



CAPS LOCK & NUM LOCK Keys on keyboard working vice versa

$
0
0

Hello guys. Need ur help

Hoping somebody can help here. I have RDS farm (2 terminal Servers) , each with approx 40 users on each. I've noticed that some users have started to complain that their CAPS LOCK and NUM LOCK key is inverted. i.e CAPS lock light is off but typing in uppercase and visa versa.

Servers are all Win2012R2. They use RDS Servers



Windows Server RDP License

$
0
0

Hi All

We have a client on a cloud server running their database software. We have 3 users and we have installed Remote Desktop Services.

Our hosting provider have dialed into the server and activated the 3 RDP CALS and everything worked fine. Now it's showing we have expired the 120 days grace period and we need to complete the configuration.

The odd thing is I didn't realise we had to do anything else. After speaking with the host again they say the cloud server needs to be connected to a domain, at the moment it's on a WORKGROUP as the client only has 3 concurrent RDP Connections at any one time.

Is the set wrong here, for the time being we have reactivated the 120 grace period.

Regards

Ryan

Windows 2008R2 - configuring "Application stops responding" delay

$
0
0

Hi,

we recently face some user complaints that one application with WPF GUI (.net 3.5.1) raises a message box "application stops responding".

This happens when the application is busy and someone klicks it with the mouse at any place. Then it turns opaque, a second klick causes immediately that message box coming up.

"application name" is not responding. Windows can check online for a solution. If you close the program you might lose information.

- check for a solution and close the program

- close the program

- wait for the program to respond.

Problem is that the first two of the three options offered  involve "close application" although it's work in the background isn't yet finished and the program is ABSOLUTELY NOT crashed.

It also happens with Outlook 2010 when it retrieves messages in the background... 

Is there a registry key that can configure that delay?

Or are there some other settings they could influence that behavior?

We are nearly sure that this is related to dot net GUI only, so far CPU consuming dummy apps in VB or C++2010 with a GUI don't show that behavior. And so far this didn't happen for nearly 2 years and now a growing number of users  complain there must have been changed something in the environment or that came out of one of the Microsoft bugfixes.


IT architect - Terminal servers, virtualizations, SQL servers, file servers, WAN networks and closely related to software devleopment (8 years + experience in VB, C++ and script langugaes), MCP for SQL server and CCAA for Xenapp 6.5

Server 2012 R2 Hyper-v host running 2008 R2 RDSH 20-30 users experiencing freeze on certain applications.

$
0
0

Hello,

We are having an issue with our virtualized 2008 r2 RDSH.

It has plenty of resource, 8 vcpus with 24GB memory. Currently 2012 R2 Hyper V host does not have any GPU installed. 

Some users are experiencing problems when they are using applications that pulls graphics such as IE, Word, Publisher, Power point, etc.

After researching few things, I know that even I install a GPU to a host machine, I won't be able to utilize RemoteFX on my virtualized 2008 RDSH as vGPU at this moment.

How can I provide a better smooth RDP experience to our users? Currently they are using a wyse thinclient machine to access our RDSH VM.

Will install GPU to our host machine and let RDSH VM use host machine's GPU will help somewhat?

RDS 2012 R2 + Office 365 Shared Activation - UPD's not unloading.

$
0
0

Greetings and welcome to this thread.

We have consequently been experiencing errors with RDS 2012 R2 User Profile Disks / UPD's not detaching after user logoff in brand new Remote Desktop Services 2012 R2 collections.

As an example we have this enviroment:

DCSRV01 - Domain Controller

DCSRV02 – Domain Controller

FILESRV01 – Fileshares and User Profile Disks

RDSGW01 – RD GW

RDSSB01 – Session Broker

RDSSB02 – Session Broker

RDSSH01 – Session Host

RDSSH02 – Session Host

ADFS01 – ADFS

WAP01 – WAP

Only 3<sup>rd</sup>. Party application installed on the session host is Office 2016 Click-To-Run with shared activation. (GPO for SSO activation etc.)

Consequently User Profile Disks does not detach upon logoff using the newest build of the Click-To-Run Service.

We have tried with multiple builds of Office 2016, and downgrading. 

If we disable the C2R service or uninstall Office 2016 C2R completely the UPD’s will detach just fine upon logoff.

We have a bunch of setups like the above where we can produce the issue. However we also have one older setup, with an older version of Office 2016 C2R, that does not seem to produce the issue. However all new setups produce this.

Has anyone experienced issues comparable to this?.

We also have setups with many users running both Office 2010, 2013, 2016 Non-C2r versions on both 2008 R2 and 2012 R2 without any issues at all whether we’re using UPD or Roaming Profiles.

So it seems like there is some issue/bug with the newer versions of Office 365 C2R and User Profile Disks / UPD.

Hope for some well shared knowledge, tips or bugfixes for this :-)


All the best, Jesper Hassing - MCTS SCCM 2012 - MCSA 2012 Server - MCP


Problems with SSL Certificate and TS Gateway

$
0
0

I'm having something screwy going on, and I'm not having much luck googling up an answer here. Let me explain the situation.

I recently renewed the SSL wildcard certificate for our domain through GoDaddy. It's already up and going on several Linux boxes, as well as our Exchange 2007 server.

The only real strangeness with importing the certificate (a .crt file) into the server's personal certificate store was that it didn't link properly to the private key, so after I ran through the Certificates snap-in I had to run certutil -repairstore my"THUMBNAIL" to get it to show up properly with the little key symbol so I could use it. That's been done on the server that uses the TS gateway, so as near as I can tell it's a perfectly functional SSL cert.

After the cert is imported, I went into the TS gateway manager and clicked on the server name. There's a message at the top that reads "SERVERNAME is not configured as a TS Gateway server. To access the settings required to complete TS Gateway configuration, click the link provided." So I go into there, which takes me to the SSL Certificate tab of the server's properties. I select "Select an existing SSL certificate for SSL encryption", then browse certificates. I pick the right cert and click Install, and things seem fine - no errors at all.

However, when I click Refresh, it immediately reverts to the same message, like I didn't just select the cert in question.

This error is described in the KB article here: http://support.microsoft.com/kb/959120

I went through those steps and verified that the bindings are set to All Unassigned - they were set like that before I went in to IIS Manager, so this doesn't seem to be the cause of my problem.

In the Event Viewer, I have a critical error 103 cropping up under Applications and Services Logs/Microsoft/Windows/TerminalServices-Gateway/Operational whenever I go through and set the cert and refresh. This error reads "The Terminal Services Gateway service does not have sufficient permissions to access the Secure Sockets Layer (SSL) certificate that is required to accept connections. To resolve this issue, bind (map) a valid SSL certificate by using TS Gateway Manager. For more information, see "Obtain a certificate for the TS Gateway server" in the TS Gateway Help. The following error occurred: "2148073494"."

Just to make sure, I went into the Certificates snap-in and verified that the NETWORK SERVICE user had Read access to the certificate, per this Technet article: http://technet.microsoft.com/en-us/library/cc775286%28WS.10%29.aspx. Just to check, I tried it with read/write access; didn't change anything, same error.

I've rebooted the server several times, made sure I had the latest updates... any ideas about what to do next? I'd rather not reinstall the TS role, since I had it configured exactly how I want it - everything was working fine with last year's cert, and I'm not sure why it's having such problems.

Any thoughts?

2012 R2 Load-Balanced RDS farm


How to transfer RD Licenses from Server 2008 r2 to server 2012 r2

$
0
0

Hi Team, 

we have a RD Licensing server on 2008 r2 used for multi login on other terminal severs. Now we want to migrate it to Server 2012 R2. 

1. How to migrate license 

2. Will the 2008 R2 RD license support server 2012 r2 Remote Desktop as well 

Please guide .... 

Remote Desktop Licenses

$
0
0

Hi All

We have a client on a cloud server running their database software. We have 3 users and we have installed Remote Desktop Services.

Our hosting provider have dialed into the server and activated the 3 RDP CALS and everything worked fine. Now it's showing we have expired the 120 days grace period and we need to complete the configuration.

The odd thing is I didn't realise we had to do anything else. After speaking with the host again they say the cloud server needs to be connected to a domain, at the moment it's on a WORKGROUP as the client only has 3 concurrent RDP Connections at any one time.

Is the set wrong here, for the time being we have reactivated the 120 grace period.

Regards

UDP profiles cant be detach from RDS Farm session hosts after disconnect or logoff

$
0
0

Hi,

We have a 2012R2 RDS Farm deployment consisting of the following:

1x AD ,1x RD Broker / RD Web Access,1x RDGW,3x RDSH,1x File Server for UPD.

All of the servers are running on 2012R2. We're having an issue with UPD's not dismounting when a user is logging off.

So when this happens the load balancing wont take effect. The user can only login to the same server as before and if it login to another server it will get a temp profile because the VHDx is still attached to the the former server. There is not much on the internet and we have tried deleting the VHDx and also cleaning the registry of all the temp SID values in the ProfileList section. And also We have checked network settings and there is no loss of network connectivity between any of servers.

The UPDs are stored on a 2012R2 SMB File Server and the notable  error we can see is the one below:

Log Name:      Microsoft-Windows-TerminalServices-RemoteConnectionManager/Admin
Source:        Microsoft-Windows-TerminalServices-RemoteConnectionManager

Event ID:      20491
Task Category: None
Level:         Error
Keywords:     
User:          SYSTEM
Computer:  <Computer>   
Description:
Remote Desktop Services could not disconnect a user disk for the user account with a SID of <SID>. The error code is 0xAA.93


Any help on this one would be highly appreciated.


nimz

Essential server 2012 r2 RDS deployment to second server - what rds roles go where?

$
0
0

Ok I have Windows server essentials 2012 r2 installed as the DC and ran through the Anywhere access setup using an MS account to save on the certificate. So far so good.

I have added to the domain a second server 2012 R2 std to be used by 5 remote workers. This is to be the RDS server.

I have been doing a lot of head scratching on where to install the rds deployment and which server requires which roles.

I think the gateway needs to stay on the DC but I read that once essentials is a DC you cannot add rds services. If I run the rds setup on the second server (which I presume is right) which roles do I install and how does the gateway on the DC know to connect incoming connections to it?

I also read the license server for my 5 rds cals should be on the Essential server but how?

I can't find a setup guide for this which I would have thought is a fairly common usage?

hope someone can help!

Migrate User Profiles to new server

$
0
0

I am installing new Server 2008 R2 RDS Servers.  We do NOT use a Farm.  I have existing Server 2008 R2 RDS Servers.

.

I want to migrate my users profiles to the new server (which will be configured w/ same software, etc.)

I have tried Robocopy and exporting/importing the Profile GUID/SID into registry AND tried restoring the profile to the new server from Backup along w/ GUID/SID import.

.

User gets temp profile when logging on.  If I delete the imported registry SID for the user, they receive a new profile.

.

Anyone have a link to a good set of instructions and/or recommendations for how to do this?  Also, will recommended process work with 2008 R2 to 2012 R2 migration?

.

Thanks....

Payload of DISKS sharing in RDP?

External Users are unable to open Remote Apps.

$
0
0

All,

I could use some help. I built out a Windows Server 2012 Server to host some specific applications for our organization.  It is a 1 server system Serving less than 50 users with no more that 4-8 connected at one time. On the server (epcrterm2012.countyes.local) the following roles reside: RDCB, RDSH, RDGW, RDWA and RDLicensing.



On epcrterm2012 I have one collection with 8 apps. This configuration has worked well for a couple of years. In the last 6 months I began to have problems with users logging in, both internally and externally due to untrusted certificates.

Last week I completely redid the environment. One mistake I initially made was I had the RDGW on a separate box, Win2012RDGate. When I redid did the environment, I put all the roles on epcrterm2012, so when I created my certs they all pointed to the epcrterm2012 and now they are all trusted.



Currently, all users within the domain can open the shorcuts to the remote apps but they cannot setup the Remote Apps and Desktop connections (RADC). User receive the following error.



If I open https://epcrterm2012/RDweb in Firefox and copy the links, the users can open them fine, but not through the RADC. They also are able to open the Remote Apps through https://epcrterm2012/RDweb.

I feel like I've read 1000 webpages and still not sure where the problem lies.

I think I'll stop here for now and see if any one can offer any insight on how to troubleshoot this.

Thanks in advance. 




NUM Lock state not synced between local and RDP

$
0
0

Hi,

a Customer is running a Windows Server 2012 R2 virtualized with Hyper-V as a Terminalserver (fully patched with latest Windows Updates). He's using 1 Win7 and 4 Win8.1 Clients to access said server via RDP (Clients are patched aswell).

The Problem is: Numlock is enabled locally, but as soon as they are on the Loginscreen of the Server, Numlock isnt working and the Numlock Key has to be pressed once to enable it.

The Win7 Client doesnt seem to be affected, and other other Clients are not affected every day, but roughly every 2nd Day it stops working.

I ensured that the Regkey HKCU\Control Panel\Keyboard\InitialKeyBoardIndicators is set to "2" on every Client and on the Server (for each user). I also set that Regkey on HKEY_USERS\.DEFAULT\Control Panel\Keyboard

Any Ideas whats causing this Issue and how to resolve it?

Win 2012R2 Randon Client Disconnects

$
0
0

Hi,

All of a sudden this morning on our Win 2012R2 RDS server, clients are getting disconnected randomly with the error:

"Because of an error in data encryption, this session will end. Please try connecting to the remote computer again."

Has anyone come across this issue before and how did you fix it?

I've looked through the event log and there is nothing there to indicate that there is an issue.

We had this error when we first implemented this server, and managed to work around the issue by disabling 2 network adapters in device manager:

Microsoft ISATAP Adapter
Teredo Tunneling Pseudo Interface

Now the problem has returned and because there is nothing in the error logs I'm not sure where to look. Can someone please give me some indication of where this issue might be stemming from?

Thanks

Duke

RDS redirecting to server that is not in collection

$
0
0

Today users were trying to connect to an application and are getting the message " the following remoteapp program is not in the list of authorized programs: <appname>"  When I did a netstat I can see that the server they user is connecting to is not one of the host servers listed in the collection and of course does not have the target app installed. In fact this server is not a host server for any of the published apps on that broker.

If I try to RDP into one of the two servers that ARE configured as host servers for that app I get a message: The remote computer <computername> that you are trying to connect to is redirecting you to another remote computer named <computer name>. Remote desktop connection cannot verify that the computers belong to the same RD Session Host server farm. You must use the farm name, not the computer name when you connect to an RD session host server farm."

I'm trying to determine why I am being redirected to this 3rd server so I can fix and stop it. Any help where to look?  The admin that managed this left the company and I am trying to get up to speed with how this is working. any help is appreciated.

WinSvrCAL 2012 SNGL OLP NL UsrCAL concurrent access

$
0
0
What we have:
Windows 2012 Standard Server installed in a HP machine.

What we were able to do:
Create 5 users in this Windows box.
Be able to connect 2 users simultaneously to this server through Remote Desktop.

What we installed after initial server installation:
Downloaded online and installed trial version of 5 CAL through Remote Desktop.
After 120 days no user was able to connect to the server using Remote Desktop. But, each user was able to log in one after the other using the server's own key board, mouse and screen.

What we want to do:
5 Users should able to connect to this Windows box simultaneously.

What we were sold and assured:
WinSvrCAL 2012 SNGL OLP NL UsrCAL (5 Quantity). 
We were told that buying this WinSvrCAL 2012 SNGL OLP NL UsrCAL (5 Quantity) would allow 5 simultaneous users to connect to the Windows server using Remote Desktop.

Result:
As before only one user is able to connect to this server using the server's own keyboard, mouse and screen.
We are not able to connect even a single user to connect to this windows box through Remote Desktop.

Question 1:
Did the vendor mislead us by assuring us that we needed these WinSvrCAL 2012 SNGL OLP NL UsrCAL (5 Quantity) licenses to enable us to simultaneously log in 5 users? What is the use of buying these licenses? We are not in any way better off compared to the situation we were in before we bought the 5 CAL licenses.

What are we are being told now:
We should buy additional WinRmtDsktpSrvcsCAL 2012 SNGL OLP NL UsrCAL (5 Quantity) for this Windows 2012 server. And, that only after buying this additional set of licenses we would be able to have 5 users simultaneously connect to the server using Remote Desktop.

Question 2:
Did we buy the first WinSvrCAL 2012 SNGL OLP NL UsrCAL (5 Quantity) by mistake? Do we really need to buy 5 WinRmtDsktpSrvcsCAL 2012 SNGL OLP NL UsrCAL (5 Quantity) ONLY? Or, should we need to buy both the WinSvrCAL 2012 SNGL OLP NL UsrCAL (5 Quantity) as well as WinRmtDsktpSrvcsCAL 2012 SNGL OLP NL UsrCAL (5 Quantity)?

Question 3:
If we need both the WinSvrCAL 2012 SNGL OLP NL UsrCAL (5 Quantity) licenses as well as WinRmtDsktpSrvcsCAL 2012 SNGL OLP NL UsrCAL (5 Quantity) to enable us to log in 5 users simultaneously in this server, why weren't we told the same ahead of time? If we had known that we would have to spend on two sets of licenses, we may not have bought any one of them. It was a misleading vendor tactic to sell to us one set of licenses to begin with and then asking to spend more on the second set of licenses.

Design discussion RDS role allocation

$
0
0

Hi Community,

a current customer situation concerns me. I´m planning a larger RDS Farm. The external access is provided via WAP. The custumer would like to have HA at all components. The complete access would be 

2x WAP (DMZ) - 2x RDGW, RDWA (internal) - 2x RDCB - 30x RDSH

In my opinion there is a second option for the design like this

2x WAP (DMZ) - 2x RDGW, RDWA and RDCB -30x RDSH

The gateway is the LAN, so it's not a security incident. What do you think about the second design option?

Best regards

Robert


Viewing all 27650 articles
Browse latest View live


<script src="https://jsc.adskeeper.com/r/s/rssing.com.1596347.js" async> </script>