Solved

2012 RDS remote connections require two authentications

Posted on 2014-04-17
2
2,631 Views
Last Modified: 2014-05-12
I am currently running a pilot environment for a 2012 RDS Farm, the environment consists of one RDS Connection Broker and two RDS Session Host Servers

When i connect from my desktop to the broker using mstsc i am asked to authenticate in a Windows Security pop-up window (domain\user autofilled) i put in my password and the connection is made. I am then greeted with the 2012 login page (domain\user auto filled again) and i have to put in my password to logon..

Standard users piloting this are also getting asked to sign in twice but these are using a pre-made RDP shortcut config below

screen mode id:i:1
use multimon:i:0
desktopwidth:i:1920
desktopheight:i:1080
session bpp:i:32
winposstr:s:0,3,-1280,-74,0,950
compression:i:1
keyboardhook:i:2
audiocapturemode:i:0
videoplaybackmode:i:1
connection type:i:2
displayconnectionbar:i:1
disable wallpaper:i:1
allow font smoothing:i:0
allow desktop composition:i:0
disable full window drag:i:1
disable menu anims:i:1
disable themes:i:0
disable cursor setting:i:0
bitmapcachepersistenable:i:1
full address:s:<connection broker server name>
audiomode:i:0
redirectprinters:i:1
redirectcomports:i:0
redirectsmartcards:i:1
redirectclipboard:i:1
redirectposdevices:i:0
redirectdirectx:i:1
autoreconnection enabled:i:1
authentication level:i:2
prompt for credentials:i:0
negotiate security layer:i:1
remoteapplicationmode:i:0
alternate shell:s:
shell working directory:s:
gatewayhostname:s:
gatewayusagemethod:i:4
gatewaycredentialssource:i:4
gatewayprofileusagemethod:i:0
promptcredentialonce:i:1
use redirection server name:i:1
loadbalanceinfo:s:tsv://MS Terminal Services Plugin.1.<Collection name>
drivestoredirect:s:

When this is used the 2012 logon prompt is shown and users have to enter their password and then the logon prompt comes up again, its like the broker is requesting a logon before directing to the session hosts which then also ask for a login..

Within the RDS Deployment Properties i have attached a wildcard cert for the domain which is trusted by all clients and the deployment is showing as 'trusted'
0
Comment
Question by:Stuart Lupton
2 Comments
 
LVL 17

Accepted Solution

by:
Brad Bouchard earned 500 total points
ID: 40007218
This happens because you have Windows XP, Vista, or other older operating systems in your environment.  Windows 7 and above users should be fine.  We also had this issue and it was due to thin clients not being up-to-date with the version of XP embedded they were using.  This article is for 2008 but it applies to 2012... have a look.

http://www.edugeek.net/forums/thin-client-virtual-machines/62950-windows-2008-r2-remote-desktop-double-login.html
0
 
LVL 2

Author Comment

by:Stuart Lupton
ID: 40012141
Thanks back in the office weds so will give this a go :)
0

Featured Post

Optimizing Cloud Backup for Low Bandwidth

With cloud storage prices going down a growing number of SMBs start to use it for backup storage. Unfortunately, business data volume rarely fits the average Internet speed. This article provides an overview of main Internet speed challenges and reveals backup best practices.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Join Greg Farro and Ethan Banks from Packet Pushers (http://packetpushers.net/podcast/podcasts/pq-show-93-smart-network-monitoring-paessler-sponsored/) and Greg Ross from Paessler (https://www.paessler.com/prtg) for a discussion about smart network …
On some Windows 7 (SP1) computers, Windows Update becomes super slow even the computer is reasonably fast.  There's one solution that seemed to have worked well for me (after trying a few other suggested solutions).
This tutorial will walk an individual through the process of installing of Data Protection Manager on a server running Windows Server 2012 R2, including the prerequisites. Microsoft .Net 3.5 is required. To install this feature, go to Server Manager…
The viewer will learn how to successfully create a multiboot device using the SARDU utility on Windows 7. Start the SARDU utility: Change the image directory to wherever you store your ISOs, this will prevent you from having 2 copies of an ISO wit…

803 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question