Avatar of DP230
DP230
Flag for United Kingdom of Great Britain and Northern Ireland asked on

Could not remote into Server 2008 R2

Dear Experts, we could not use remote Desktop service into a Win server 2008 R2, it said that "Your credential did not work"; some steps were performed but could not help:
1. Open all Firewall profiles, disable Antivirus
2. Changing password
3. Create a new local user and add to Remote Desktop Group
4. Change remote port
5. Restart RDP service
6. Allow remote desktop service

Any idea please?
Remote AccessSoftware FirewallsWindows Server 2008DesktopsSecurity

Avatar of undefined
Last Comment
DP230

8/22/2022 - Mon
CES

So by the server saying "Your credentials did not work" that means that it's not a connection issue;  you're successfully getting to the server it's just the username or password is wrong or the account is not part of the RDP users group.

This means that it is not #1,4,5 or 6.

Can you RDP using the local admin account?
DP230

ASKER
No I could not, I tried both Local Admin as well as a new local user but did not help!
SOLUTION
TuliTaivas

THIS SOLUTION ONLY AVAILABLE TO MEMBERS.
View this solution by signing up for a free trial.
Members can start a 7-Day free trial and enjoy unlimited access to the platform.
See Pricing Options
Start Free Trial
GET A PERSONALIZED SOLUTION
Ask your own question & get feedback from real experts
Find out why thousands trust the EE community with their toughest problems.
SOLUTION
CES

THIS SOLUTION ONLY AVAILABLE TO MEMBERS.
View this solution by signing up for a free trial.
Members can start a 7-Day free trial and enjoy unlimited access to the platform.
See Pricing Options
Start Free Trial
⚡ FREE TRIAL OFFER
Try out a week of full access for free.
Find out why thousands trust the EE community with their toughest problems.
Neil Russell

Ensure that user does not have "Must change password at next logon"  set
All of life is about relationships, and EE has made a viirtual community a real community. It lifts everyone's boat
William Peck
DP230

ASKER
@Tuli:
just to make sure: when you say "local user" you mean local to the server, right?
---> YES, it is local user on that server

- any special characters in the password?
----> No
can you type the password somewhere where you can actually SEE what gets wirtten? (e.g. in the username field). same keyboard layout on server and client?
-----> Yes, I tried copy paste from txt file but no luck

- no blanks before or after the username (happens here more often than expected)
------> No, it does not have

@Neil: the user had "Password never expired " setting, but no luck
CES

what about local logon?  does that work?
DP230

ASKER
Yes, it worked.
⚡ FREE TRIAL OFFER
Try out a week of full access for free.
Find out why thousands trust the EE community with their toughest problems.
DP230

ASKER
@CES IT: I reviewed the EE link but could not find this option, can you help?

.... on the general tab I changed Security layer from 'Negotiate' to 'RDP Security Layer' and I no longer need to enter credentials to start an RDP session.
John

If it works as a local logon, but not RDP, then it is the permissions on the listener.  

Generally, add the user to the Remote Desktop Users group and that will do the trick.  If this has been messed with, then you may want to check the permissions on the listener itself.
SOLUTION
John

THIS SOLUTION ONLY AVAILABLE TO MEMBERS.
View this solution by signing up for a free trial.
Members can start a 7-Day free trial and enjoy unlimited access to the platform.
See Pricing Options
Start Free Trial
⚡ FREE TRIAL OFFER
Try out a week of full access for free.
Find out why thousands trust the EE community with their toughest problems.
DP230

ASKER
Hi John, thank you but still no luck, could not remote into that server :(
Experts Exchange has (a) saved my job multiple times, (b) saved me hours, days, and even weeks of work, and often (c) makes me look like a superhero! This place is MAGIC!
Walt Forbes
John

There are two layers of authentication in 2008 and upwards.  There's authentication with the server (NLA) and then RDP authentication for the session.  

Which one is it failing on?

Have you tried disabling NLA?  

To do this, right click 'My Computer' and select properties

Click on the remote settings link

When system properties comes up, click on the Remote tab

There are 3 selections at the bottom.  pick the middle one (Allow connections from computers running any version of Remote Desktop (less secure))
DP230

ASKER
@John: Yes, that middle one option was configured but still no luck
SOLUTION
John

THIS SOLUTION ONLY AVAILABLE TO MEMBERS.
View this solution by signing up for a free trial.
Members can start a 7-Day free trial and enjoy unlimited access to the platform.
See Pricing Options
Start Free Trial
⚡ FREE TRIAL OFFER
Try out a week of full access for free.
Find out why thousands trust the EE community with their toughest problems.
ASKER CERTIFIED SOLUTION
DP230

THIS SOLUTION ONLY AVAILABLE TO MEMBERS.
View this solution by signing up for a free trial.
Members can start a 7-Day free trial and enjoy unlimited access to the platform.
See Pricing Options
Start Free Trial
⚡ FREE TRIAL OFFER
Try out a week of full access for free.
Find out why thousands trust the EE community with their toughest problems.
John

did you not get a duplicate IP address warning?
⚡ FREE TRIAL OFFER
Try out a week of full access for free.
Find out why thousands trust the EE community with their toughest problems.
John

The authentication problem was that you were logging in to serverB with a username and password for serverA due to the IP conflict.  

ServerB must have responded to the ARP request last and got it's MAC address in your ARP cache
DP230

ASKER
No, I did not have a warning in the Desktop notification, I only realized this problem when typed: "ipconfig /all"

Many thanks for your support!
DP230

ASKER
Problem solved after removed duplicated IP issue.
Your help has saved me hundreds of hours of internet surfing.
fblack61