Still celebrating National IT Professionals Day with 3 months of free Premium Membership. Use Code ITDAY17

x
?
Solved

Extremely short Terminal Server lockout

Posted on 2010-11-22
10
Medium Priority
?
334 Views
Last Modified: 2012-06-27
When logging in to a terminal services session on a remote Domain controller, I am always able to successfully log in. However, the lockout is being invoked after less than a minute of activity, regardless of account being used. I do not have this extremely short lockout configured anywhere in Terminal Services Configuration, Terminal Services Manager, or Group Policy. I can't think of any other place where this value could be configured. Also, I see no events in the security event log that would indicate any problem. There is an avent 1030 in the Application event viewer: "Windows cannot query for the list of Group Policy objects," but I don't think it is related, since I believe that is a known error and has an associated hotfix. Any ideas?
0
Comment
Question by:bdbuchanan
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 4
  • 2
  • 2
  • +1
10 Comments
 
LVL 42

Expert Comment

by:Adam Brown
ID: 34190077
Check the settings on the Sessions tab for your user account properties in AD. You can set timeout and session limits in there.
0
 
LVL 8

Expert Comment

by:rjwesley
ID: 34190236
Does this occur when logged in to your TS via any workstation?

Rob
0
 

Author Comment

by:bdbuchanan
ID: 34190484
acbrown2010: Sessions permissions are wide open; never disconnect.
0
Has Powershell sent you back into the Stone Age?

If managing Active Directory using Windows Powershell® is making you feel like you stepped back in time, you are not alone.  For nearly 20 years, AD admins around the world have used one tool for day-to-day AD management: Hyena. Discover why.

 

Author Comment

by:bdbuchanan
ID: 34190503
rjwesley: Yes, it happens from any workstation. Also, I have several other remote domain controllers, none of which has this problem.
0
 
LVL 42

Expert Comment

by:Adam Brown
ID: 34190514
What is your screen saver timeout set for on those systems? (Out of curiosity)
0
 

Author Comment

by:bdbuchanan
ID: 34190569
acbrown2010: 15 minutes.
0
 
LVL 8

Expert Comment

by:rjwesley
ID: 34214007
Can you have someone test the terminal server connection that is physically at the remote site, does the lockout occur in that situation as well.
Are you using custom ports for each of your servers for terminal server connections?

Rob
0
 

Accepted Solution

by:
bdbuchanan earned 0 total points
ID: 34500797
The solution was related to our drive encryption utility being incorrectly configured.
0
 
LVL 74

Expert Comment

by:Glen Knight
ID: 35171035
This question has been classified as abandoned and is being closed as part of the Cleanup Program. See my comment at the end of the question for more details.
0

Featured Post

Fill in the form and get your FREE NFR key NOW!

Veeam® is happy to provide a FREE NFR server license to certified engineers, trainers, and bloggers.  It allows for the non‑production use of Veeam Agent for Microsoft Windows. This license is valid for five workstations and two servers.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Had a business requirement to store the mobile number in an environmental variable. This is just a quick article on how this was done.
This article provides a convenient collection of links to Microsoft provided Security Patches for operating systems that have reached their End of Life support cycle. Included operating systems covered by this article are Windows XP,  Windows Server…
The view will learn how to download and install SIMTOOLS and FORMLIST into Excel, how to use SIMTOOLS to generate a Monte Carlo simulation of 30 sales calls, and how to calculate the conditional probability based on the results of the Monte Carlo …
Attackers love to prey on accounts that have privileges. Reducing privileged accounts and protecting privileged accounts therefore is paramount. Users, groups, and service accounts need to be protected to help protect the entire Active Directory …
Suggested Courses

660 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question