Solved

Remote Desktop Disconnecting from Servers after inactivity in Active Directory Domain

Posted on 2014-12-23
5
290 Views
Last Modified: 2015-01-14
The remote desktop connection in our domain servers disconnect sessions after a few minutes in inactivity.

I disabled these options on the default domain controllers and default domain policy:

Computer Configuration\Policies\Administrative Templates\Windows Components\Remote Desktop Services\Remote Desktop Session Host\Session Time Limits

User Configuration\Policies\Administrative Templates\Windows Components\Remote Desktop Services\Remote Desktop Session Host\Session Time Limits
RemoteDesktopSettings.PNG
0
Comment
  • 2
  • 2
5 Comments
 
LVL 24

Expert Comment

by:VB ITS
Comment Utility
Without knowing more about how your OUs are structured and which servers are experiencing this issue, I can only suggest you try disabling the time limits on the servers themselves via Administrative Tools > Remote Desktop Services > Remote Desktop Host Configuration > right click on RDP-Tcp in the Connections box > Properties > Sessions tab > make sure End a disconnected session is set to Never

It's probably best you separate out these settings into a new policy, that way you can check using RSoP or gpresult to see whether the policy is applying or not. If you need a hand with RSoP you can do some reading here: http://technet.microsoft.com/en-us/library/cc736424(v=ws.10).aspx
0
 
LVL 16

Accepted Solution

by:
Spike99 earned 500 total points
Comment Utility
We had this issue a few years ago on Server 2003 for users connecting over to our servers using TSGateway over a regular internet connection. After much googling & investigation by the networking team, we finally figured out that cause was a particular type of firewall that was cutting off the connections after only a few minutes of inactivity.  Some users actually had been disconnected because of internet issues on their end, but the servers failed to recognize that fact & displayed those sessions as "active." So, when those users tried to reconnect, they were put into a duplicate session instead of being reconnected to their previous session.

The solution we found was to enable the "KeepAliveEnable" policy in our Terminal Server GPO.

This not only kept actively connected users from getting disconnected, it also gave us a more accurate picture of which users were connected or disconnected so if a user was disconnected, the server would show them as disconnected.

Although, you should keep in mind that MS has found an issue when manually stopping the RDP service with the KeepAliveEnable policy enabled: it can put the server into an unstable state.

Read this article about that:
http://support.microsoft.com/kb/2507353

I hope this helps.

Alicia
0
 

Author Comment

by:Stephen Weber - MCSE, CCNA
Comment Utility
Alicia,

Thanks for the recommendation.  This is all on the local lan and applies to all our servers using a direct RDT Connection. I setup the group policy not to time out. All the workstations will not time out, its just the servers.

thanks
Steve
0
 
LVL 16

Expert Comment

by:Spike99
Comment Utility
Our problem was caused by a known issue with the the settings on the particular brand of firewall we had, but that's not the only cause of that type of issue.    I would still give the KeepAliveEnable setting a try, do you have a test server you could try it out on?
0
 

Author Comment

by:Stephen Weber - MCSE, CCNA
Comment Utility
Thank you,.
0

Featured Post

6 Surprising Benefits of Threat Intelligence

All sorts of threat intelligence is available on the web. Intelligence you can learn from, and use to anticipate and prepare for future attacks.

Join & Write a Comment

Let’s list some of the technologies that enable smooth teleworking. 
Resolve DNS query failed errors for Exchange
This tutorial will walk an individual through the steps necessary to install and configure the Windows Server Backup Utility. Directly connect an external storage device such as a USB drive, or CD\DVD burner: If the device is a USB drive, ensure i…
This tutorial will walk an individual through setting the global and backup job media overwrite and protection periods in Backup Exec 2012. Log onto the Backup Exec Central Administration Server. Examine the services. If all or most of them are stop…

771 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

10 Experts available now in Live!

Get 1:1 Help Now