VN-PC view
asked on
RDP Terminal server 2012 DC connection issue quantity no more than four sessions
hi experts,
we have 2012 server RDP , and role DC/terminal server roles / license 15 cal
session seem to be only four allowing and if the fifth user connect and it will spin around and throw error remote server not configure or not turn on, firewall .
the strange thing if i go to server logon as fifth users at local box then then let the user know it ready, then he can connect using RDP to it no problem
called Microsoft support they checked traffic / log file etc... but no luck
any one have same issue like this please let me know and how to fix this
thank you so much for all your input, again than you all experts
we have 2012 server RDP , and role DC/terminal server roles / license 15 cal
session seem to be only four allowing and if the fifth user connect and it will spin around and throw error remote server not configure or not turn on, firewall .
the strange thing if i go to server logon as fifth users at local box then then let the user know it ready, then he can connect using RDP to it no problem
called Microsoft support they checked traffic / log file etc... but no luck
any one have same issue like this please let me know and how to fix this
thank you so much for all your input, again than you all experts
ASKER
hi Btan,
first thank you
i do have security group rdp_group1
rdp_group1 member of built-in rdp user group of that dc/ts
also local policy of DC allow rdp_group1 to connect through rdp
connection session host server also show that rdp_group1
2012 r2 dc/ts on vmware
the only way to allow all users connect to it for now by open vsphere client and connected users first by logon that box first, then let them know it , so the can connected to it.
microsoft team they on it and i pushed it up to level ii but they keep saying they don't have solution
the only thing they recommended split ts server and DC into two server. but i disagreed with them because there no statement from microsoft saying you can't using same DC/TS .
i am thinkig some patches mess-up my .
i also rebuild license server database , the error seemed license but it is not true , we have valid license , also those tech from microsoft confirmed we do have valid license. but then why that error popup , microsoft tech they have no idea what's going on with my box, again they suggestion add another server and make that ts ,
but thank you for your input
new-error.PNG
first thank you
i do have security group rdp_group1
rdp_group1 member of built-in rdp user group of that dc/ts
also local policy of DC allow rdp_group1 to connect through rdp
connection session host server also show that rdp_group1
2012 r2 dc/ts on vmware
the only way to allow all users connect to it for now by open vsphere client and connected users first by logon that box first, then let them know it , so the can connected to it.
microsoft team they on it and i pushed it up to level ii but they keep saying they don't have solution
the only thing they recommended split ts server and DC into two server. but i disagreed with them because there no statement from microsoft saying you can't using same DC/TS .
i am thinkig some patches mess-up my .
i also rebuild license server database , the error seemed license but it is not true , we have valid license , also those tech from microsoft confirmed we do have valid license. but then why that error popup , microsoft tech they have no idea what's going on with my box, again they suggestion add another server and make that ts ,
but thank you for your input
new-error.PNG
Thanks for sharing.
Specific to the "new error", typically it would only happen if the two users are using the same username or reached the max concurrent users for the server. For your case, if licence is alright and the max no is not even reached in your testing, it may be the "same username". Hence, we may want to check setting e.g. ... Administrative Tools > Remote Desktop Services > Remote Desktop Session Host configuration. Set "No" in the setting "Restrict each user to a single session".
(https://www.experts-exchange.com/questions/26434120/Remote-Desktop-Connection-session-kick-off-when-conecting-with-the-same-credentials.html?anchorAnswerId=33542668#a33542668)
I am thinking to rejoin the domain for the client instead and also the network logging to see the exchanges but it may not be worthy since most use case are tested so far. MS should simulate your env ..
Specific to the "new error", typically it would only happen if the two users are using the same username or reached the max concurrent users for the server. For your case, if licence is alright and the max no is not even reached in your testing, it may be the "same username". Hence, we may want to check setting e.g. ... Administrative Tools > Remote Desktop Services > Remote Desktop Session Host configuration. Set "No" in the setting "Restrict each user to a single session".
(https://www.experts-exchange.com/questions/26434120/Remote-Desktop-Connection-session-kick-off-when-conecting-with-the-same-credentials.html?anchorAnswerId=33542668#a33542668)
I am thinking to rejoin the domain for the client instead and also the network logging to see the exchanges but it may not be worthy since most use case are tested so far. MS should simulate your env ..
ASKER
hi btan,
they are not part of the domain, we hosting their server, they only using rdp client to connect to their server .
i will get back to as soon as microsoft final solution from them.
thanks again,
they are not part of the domain, we hosting their server, they only using rdp client to connect to their server .
i will get back to as soon as microsoft final solution from them.
thanks again,
noted seems like there may be also some inter domain trust relationship to be considered especially if the domains are all different and in disparate forest. Agree that MS should better advise rather than leaving it in limbo state. There is need to justify what are the limitation and pre-req not known in your use case.
ASKER
hi Btan,
do you know how and where in registry to control limit connection?
i know there a way in registry we can mange that reg=gpo , just want to make sure no funky on that reg ?, i am on hunting down that reg setting but seem not luck.
just want to ask you, maybe you know some where in reg that can hard set.
again thank you so much Btan
do you know how and where in registry to control limit connection?
i know there a way in registry we can mange that reg=gpo , just want to make sure no funky on that reg ?, i am on hunting down that reg setting but seem not luck.
just want to ask you, maybe you know some where in reg that can hard set.
again thank you so much Btan
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Awesome , Btan thank you very much sir....
thanks glad to have help and learn
E.g User to login via RDP into the server will also needs to belong to the server's local Remote Desktop Users group. In other words, the server that users need to RD into has to be granted RD access into it. Few option
a) Do check if can add that domain user userid into RDUsers group on your mentioned TS member server. There is no need to create a new local account on that server.
b) Another mean is to create and add a new <YOUR_DOMAIN>\<YOUROWN_GRA