• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 2238
  • Last Modified:

using Remote Desktop services error

I just finished configuring my new server with remote desktop services.  I followed this article:
http://www.concurrency.com/blog/rds8-quick-and-easy-remoteapp-on-windows-server-2012/

And at the last step, I'm able to browse to my rdweb directory (https://ts.domain.com/rdweb, but when I click on an application, I get the following error:

rdp error
Even the calculator, any application I click on, I get the same error.
Any idea's on why?
0
afacts
Asked:
afacts
  • 12
  • 7
1 Solution
 
Shahnawaz AhmedCommented:
Are you getting any error in the event viewers? Please search Term DD -50 Error in the System logs
0
 
afactsAuthor Commented:
no error or warning messages in event log when I try to access it, but I get this informational event every 5 minutes in the application log.

The root\cimv2\rdms namespace is marked with the RequiresEncryption flag. Access to this namespace might be denied if the script or application does not have the appropriate authentication level. Change the authentication level to Pkt_Privacy and run the script or application again.
Event ID: 5605

Can this have anything to do with it?
0
 
Shahnawaz AhmedCommented:
Its not related..

Can you please go to the same problem computer physically and type mstsc in the run and then local host in the RDP window. and try to connect if you can connect locally to the problem machine
0
Free recovery tool for Microsoft Active Directory

Veeam Explorer for Microsoft Active Directory provides fast and reliable object-level recovery for Active Directory from a single-pass, agentless backup or storage snapshot — without the need to restore an entire virtual machine or use third-party tools.

 
afactsAuthor Commented:
It looks like it lets me, but then says "access is denied"
0
 
Shahnawaz AhmedCommented:
Can you please create a local TEST user on the problem machines and then AD LOCAL ADMINISTRATOR group in it and try to login with the help of TEST user once
0
 
afactsAuthor Commented:
I created a new user, this is on the domain controller, as the server is a domain controller, then I added the user to the administrators group and the remote desktop users group as well.

Still doesn't work, getting this error message.
rdp error
0
 
Shahnawaz AhmedCommented:
Please add the user in the remote desktop user group. And try
0
 
afactsAuthor Commented:
I did that already, I've already added the user there, it's still not working.
0
 
Shahnawaz AhmedCommented:
Please do as mentioned below.

Check the Firewall settings. Turn off Firewall

   Logon to the server locally
    Click Start, Run, type "tscc.msc /s" (without quotation marks) and click OK
    In the Terminal Services Configuration snap-in double-click Connections, then RDP-Tcp in the right pane
    Click the Network Adapter tab, select the correct network adapter and click OK
    Make sure that you can establish an RDP connection to the server

The change takes effect immediately. No need for a restart.
0
 
afactsAuthor Commented:
When I run tscc.msc /s  I get the following error:
"windows cannot find tscc.msc.   Make sure you typed hte name correctly, and then try again.

I am running windows server 2012 R2, so not sure if this program perhaps isn't on 2012 R2?
0
 
Shahnawaz AhmedCommented:
Hope you installed remote desktop services from server manager --> Add roles.
Now from your Administrator tools you can fine Terminal Service folder and there is TERMINAL SERVICE CONFIGURATION Manager you can find. then  Click the Network Adapter tab, select the correct network adapter and click OK
    Make sure that you can establish an RDP connection to the server
0
 
afactsAuthor Commented:
Wait, I'm a little lost.

So with two different domain admin accounts, I can RDP into the server just fine.

I created a new (third) domain account and that account can't RDP into the server.

So I don't need to install remote desktop services as 2 users can already RDP into the server.
0
 
Shahnawaz AhmedCommented:
Yes, you don't need to install if 2 users are already able to login. So is that issue with 1 user only?
0
 
afactsAuthor Commented:
yes, I have one user that can not log in to any of the DCs.

They get the above error message.

Like I said, I have added the user to the domain administrators group, and the domain remote desktop users group as well.

Not sure what else I can do?
0
 
afactsAuthor Commented:
Still doesn't work.   I keep on getting the above error message.
0
 
afactsAuthor Commented:
I think I figured out the issue, but I can't make any changes.

When I open secpol.msc on the target server, expand Local Policies -> User Rights Assignment and verify that (my user account) is listed under the "Allow log on through Remote Desktop Services", everything is greyed out.  

So how do I make changes to the local security policy?  I'm logged in with a domain account.
local-security-policy.png
0
 
afactsAuthor Commented:
Any ideas?
0
 
afactsAuthor Commented:
Here's the solution.

Go to start>>run>>gpmc.msc>>Expand Domain>>Expand Domain name>>Domain Controllers>>Right click and Edit the "Default Domain Controller policy">>Computer Configuration>>Policies>>Windows settings>>Security settings>>User rights assignments>>Allow log on through remote desktop services>>Add administrators in it.
0
 
afactsAuthor Commented:
I found the answer myself on another post I had that someone else posted.
0

Featured Post

Windows Server 2016: All you need to know

Learn about Hyper-V features that increase functionality and usability of Microsoft Windows Server 2016. Also, throughout this eBook, you’ll find some basic PowerShell examples that will help you leverage the scripts in your environments!

  • 12
  • 7
Tackle projects and never again get stuck behind a technical roadblock.
Join Now