Remote Access





Remote access may refer to the connection to a data-processing system from a remote location, for example through a virtual private network remote desktop software, terminal emulation, or the activation of features of a business telephone system from outside the business's premises.

Share tech news, updates, or what's on your mind.

Sign up to Post

I have installed RDP gateway on windows server 2019 and went through the configuration. I was unable to disable UDP 3391 transport in RDP Gateway windows server 2019

I tried it on 2 separate windows 2019 servers that used the normal install and no GPOs.

Any idea how to get it to turn off. We do not want to use UDP 3391 due to the port being blocked throughout the enterprise.

It is disabled In windows server 2016 by default. I actually would get the same error if I tried to enable it in windows server 2016. But for the scope of the question, We are trying to disable it in 2019.
Fundamentals of JavaScript
LVL 13
Fundamentals of JavaScript

Learn the fundamentals of the popular programming language JavaScript so that you can explore the realm of web development.

I am setting up a terminal server for some of our employees on the road; I published to them the app’s they need.

However, would love if I could give them the ability to save documents they download locally to the server,

Please advice

In addition, I am looking to reduce the time from clicking on application to being connected to the session, what I did I published calendar and created a task schedule that as soon they login it lurches the calendar,  once the connection is made when they open the application they want to work on, it opens immediately, I am not so excited about the calendar pops up, and if they x out the calendar it will again take time when they open their applications, is there a hidden app or something nice like a clock I can publish instead of the calculator?
Hello Everyone,

This is going to sound like a dumb question and I feel stupid even asking it, but am sufficiently confused now that I have no choice. LOL!
We have 2 new servers that the vendor team needs to work on to install products etc.
I was asked to purchase two Remote Desktop CALS so they can connect and did so through a reseller.
See item below
RDS server for 2 Remote Desktop CALI then  started looking for a way to integrate these so they can be used. Eventually I read about needing an RDS server and that is when the confusion began. We recently updated our AD with two new 2016 DC and bought the 400+ User CALS required. However, I never came upon anything that stated that I needed to install licensing servers, etc. nor did any vendor tech helping us out ever mention it and we do not have one installed. So is the RDS server merely for the Remote Desktop and is it a feature installed on the two servers the vendor needs access to, or am I missing a serious piece of the AD puzzle that will eventually cripple us?
Thanks in advance for all insights.
What is the best way, to remotely access a MAC, from a Windows 10 operating system.
I am looking for a very low cost one time software, or freeware to do this.
In an internal Windows network setting.

Thanks in advance for your assistance.
Monitor Alert Notification
Hi AEM Support
An alert was triggered for a monitor configured for site (customer) on device (Terminal Server)
The monitor is as follows:
Performance monitor for Status to alert if Offline for 10 mins
The alert was triggered at: 2019-02-27 14:46:13 EST
Device went Offline (Offline for 10 mins)

Can anyone help with this one?  Currently we have a customer who is running load balancing between 2 terminal servers.   Occasionally one of the 2 terminal servers will simply report as offline, where RDP no longer works and the terminal server is no longer pingable.  

However the server can be UNC'ed to from another server such as the DC.  You can \\terminalserver\ and it pops up.  

Here is the current specs of the server.
Operating System: Microsoft Windows Server 2008 R2 Standard 6.1.7601
Service Pack: 1
Architecture: 64-Bit
Hyper-V Version: 6.1.7601.17514
.NET Version: 4.7.03062

Processor: Intel(R) Xeon(R) CPU E5620 @ 2.40GHz
Physical Cores: 4
Memory: 18 GB
Display Adapter:
ShoreTel Desktop Sharing Accelerator
LogMeIn Mirror Driver
ATI ES1000
Default Monitor (null x null)
Generic Non-PnP Monitor (null x null)
BIOS Name: Default System BIOS
BIOS Version: W07
BIOS Release Date: 2011-01-28
Power Rating: 350 Watts

HP NC326i PCIe Dual Port Gigabit Server Adapter (Setup for Load balancing)

The machine currently remains on and in CTRL ALT DEL mode.   You can log into it from the local …
When perform an RDP session, received this error.

(The task you are trying to do cant be completed because remote desktop services is currently busy. Please try again in few minutes. Other users still able to log on)
Environment:  Windows 2012R2, and W2016; auto updates.  Business Application hasn't been updated in 4months. - happening on more than one site.
Tsplus is the RDP server application.

Problem:  Time of problem varies from site to site 3wks to 1 yr,  Application generates .pdf documents; e.g. invoices, quotes, statements either singularly or in a batch process, current fault happens in all pdf generated process'.
A Process, e.g. Invoices runs; create a 0kb .pdf, no errors displayed, then emails the .pdf to the customer; usually only found when the email receipient of the .pdf says can't open it.
Tried removing all .tmp files,    appdata\local\temp & appdata\roaming\"any rdp session files not deleted".
Stop Print Spooler / Remove any files in windows\system32\spool\printer\*.* / Start print spooler.
Sometimes allows the correct generation pf the .pdf file; occassionally works - mostly not.
If user logs out of the Application and RDP Session, (back to the PC desktop) login to Server via RDP then application and perform the print - works everytime.

My summation but can't grasp the answer, is: Logging out of the Session obviously terminates a process that is affecting the "Printing"

Does anyone have any suggestions as to how to identify the process &  recitification.

Thank you for reading this.
We built a new remote desktop services server just recently. We are very happy with it except for one strange issue. When one of our domain joined laptops launches the login page from either IE or Chrome, a certificate windows pops up asking to use one of our sub-ca certs to login. If I say yes, it gives me a login failure and an IIS screen pops up. If I say no, the cert screen goes away and continues to the correct login page. Its almost as if the site initially once to use the cert for authentication when it should not. Any ideas?

Built on Server 2016
We have newly deployed Xenapp 7.15 LTSR CU3 on Windows 2016 OS. While launching published applications through Storefront from Win 2016 VDA, our session stuck on Windows Sign in prompt. We are not getting user id & password option. We do have RDS security policy is in place “Always prompt for password upon connection”.
But while launching published desktops, we are getting prompt to enter userid & password options. Does anyone has seen this issue?
We are using NetScaler VPX.
We identified the Issue: We do have RDS security policy is in place “Always prompt for password upon connection”.
If we disabled this policy, issues has been resolved.
But as per security team, this policy is must.
Do we have any Citrix article where it confirmed that, this policy has to disable?

I have a question regarding redirected printers on a terminal server.

I installed the correct printer driver, but it always uses the Easy Print driver. I already deactivated the "use easy print first" gpo.

Any ideas?

Thank you in advance!

Rowby Goren Makes an Impact on Screen and Online
LVL 13
Rowby Goren Makes an Impact on Screen and Online

Learn about longtime user Rowby Goren and his great contributions to the site. We explore his method for posing questions that are likely to yield a solution, and take a look at how his career transformed from a Hollywood writer to a website entrepreneur.


I have a question regarding redirected printers on a terminal server.

How do I set different print settings than on the client?

Thank you in advance!

I have a question regarding Windows Terminal Services.

Where do I install a remote app? On the Remote Gateway Server or on the Remote Desktop Server?

Thank you in advance.

I have a test server that has all roles for RDS installed.  it has been running fine since September 2018. This past weekend it was moved to a new domain, which is all that was changed, IP same, netbios name same, just the domain is changed.
Now the collection/deployment appears gone, and when I try to create a new deployment, the old server name is there for the connection broker.
Is that reconfigurable somewhere, I am not finding it so far.
I have the InfoSec team who would like to have Remote Desktop access to all machines of the domain. But, i have a group of software engineers, with regular accounts who would like to have RDP access to certain servers. I am kinda stuck on here. Let me lay out for what i have:

I have this GPO called CORP_RDP_SEC_AllServers linked into domain, this GPO enables the InfoSec team to RDP into any machine in the domain by adding the InfoSec team into the "Remote Desktop Users" on every computer in the domain

Ok, so it looks like certain domain users,  need to have RDP access into some servers under the Servers OU. How do i allow those users to have RDP access knowing the fact I have already the GPO "CORP_RDP_SEC_AllServers" for the InfoSec team ?

CORP_RDP_SwEng_Servers this gpo contains all the users to have to have RDP access into the Servers OU.

See attachment. Global Policy Management Thanks for your help

Trying to configure VPN access and remote mgmt access to a sonicwall using a  Verizon assigned static IP address and am getting the error of
Invalid interface Egress Bandwidth (min=20, max = 1000)

I have bandwidth management type set to "None".
 Using SonicOS Enhanced

I am currently unable to connect a Global VPN client to the Sonicwall using the Verizon assigned Static IP address or access the Sonicwall's WAN interface to manage the device.....I am unsure if the Invalid interface Egress Bandwidth  error is the reason I cannot connect remotely.

Thank you.
Client computers receive "Do you trust the publisher of this remote connection" when attempting to connect to Connection Broker.
Certificate warning
I have a Windows 2016, 4-server terminal services system configured as follows (NOTE: There is no Gateway configured)

Server 1 = Connection Broker, Licensing, and Web Access.
Server 2 = Session Host
Server 3 = Session Host
Server 4 = Profile host

A wildcard certificate *.domain.local has been issued by an Internal CA and installed on all servers. The certificate has been imported into RDS binding with all roles as shown in screenshot. Created certificate using

Cert binding to RDS roles
The .RDP file has been signed with the Thumbprint (Sha1) of the certificate.

I have populated the following GPO with the cert's thumbprint and have verified that client computers have been successfully updated.  Computer Configuration\Administrative Templates\Windows Desktop Services\Remote Desktop Connection Client.
We have a RDP Gateway Server 2008 R2 and it is published via TMG to the internet, since we upgraded yesterday to allow only TLS 1.1 and TLS 1.2 and removed some non secure cyphers, Windows 7 users cannot RDP but Windows 8.1, Windows 10 have no issues. I have tried copy RDP file form Windows 10, upgrading the PC, removing TLS 1.0 form Windows 7 and adding TLS 1.1 and 1.2 and no success.
Error Message on Windows 7 machines (both x64 and x32): Your computer  can't connect to the remote computer because the Remote Desktop Gateway server's certificate has expired or has been revoked. Contact your network administrator for assistance.

Any help will be really appreciated.
WE allowed our RDP  license to expire and now cannot get in , it there a way to get in to the server to allow us to apply a license ?
We use EMCO Remote Shutdown to reboot computers at all our offices.  The program is great, however, the latest version is very expensive.

We currently leave all the computers on so they get updates at night.  I have them scheduled to reboot twice weekly.  

I am looking for suggestions on an alternative.
Exploring ASP.NET Core: Fundamentals
LVL 13
Exploring ASP.NET Core: Fundamentals

Learn to build web apps and services, IoT apps, and mobile backends by covering the fundamentals of ASP.NET Core and  exploring the core foundations for app libraries.

Hello Experts,

I set up a RDS server a while back running windows server 2016. The security certificate i created and imported to each work station to run a remote app published by the server is about to expire.  When i generate a new certificate im getting a Personal Information Exchange (.pfx) instead of a Security Certificate (.cer).  Any idea what i am doing wrong?

Thank you,

From time to time we get this error when connecting to our RDS server

rds error
I am not sure to understand where this is coming from (it can even show up when... nobody is connected to the session host server !!).

  1. our RDS CAL licensing is ok (at least as far as the assessment tool can tell us)
  2. there is no GPO I am aware of that would limit the number of sessions (where should I check ?)
  3. there is no limitation in the RDS deployment (set to 9999 sessions)
  4. there is nothing logged in the event log when this happens

Any suggestion / pointer most welcome
Hyper V Server 2016 that i need to connect to via thin clients on a terminal service session, i need to run 3 concurrent sessions, do i need a terminal service licence cals for this?
Sometimes it seems like if I am still RDPed into a server after my LOCAL PC that I was using for RDP had a power outage/etc then my WEEKEND Windows Update cannot automatically reboot.

 1. Does anyone else have the same issue ?

 2. What script/etc can I run to find out if I am still RDPed into ANY servers without having to manually login to each of my 20+ Windows Server 2012 VMWare VMs ?
(reworked my question as it seems to be a "pure" IIS issue)

I am currently trying to deploy a server 2019 as a RDS Session Host and RDS Web Access server in our infrastructure for RemoteApp use.

I have followed the usual procedure and it seems everything went fine.

However, when I try to reach https://myserver/rdweb I get an IIS error:

HTTP Error 500.21 - Internal Server Error

Handler "ExtensionlessUrlHandler-Integrated-4.0" has a bad module "ManagedPipelineHandler" in its module list

Doesn't see much in the event logs - I guess there must be something in the IIS specific logs but not sure how to retrieve them.
Tried to google this but didn't find any obvious answer (yes .NET is deployed and active on the server, and I would have thought/hoped that the prerequisite would be checked by the installer). By all accounts, it would seem it a "pure" IIS issue around ASP.NET (ie not specific to RDS services) but in any case blocking.

Any help most welcome
I have a client running two server 2012r2 instances with DFSR deployed.  The users are connected with roaming user profiles.  In the past, workers needing remote access would use a laptop from the remote location and would log onto the system through an SSL client, then remote desktop to their workstation.  That worked very well.

The entity is evolving and will have some workers in a different location [some home based] that will only have a laptop, but it is desired that they log on with a roaming profile in order to have their data backed up from the server, as well as various updates such as anti-virus kept current when the users are logged in.  All workers not at the server site will have internet access.

How is the best way to accomplish this

Remote Access





Remote access may refer to the connection to a data-processing system from a remote location, for example through a virtual private network remote desktop software, terminal emulation, or the activation of features of a business telephone system from outside the business's premises.