Remote Access





Remote access may refer to the connection to a data-processing system from a remote location, for example through a virtual private network remote desktop software, terminal emulation, or the activation of features of a business telephone system from outside the business's premises.

Share tech news, updates, or what's on your mind.

Sign up to Post

Our new Windows Server 2016 Standard servers (both physical and VM) experiencing extreme lag over remote desktop protocol. Once the Windows firewall is disabled for all three profiles (Domain, Public, and Public) the lag is gone and things work perfect. I tried disabling each profile one at a time but found out it needs to be all three.  Has anyone figured out what is causing this issue? We use a third party firewall so the windows firewall is not important but I wanted to find out the cause.
Free Tool: Path Explorer
LVL 12
Free Tool: Path Explorer

An intuitive utility to help find the CSS path to UI elements on a webpage. These paths are used frequently in a variety of front-end development and QA automation tasks.

One of a set of tools we're offering as a way of saying thank you for being a part of the community.

Hi all - calling all Draytek experts,

I am trying to configure a Draytek Router with an SSL certificate for SSL VPN, Wifi Radius authentication and remote access. I can generate a CSR on a different machine, have it signed by a CA, import it back to the same machine and then export it including the key, to then import to the Draytek as a PFX, no problem.

All appears to be working fine.

However, when testing the SSL security of the site/certificate at SSL Labs it says the chain is broken (most of the rest of the report is fine). Is this something I can prevent by a different approach? Am I doing something obviously wrong?

I have avoided generating the CSR from the Draytek, as, and correct me if I am wrong, the import into the client machines for Wifi Auth required the full Pfx. This approach did not work, but the former above does i.e. I can transport the Key file in the Pfx.

So does anyone have a better idea / route to achieve the best solution to what should be fairly simple, or should I not even worry about the broken change analysis when the SSL is working on browsers, SSL VPN and Wifi Radius.

Many, many thanks in advance to anyone that might be able to point me in the correct direction.

I have one computer that I cannot connect to remotely on the network. When I try to access the PC remotely using PSEXEC I get "The network name cannot be found. Make sure that the default admin$ share is enabled on computerA". I can connect to it using Windows "Services", and when I start the WinRM service (which is set to manual), I can connect to the remote computer using Powershell. Once in Powershell on the remote computer, I am connected as my user account, which I think is normal. In powershell when I use the command "Net use \\localhost\admin$" or "Net use \\localhost\c$" it shows that it is enables and connected.
When I try to connect to the PC using Windows Explorer, I get  "The remote device or resource won't accept the connection". The weird part is that I can ping the PC by name, I can connect to the "Services", but I cannot connect to registry, I cannot connect to it using PSEXEC, and other methods. I have verified that the firewall is off, I have verified that file and print sharing is enabled, I have also (in Powershell) verified that registry key HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\LanmanServer is set to 1.
Can someone help me get the computer to the point where I can use PSEXEC, and other tools? I am happy to send screenshots or report back on anything that will help identify the issue.
I just finished setting up new Server 2016 Domain Controller (Small business only 5 users).
I have trouble with Remote Access VPN.
I set it up - I think correctly, but when the Windows 10 client connects - they can not resolve host names on the remote network.
Not sure if this affects Win10 only - I do not have windows 7 to test.

The users do not have problems connecting - in fact it connects very quickly - when testing I can ping host by the IP, but not by the name.

Any idea what I may be doing wrong.
Step by step guide to map emc vmax lun to iscsi target using emc unisphere
need help

Im connecting servers from  remote desktop connection manager 2.7 in windows 10 machine
and the Font size is too small once logon and tired multiple options did not work? any idea..

Pls help
This is my first attempt at Direct Access so I'm just trying to deploy the simplest Direct Access Only setup, using the basic Wizard before tightening up the security, my end goal being a PKI setup but i'm struggling with the basic setup.

The Direct Access Clint Settings are being applied.

I think my client isn't getting the DnsClientNrptPolicy because Get-DnsClientNrptPolicy does not display anything.  

netsh name show effectivepolicy returns:

          DNS Effective Name Resolution Policy Table Settings

          Note: DirectAccess settings are inactive when this computer is inside a corporate network.


We are currently in the process of migrating away from SBS2011. The last two pieces of the migration are migrating Exchange and finding a replacement for RWW is all that's left. The exchange migration we have under control. The RWW issue not so much.

Currently we are an office of about 65 users. Most users rely on RWW a lot.  Our users like the simplicity of RWW and the fact that it supports dual monitors remotely. I like the fact there is no licensing or software they need to install or configure on home computers.

We run a Watchguard Firebox and have an ipsec vpn configured. Myself and the other members of the IT team are the only ones that use it beside one or two people with Mac's at home.

Does Server 2016 Essentials Experience offer the same functionality of RWW?
I've got some serious security concerns. Our office has Remote Desktop Access configured, but we are not using the standard 3389 port. Each user is assigned a specific port in a range, e.g. 12345-12354 (not the real ports). These ports are then forwarded to port 3389 on the specific user's workstation. The router is Linux using iptables. Here's the problem. Some hacker(s) have figured this out and have been trying to break in. In the logfile I have (abridged):
[2018/03/07 07:28:45.080884, 2] authentication for user [HPRS/user] FAILED with error NT_STATUS_WRONG_PASSWORD, port: 12345, IP:
[2018/03/07 07:28:46.741469, 2] authentication for user [HPRS/user] FAILED with error NT_STATUS_ACCOUNT_LOCKED_OUT, port: 12345, IP:

IP: 77.72.83    Attempted Remote Desktop port accesses: 124
address:        45 REYNOLDS WALK
country:        GB

Open in new window

The first line occurs 15 times before the lockout policy kicks in. The second line occurs another 100+ times as the bot continues to try despite now being locked out. An additional script (like fail2ban) examines these messages and will block this IP long-term, not just for the lockout duration. The perpetrator in this case is allegedly from Great Britain, but we had one yesterday from the Netherlands, and in the past from other places.

Now, I can see how they might guess the target server and user because these are components of the users' email addresses. And I suppose I can see how they might guess port …
Terminal Server issue

We upgraded from 2008 to 2016 over the weekend (via 2012!).

Our users connect to another companies servers via RDP shortcuts on their desktop. 2 of the users shortcuts are fine and working however 3 arent. They dont get an error message when the shortcut is clicked, it just does nothing. I have tried to recreate the shortcuts but these do not work either. The 3 users have to manually type in the IP every time to connect.

Unfortunately I cant copy the shortcuts of the 2 users that are working as each user has a different IP they connect to.

Any ideas what could be the problem? I am stumped!
Free Tool: SSL Checker
LVL 12
Free Tool: SSL Checker

Scans your site and returns information about your SSL implementation and certificate. Helpful for debugging and validating your SSL configuration.

One of a set of tools we are providing to everyone as a way of saying thank you for being a part of the community.

I have a link to a file that I can access through a JavaScript (which in turn calls an ASPX page) but the browser prompts for a user name and password at which point if I pass the credentials I can see my file (which is an image).

My requirement now is to script this so that the username and password are passed through ASPX (VB).

I have looked around and have tried options like impersonation and using WebRequest  and credentials but I do not think I am coding this right and need help and direction with this.

I do not have access to the web server but rather just he ASPX page that I can work on using Visual Studio.

I have tried a few solutions from around the web but none worked:
First attempt
Dim request As WebRequest = _

request.Credentials = New NetworkCredential("username", "password")

Dim response As WebResponse = request.GetResponse()

Open in new window

Second attempt:
Link to send attempt

Please can someone help me with a working solution.

Hey all I have a  Server 2017 setup with my domain name on it that looks like this:

When I use my  Windows 10 machine to RDP into that I use the above as my computer using either or This connects just fine to my server machine from my Windows 10 machine.

I have 2 VMs running also on my Server 2017 machine. Each of those VMs are running Windows 10 32bit OS. I have also changed the RDP port of each VM to 3390 and 3392, respectively. I also gave each VM a static IP address of and And each VM's firewall has been turned off in order to rule that out of the equation right now. No antivirus software is installed as well on either.

Now from my Windows 10 machine, I use RDP again to RDP into those VMs.

First I test it out using the static IP I set for each of them (VMs). When I place either IP address into the RDP it loads up the VM just fine for me to view.

I have done another test and use my Domain name to see if I can connect to it that way as well. I use and and again, I am able to connect to those WMs via my Windows 10 OS.

However, the issue is when I try using my own C# RDP code it seems to not connect to the VM outside of my Windows 10 machine. It connects just fine if I run it within Visual Studio 2017 which is on my Windows 10 machine. Once I run that same program on the Server 2017 machine
We are having an interesting issue with our XenApp Desktop environment.  Several of our users have reported that upon login and launch of the Published Desktop, their session opens with the High-Contrast Theme activated.  The users are able to manually turn off the high-contrast theme, but they are not initiating the session with that theme turned on.  We don't believe the users are accidentally turning on the theme with the keyboard shortcut (Left Alt + Left Shift + Print Screen) due to the distance between those keys.

Has any one else seen anything like this in Citrix or Remote Access Servers?  We are using XenApp Desktop 7.14.1 installed to Windows Server 2016.
On a small server 2008 R2 network we decided to change from PPTP VPN and decided on SSTP. Having opened port 443 on the router, added a certificate etc etc when we tested things it didn't work. On looking at the error logs it would appear that when we update Routing and Remote Access - Server - Properties - Security Tab - SSL Certificate Binding it looks to update without an error but in the error log we get the following:

Event Properties - Event 22, RasSstp
The secure Socket Tunneling Protocol service could not be configured to accept incoming connections. The detailed error message is provided below. Correct the problem abd restart the SSTP service.
Cannot create a file when that file already exists.

Then when I try the VPN with the SSL Certificate binding is set to Use HTTP the client VPN error is "The token supplied to the function is invalid". If have a certificate selected (which creates the error above) we get the error "No Connection could be made because the target machine actively refused it" .

Can any body help
Hi!! I want to make VPN site to site with WIndows Server 2012 R2 but when I install the features Remote Access, there's always a warning saying that there is an incompatibility between the version of the computer or there's a problem with the virtual disk. I specify that my Windows server 2012 R2 is installed on virtualbox! what can i do to solve this problem?thank you!!
I have a 2008 R2 Terminal Server which generally runs without any problems.  Recently I began to decommission another server on my network.  This server is an old Database server which is only being used presently as a fax server.  The fax server holds no network roles.  When I shut down the fax server anyone attempting to log on to the Terminal server gets stuck at "preparing your desktop".  After several minutes "preparing your desktop" disappears and is replaced with a blue screen, not a bsod, but the same blue background which accompanies the "preparing your desktop" message.

When I powered the old fax server back on the ability of the users to log onto the Terminal server returns to normal.  Further, if instead of powering the Fax server down I simply unplug the LAN cable the same thing occurs.  If, while at "preparing your desktop" I plug the fax server back in then the desktop loads within a few seconds.

Clearly there is something which the Terminal Server login/ desktop is looking for which the Fax server provides, but as yet I am unable to determine what it is.

Any thoughts would be greatly appreciated.

I have a small business up and running on the below config:
WSE - Windows Server Essentials 2016
RDP/RDS - Remote Desktop Services Server - Windows Server 2008 R2 (client software is not compatible with a newer RDP OS)

We have this working with the built-in WSE VPN and RDP to the Remote Desktop server, though company wished to use the Access Anywhere (formerly RWW) web page.

Issue we have is "connecting" the 2008 R2 server to WSE, so it will appear in the WSE Dashboard and therefore Access Anywhere web page.  When trying to run the WSE Connector (from either http://server/connect - or download from MS) we get he attached error: "Windows Server Essentials Connector is not supported to be installed on this version of Windows." "The connector supports computers running Windows 7 SP1, Windows 8 and Windows 8.1"  

Server has been joined to the domain with no issues, though the Connector won't work to setup the server in WSE dashboard.

Everything I have found online appears to be for WSE 2012 and 2012 (R2), and that this should work on 2012.... what about 2016?

Is there some way to manually add a server to the Dashboard?  Or how can I add this server to 2016 WSE?

Hi Experts,

I am having terminal server running on Windows server 2012R2, it started to kick out a couple of users randomly (and it happened to different users, non-admin accounts), and the affected users can no longer get their desktops back (they could log in but nothing shows on desktop, still can see Windows button but not clickable, right click and Ctrl-Alt-End works), log off and log back in wont help, only reboot the server would solve the issue, but it will come again.

I did check event viewer found some Explorer.EXE errors (see attachments) not sure if that's the culprit, I also ran sfc /scannow but it said some files cant be fixed.

can someone help please!


Anytime anywhere stopped working via vpn, it was working fine before teaming both nic’s Up.

I have un coupled nics and it still doesn’t work.

When I’m onsite and connect via vpn I can access shared files.

When I go offsite I can connect via vpn and not connect to my shared files.

Please advice server essentials 2016
Hire Technology Freelancers with Gigs
LVL 12
Hire Technology Freelancers with Gigs

Work with freelancers specializing in everything from database administration to programming, who have proven themselves as experts in their field. Hire the best, collaborate easily, pay securely, and get projects done right.

I need to change the FQDN of my 2012R2 RDS server.  I have found numerous articles referencing the command Set-RDPublishedName however when I run it in my environment I get the message that the command is not recognized.  Any suggestions?
Hi I am using with vb, I want functionality so I can first my remote drive mapped first then access file and then unmap that drive, How I can do that in
Have a Windows 7 Pro machine with 4 monitors.   This machine connects to Terminal server via remote desktop connection.   User wants to have 2 local applications opened on two monitors and 2 other applications through terminal server on the other two monitors.       Any recommendations on how this can be done.  RDC can be spanned across multiple monitors but that will give me the same view on all monitors.
Thanks for you help
We have a strange issue that I can't get to the bottom of, some times the screen does not fully refresh eg if a user clicks a button and opens a new screen some times the top cm of the screen sort of just overlaps and does not actually properly refresh.

Has anyone else here got an idea what this could be?

It seems just one or two users.

Everyone is logged into a terminal server (2012r2)
RDP Question!

we have a setup for a customer with following servers:

2 DC Controllers
1 File Server
1 RDS Server
2 Terminal Servers

we installed TS Licensing on the 2 DC Controllers.
Installed Connectop Broker en Web Gateway on the RDS server
and installed the 2 Terminal Servers as Host Servers

All servers are on premesis.

When we use the browser to connect to http://rdsserver/rdweb and logon we can connect to the Host servers. he uses the load balance.
When we use our public IP http://publicip/rdweb this also works.

but we do not want to login using the rdweb function.
we want to use the RD Client in Windows to connect to the RDS Server and pass trough the correct Host server.

for that we use the following registry edit:

HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Terminal Server\ClusterSettings

Create new stringValue: DefaultTsvUrl
enter the loadbalancing info in Value data: tsv://MS Terminal Services Plugin.1.CollectionName

when we test this and connect to the RDS server inside our lan then this works perfect!

when we do this from a wan side then it takes a while to connect and i receive the error that a connection cannot be made.
when i try a second time i got the error: the connection is broken because an unexpected certificate for servercertification from the remote computer is received.

any idea's?
When launching a connection with VMware View client v4.4 or higher I get the error message "The connection to the remote computer ended."  It has randomly to multiple users of one floating pool in Horizon 6.  All connections are local - I saw other Questions about this but they were all connecting from home or somewhere outside their office.

Remote Access





Remote access may refer to the connection to a data-processing system from a remote location, for example through a virtual private network remote desktop software, terminal emulation, or the activation of features of a business telephone system from outside the business's premises.