Quantcast
Channel: Remote Desktop Services (Terminal Services) forum
Viewing all 7220 articles
Browse latest View live

SSL for RDP

December 14, 2016, 9:06 am
$
0
0

I am trying to enable SSL encryption for RDP to my Windows Server 2012 servers. I have a wildcard certificate with a private key from Digicert that is good for *.mydomain.com. The Enhanced key usage is:

Server Authentication (1.3.6.1.5.5.7.3.1)
Client Authentication (1.3.6.1.5.5.7.3.2)

And key usage is:

Digital Signature, Key Encipherment (a0)

I put the cert in the Personal Store and the Remote Desktop Store. 

To force SSL Connections I enabled the following settings in Group Policy:

Always prompt for password upon connectionEnabled
Require secure RPC communicationEnabled
Require use of specific security layer for remote (RDP) connectionsEnabled
Security Layer                                SSL (TLS 1.0)

Set client connection encryption levelEnabledEncryption Level                            High Level



Yet no matter what  I try the only cert that is offered on connection is the server's self signed one. If I delete it comes back. If I disabled it for all purposes it is used anyway.

What do I need to do to have the server use the wildcard cert from Digicert? What am I missing?

Thanks,

Jarrett



Search

Unable to Change Screen Resolution in Remote Session - Windows Server 2012 R2

March 12, 2015, 7:00 am
$
0
0

Does anybody know of a way to allow Remote Desktop users to adjust their own screen resolution in a remote session under Windows Server 2012 R2? We are struggling with this and can't seem to find a solution.

When users login to their RDP session and try to adjust their screen resolution this message is displayed in Control Panel:

"The display settings can't be changed from a remote session."

We don't want to use the "make text and other items larger or smaller" scaling feature, as this produces undesirable results with some of our applications.  We also don't want to have to support multiple types of RDP clients or RDP shortcut files.

We have looked at other posts but can't find an answer that applies to Windows Server 2012 R2.  The closest thing we could find is KB2726399, but it only applies to Server 2008.

Does anybody have a solution for Server 2012?

Thanks

RemoteApp Default Printer Redirection Not Working in Server 2016

December 7, 2016, 10:18 am
$
0
0

We are experiencing a RemoteApp default printer redirection issue in Windows Server 2016 that we are not seeing in Windows Server 2012R2.   We have the following simple environment:

  1.       Windows Server 2012R2 with RDS Quick Start installed.
  2.       Windows Server 2016 with RDS Quick Start installed (configured identically)
  3.       Window 10 Client with attached HP printer configured as “Default” printer.

When we launch WordPad as a RemoteApp on the client (via RDWeb) and try to print a document, we see different behaviors: 1) When launched on Server 2012R2, the client’s default printer (HP printer) is shown as the default printer (expected behavior), 2) When launched on Server 2016, the server’s default printer (XPS Document) is shown as the default printer (unexpected behavior).

We’ve verified that all of the Group policies and connection settings are correct and identical between the two servers.  However we noticed the values ofHKCU\Software\Microsoft\Windows NT\CurrentVersion\Windows:Device keys are different:  2012R shows redirection to client printer, 2016 shows server printer.

Is this a bug in Server 2016?  Anything else we should check or configure?

Thanks,

cyorlano

can I combine RDS user cals with device cals in an environment

December 14, 2016, 7:54 am
$
0
0

Hello,

Can I have a mix environment with RDS user cals and device cals deployed?

RDP screen goes black after successful remote login

February 6, 2011, 1:27 pm
$
0
0

I have a Windows 2008 Server that I have been connecting to once a month remotely to apply OS updates.  Often, I reboot that server and it uses auto-logon to login and run an application. 

Today, I rebooted the server and when I try to connect with RDP, I get the login prompt and enter my credentials, I see a few expected messages fly by on the host OS (the last one I see is the word Welcome), but then the screen goes black.

The apps on the server are running successfully because our applications can connect to them, we just can't logon to the desktop of the Windows Server 2008.

I made no configuration changes (I NEVER do) other than to apply the latest Windows Server updates.

I would prefer not to drive to the computers location, or try to coordinate a time to have the server hosting company assist me with troubleshooting; but is there anything else I can do?  Any ideas about what might cause this?

PowerShell script to end RD sessions for users in a certain Active Directrory Group

December 14, 2016, 4:38 pm
$
0
0

Does anybody have any ideas for the commands to use automatically with PowerShell that will automatically log off users at a certain time if they belong to a certain Active Directory user group.

e.g. a scheduled task at 7pm every day that logs off every USER connected to a VIRTUAL DESKTOP who belongs to the ACTIVE DIRECTORY group called 'SECRETARIES'.

If anyone can point me to the PowerShell scripts I'd need to use to find the users connected to the individual VMs....and then query Active Directory with that user's name to find which AD groups they are in then I can put it together. 

Just looking for tips!

Thanks guys

Retrieves a list of personal virtual desktops and associated user accounts

December 11, 2016, 11:48 pm
$
0
0

Hi All,

I am trying to Retrieves a list of personal virtual desktops and associated user accounts using PS command, Export-RDPersonalVirtualDesktopAssignment -CollectionName "XYZ" -Path "c:\temp\XYZ.csv"

Now using this command I can only get the result from a specific collection, Please suggest what to do if I need to get the result from multiple collection's.

Regards

Abhinav

Abhinav

Comments in .rdp files

November 10, 2011, 2:33 am
$
0
0

What is the syntax to insert a comment into an .rdp file?

Where can I locate an .rdp files syntax reference guide?

Regards

Mario

 

Search

RDS always connects user to the same virtual desktop they used last time....anyway to make it random?

December 13, 2016, 10:56 am
$
0
0

We have a pooled collection, so users should be randomly connected to a VM each time they login.

In reality, RDS 2012 R2 connects users to whichever virtual machine they last used, even if they logged off and it's the next day.

Is there any way to get RDS to 'forget' which machine it last connected a user to last time? and to just connect to a virtual machine at random?

Server 2012 R2 Update 1 - Remove Store Icon from all new and old profiles?

June 10, 2014, 2:44 pm
$
0
0

After updating our 2012 r2 terminal servers to update 1 we noticed a store icon on the taskbar on all profiles on all the TS servers in the cluster.

How do we remove it from the taskbar? I don't want to block the store itself just remove the icon from the taskbar.

I noticed this as well on my windows 8.1 update 1 images, it be nice to remove it form there too.

thanks

Tech with Alberta Education

Remote Desktop Session Host Configuration

December 14, 2016, 6:32 am
$
0
0
Hello

For Windows 2012 R2
I have a question as to the user who is not a local administrator group to enable the ability to send messages to other users who are logged on to the Terminal sessions. If you are a local administrator group has this capability. I enclose a screenshot to illustrate the problem. Where the GPO can set it up?

Thank you for your help
Regards

Remote Desktop Services not manageable through server manager after computer name change

December 16, 2016, 1:00 pm
$
0
0

I'd successfully installed RDS, installed licenses, and everything was manageable through Server Manager. I think was forced to change the computer name due to management's request. Now, when choosing Remote Desktop Services via Server Manager, I get "The following servers in this deployment are not part of the server pool: 1. OLDSERVERNAME.DOMAIN The servers must be added to the server pool."

I'm running Server 2012r2.

I've Googled my guts out, but have not found a solution. All else works as expected...the node is a part of a cluster and the Failover Cluster Manager has no issues with it. The machine connects to the domain just fine.

Manually launching the "RD License Diagnoser" via Control Panel > Admin Tools > Remote Desktop Services also gives me a message that this server is "within it's grace period, but the RD Session Host Server has not been configured with any license server." - However, this was done prior to the name change it the warning was not present.

Manually launching the "Remote Desktop Licensing Manager' via Control Panel > Admin Tools > Remote Desktop Services shows no errors. It gives me the new server name and shows it as activated. It also shows my licenses which were previously registered.

Remote Desktop Connection Session Idle Limit Exceeded

December 2, 2016, 10:29 am
$
0
0

I'm receiving the following pop up when Remote Desktop connections to Server 2012 Standard machines.

Application popup: Idle timer expired : Session has been idle over its time limit.
Logoff will start in 2 minutes.

There are no policies set either by GPO or Local Policies that I can find that is causing this. Has anyone encountered this issue.

No RDP services are installed on these servers. RDP from Windows 10 workstations to Server 2012.

co-signing a 2008 R2 Certificate Authority for internal/external RemoteApp users

May 24, 2011, 10:29 am
$
0
0

I'm planning a 2008 R2 RemoteApp deployment and I've elected to use an Enterprise CA.  However, my users will use the RemoteApp service both internally (corporate LAN) and externally (their homes/on the road) so I need my Certificate Authority to handle both.

In the documentation there's a line that describes my situation perfectly:

"A stand-alone or enterprise CA-issued certificate must be co-signed by a trusted public CA that participates in the Microsoft Root Certification Program Members program (http://go.microsoft.com/fwlink/?LinkID=59547). Otherwise, users connecting from home computers or kiosks might not be able to connect to TS Gateway servers. These connections might fail because the enterprise CA-issued root might not be trusted by computers that are not members of domains, such as home computers or kiosks."

The link provided is more-or-less a dead and I cannot find any information on how to go about co-singing an Enterprise CA.  I've been up and down the configuration settings in my test CA and I can't find any mention of co-signing the CA with a trusted Root.

Any information on how to configure this would be greatly appreciated.

This computer can't connect to the remote computer

April 26, 2008, 7:48 pm
$
0
0

Recently, I switched from AT&T to TWC Road Runner for my ISP. When I had AT&T my remote desktop worked fine and I was able to remote into work. since I got Road Runner, I can VPN into the network,but when I get to Remote Desktop it gives me "This computer can't connect to the remote computer. Try connecting again If this promblem continues please contact....... The IP Addresss that the router is "getting assigned" is the same as a computer on my network. This that the problem? Since I have tried disconnecting the router, release and renewing....I don't know what else to do. Can any one offer any experience on this matter. Thank You

Search

Remote Desktop Gateway Port

April 28, 2013, 6:17 pm
$
0
0

Server 2012 with RDS. We have an apache server that forwards (reverse proxy) 443 connections to the appropriate server. However, it appears apache does not support rpc over https. So, when we launch a remoteapp resource using the webfeed.aspx, we get remote desktop gateway is unavailable. If we change the port from 443 to x443 in remote desktop gateway manager and configure our firewall to allow port x443 to the RDS server, we get the same error. What is the correct way to setup RD Gateway in this environment?

Does the remoteapp on the client know to use the new port x443? I have removed the resources and reconfigured for the resources

I have confirmed the remoteapp piece is using 443 according to the apache ssl logs. How to use different port on remoteapp piece on client?

OpenGL 4.4 support for vGPU in Windows Server 2016

December 9, 2016, 8:36 am
$
0
0

Hello,

I just installed a Windows 10 Professional client in Hyper-V on a Windows Server 2016 host.

My graphics card is an NVIDIA Geforce GTX 1070 with the latest drivers installed.

I followed following instructions to enable OpenGL support:
http://social.technet.microsoft.com/wiki/contents/articles/31771.experience-guide-for-enabling-opengl-support-for-vgpu-in-server-2016.aspx

Unfortunately I only get OpenGL 1.1 instead of 4.4.

Is there anything else to set up in order to get OpenGL 4.4 running?

Thanks a lot for all your help!

Best regards,
Marco

Secure RDP access on Windows Server 2012 R2 with certificates

September 3, 2014, 12:32 pm
$
0
0

Hello. I've noticed that RDP certificates on all of our production boxes have self-signed certificates located in their respective "Remote Desktop" certificate store. 

I would like all of our servers to use signed, trusted certificates from our internal PKI instead of self-signed certs Windows servers automatically generate. 

I found these two articles that pretty much outline the same process but I get an error when I try to connect:

http://www.petenetlive.com/KB/Article/0000944.htm

http://www.derekseaman.com/2013/01/creating-custom-remote-desktop-services.html

"This computer can't connect to the remote computer. Try connecting again. If the problem continues, contact the owner of the remote computer or your network administrator"

I'm using my Windows 8.1 workstation to RDP into a Windows 2012 R2 box. I created the RDP cert template and GPO in accordance to articles and placed the R2 box in a test OU that has that GPO applied. I'm testing it on a particular R2 box before releasing it production-wide. Also, I can confirm via PortQry and NMAP that the R2 box is listening on port 3389.

Any thoughts????? Thanks!



RDGateway and RDweb access constraint

December 7, 2016, 11:34 pm
$
0
0

Installing RDWebaccess role will create a 'RDWeb' application in the IIS Manager under Default Website.

Installing RDGateway role will create 'Rpc' and 'RpcWithCert' application in IIS under the same default website.

RDWeb application in IIS after installing RDWebAccess

RPC apps after installing RDGateway

The installed gateway creating a listener which is active at the port 443 by default. To make use of the RD web application, I need to start the service of 'Default Web site'. 

Now the problem is, if gateway service is running, I am not able start the RDWeb Access service. I am getting the following error,

Another webservice(RD Gateway) already using the port, hence I cannot able to start the RDWebAccess service too

I need to move the RDWeb application from the default website to newly created website (by creating a website in IIS manager)  so that, I can make use of RDGateway and RDWebAccess simultaneously. Is there any process to do this? Please share.

Thanks,

Sukumar

Sukumar PK



RemoteApps list empty in RD Web Access when connecting to RD Connection Broker

April 27, 2011, 1:58 am
$
0
0
Hello.
I have three servers, all running Windows 2008 R2, joined to same domain and with RD service roles configured.
server1 has RDSH role installed, joined to RD farm
server2 has RDSH role installed, joined to RD farm
server3 has RDWA, RDCB and RDG roles installed
When using RDWA configured to pull RemoteApps directly from RDSH on server1 and RDSH on server2, everything works well. Also when making manual RDP connections to RD farm, RDBC seems to be working correctly. But when RDWA is configured to use RDCB, RemoteApps list is empty. 
Tried configuring RDWA with localhost and with FQDM of server. Also tried adding server3 in TS Web Access Computer local group, manually adding WMI and DCOM privileges for TS Web Access Computers group even though RDWA and RDCB are on same server. 
Also ran a test with server4 which had only RDWA role installed, just to be sure there is no conflict between RDWA, RDCB and RDG roles. Server4 had same issue, RemoteApps list was empty when configured with RDCB on server3. 
Am I missing some configuration step? Can you please shed some light on the issue? I would appreciate any assistance.
Best regards.
Viewing all 7220 articles
Browse latest View live
Search
<script src="https://jsc.adskeeper.com/r/s/rssing.com.1596347.js" async> </script>