Solved

Remote Desktop Compromise

Posted on 2009-05-18
3
319 Views
Last Modified: 2012-05-07
We have several servers configured according to their role.  The server in question presently is an Exchange server.  

We outsource our engineers.  They have set the sessions not to time out because they are sometimes working remotely on projects that need to continue to run even if they have to walk away from the system for a few hours - long enough for Citrix to disconnect them.

We often see the terminal services has reached its maximum number of connections error.  

How can we achieve their goal while not putting ourselves in the position to have to directly visit the server when there are several disconnected sessions?  Is there a way to see who is logged in via RDP?  Is there a way to forcefully log off RDP sessions from the server?
0
Comment
Question by:NCHCIT
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
3 Comments
 
LVL 85

Accepted Solution

by:
oBdA earned 350 total points
ID: 24415556
You can always use "mstsc.exe /admin" (assuming XP SP3 and W2k3 SP2, otherwise try "mstsc.exe /console") to connect directly to the console session. If the same user is logged on to the console, the existing session will be pulled over, otherwise the user currently logged on to the console session will be logged off.
Then you can use the Terminal Services Management console to connect to a remote machine and logoff/terminate sessions.
From the command line on a server, you can finally use
query session /server:<ServerName>
to see running sessons, and use
logoff <SessonID> /server:<ServerName>
with the session ID obtained from the first command.
0
 
LVL 3

Assisted Solution

by:Cameron_S
Cameron_S earned 150 total points
ID: 24415583
If you are referring to RDP specifically, you can simply go into the Exchange Server's Task Manager > Users and see who is logged in from where. From there, if you are an administrator, you can Disconnect / Log Off the session. You can even do this via RDP if you wish.

If you are speaking specifically of Citrix, I know in the MetaFrame Console you could view the connections and what/where they were connected to.

Optionally, you may want to write up a script that simply drops the disconnected sessions based on your criteria.
0

Featured Post

On Demand Webinar: Networking for the Cloud Era

Did you know SD-WANs can improve network connectivity? Check out this webinar to learn how an SD-WAN simplified, one-click tool can help you migrate and manage data in the cloud.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Learn about cloud computing and its benefits for small business owners.
This article provides a convenient collection of links to Microsoft provided Security Patches for operating systems that have reached their End of Life support cycle. Included operating systems covered by this article are Windows XP,  Windows Server…
There's a multitude of different network monitoring solutions out there, and you're probably wondering what makes NetCrunch so special. It's completely agentless, but does let you create an agent, if you desire. It offers powerful scalability …
This tutorial will teach you the special effect of super speed similar to the fictional character Wally West aka "The Flash" After Shake : http://www.videocopilot.net/presets/after_shake/ All lightning effects with instructions : http://www.mediaf…

632 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question