External users cannot connect to RDS Farm (Azure).

Hi Experts,
I hope someone is able to help me with this. I have search high and low, but have not found a solution.
Here we go:
I have setup a RDS Farm in Microsoft Azur, consisting of the following servers:
KRPDC01 (Domain Controler / Active Directory / DNS Server)
KRPSH01 (Remote Session Host #1)
KRPSH02 (Remote Session Host #2)
KRPCB01 (Connection Broker)
I have installed the respective Remote session roles on the above server and added my group of users to the "Remote Desktop Users" group on each Session Host server.  
At first glance it seems to work. I seem to be able to connect to the farm with the first user. But most of the times, when a second users tries to connect to the same farm, then login hangs for a time, and the connection is refused with this message:
"Remote Desktop cannot connect to the remote computer for one of the following reasons:
1) Remote Access to the server is not enabled
2) The Remote Computer is turned off
3) The Remote Computer is not available on the network
Make sure that the remote computer is turned on and connected to the network, and that remote access is enabled."
Sometimes not even the first user can connect to the farm at all with the same error message.
I have looked into the logs on the connection broker, and something interesting shows up.
It seems that whenever the connection broker wants to redirect a users connection request to a different server than the one that recieved the connection request, then the connection fails. If however the connection broker grants the connection to the same
server as the request is comming from, then the user is logged in.
Here are the log entries when the connection fails:
"RD Connection Broker received connection request for user xxx\testuser. 
Hints in the RDP file (TSV URL) = tsv://MS Terminal Services Plugin.1.KRPCLOUD 
Initial Application = NULL 
Call came from Redirector Server = KRPSH01.xxx.net 
Redirector is configured as Farm member"
Followed by:
"RD Connection Broker successfully processed the connection request for user xxx\testuser. Redirection info: 
Target Name = KRPSH02 
Target IP Address = 10.4.3.7 
Target Netbios = KRPSH02 
Target FQDN = KRPSH02.xxx.net 
Disconnected Session Found = 0x0"
The a few minutes later this entry is found in the log:
"Remote Desktop Connection Broker Client failed to redirect the user xxx\testuser
Error: NULL"
These are the log entries when the connection is successfull:
"RD Connection Broker received connection request for user xxx\testuser 
Hints in the RDP file (TSV URL) = tsv://MS Terminal Services Plugin.1.KRPCLOUD 
Initial Application = NULL 
Call came from Redirector Server = KRPSH02.xxx.net 
Redirector is configured as Farm member"
Followed by:
"RD Connection Broker successfully processed the connection request for user xxx\testuser. Redirection info: 
Target Name = KRPSH02 
Target IP Address = 10.4.3.7 
Target Netbios = KRPSH02 
Target FQDN = KRPSH02.xxx.net 
Disconnected Session Found = 0x0"
And then:
"Session for user KASSERAPPORTEN\krptest successfully added to RD Connection Broker's database. 
Target Name = KRPSH02.kasserapporten.net 
Session ID = 2 
Farm Name = KRPCLOUD"
And:
"This connection request has resulted in a successful session logon (User successfully logged on to the end point). Remote Desktop Connection Broker will stop monitoring this connection request."
If I connect to one of the other servers on the network - the KRPDC01 - and from there connects to the RDS Farm (internally) then there is no problem recieving the connections. Also connections where the broker has to redirect the connection to a differing
Session Host is completed without problems.
I have noticed than when successfully connection from internally where the connection is redirected by the connection broker, then I actually recieved 2 certificate warnings. One first from the Session Host that have recieved the connection request, and the
shortly after from the second Session Host (when the connection broker is redirecting the connection) and then the connection is established.
When connection from the outside, I never get the second certificate warning.
In Azure I have setup indpoint for Remote Desktop - TCP/3389 on both Session Host servers and on the Connection broker.
As mentioned I am at a total loss, and I hope someone out there is able to help me solve this issue.
Thanks in advance :-)
Regards,
Daniél 

Hi,
Seems this issue is related with Windows Azure Virtual Machine, I will move it to Windows Azure Virtual Machine Forum for a better help.
Thank you for your understanding!
Best Regards
We are trying to better understand customer views on social support experience, so your participation in this interview project would be greatly appreciated if you have time. Thanks for helping make community forums a great place.
Click
HERE to participate the survey.

Similar Messages

  • External users cannot connect to Lync Server 2013

    I everybody,
    The users inbound organizacion use lync 2013 good, i deploy a edge server for external connection but, when i try to connect, receive the next message: "can not log into lync because the server is temporarily unavailable".
    already test the certificate, ports and the cms replica. this components are good.
    i don´t know, what can i do.
    regards
     

    Hi JSanabria,
    Did you use single IP and FQDN for the SIP access, Web Conferencing service and A/V service?
    Did you use private IP with NAT or public IP directly on Edge external interface?
    Please tell us more detail about the configuration of Edge server.
    You can use Lync 2013 remote connectivity analyzer to check which step goes wrong.
    Here is the link of Lync 2013 remote connectivity analyzer:
    https://www.testexchangeconnectivity.com/
    http://www.insideocs.com/Tools/RUCT/RUCT.htm
    http://blogs.technet.com/b/nexthop/archive/2011/12/07/useful-tips-for-testing-your-lync-edge-server.aspx
    Note: Microsoft is providing this information as a convenience to you. The sites are not controlled by Microsoft. Microsoft cannot make any representations regarding the quality, safety, or suitability of any software or information found there. Please make
    sure that you completely understand the risk before retrieving any suggestions from the above link.
    Best Regards,
    Eason Huang

  • External Clients cannot connect to Exchange Server

    Hello all:
    My external clients using outlook cannot connect to Exchange Server 2013.  We have on-presmise version updated to Cu3 and after the Cu3 update we lost connectivity with Outlook clients.  Many of the settings in IIS were changed after the Cu3 update,
    I noticed after my http->https redirect was not applied anymore to the default website.  Here is my Get-OutlookAnywhere results:
    RunspaceId                         : 6379fab1-f692-484f-8118-99e48330d4c4
    ServerName                         : EXCHSERV
    SSLOffloading                      : True
    ExternalHostname                   : mail.domain.com
    InternalHostname                   : mail.domain.com
    ExternalClientAuthenticationMethod : Negotiate
    InternalClientAuthenticationMethod : Ntlm
    IISAuthenticationMethods           : {Basic}
    XropUrl                            :
    ExternalClientsRequireSsl          : True
    InternalClientsRequireSsl          : True
    MetabasePath                       : IIS://EXCHSERV.domain.com/W3SVC/1/ROOT/Rpc
    Path                               : D:\Program Files\Microsoft\Exchange Server\V15\FrontEnd\HttpProxy\rpc
    ExtendedProtectionTokenChecking    : None
    ExtendedProtectionFlags            : {}
    ExtendedProtectionSPNList          : {}
    AdminDisplayVersion                : Version 15.0 (Build 775.38)
    Server                             : EXCHSERV
    AdminDisplayName                   :
    ExchangeVersion                    : 0.20 (15.0.0.0)
    Name                               : Rpc (Default Web Site)
    DistinguishedName                  : CN=Rpc (Default Web
                                         Site),CN=HTTP,CN=Protocols,CN=EXCHSERV,CN=Servers,CN=Exchange Administrative
                                         Group (FYDIBOHF23SPDLT),CN=Administrative Groups,CN=domain,CN=Microsoft
                                         Exchange,CN=Services,CN=Configuration,DC=domain,DC=com
    Identity                           : EXCHSERV\Rpc (Default Web Site)
    Guid                               : 596ed7a1-ceec-4a36-9cbc-617ac5214463
    ObjectCategory                     : domain.com/Configuration/Schema/ms-Exch-Rpc-Http-Virtual-Directory
    ObjectClass                        : {top, msExchVirtualDirectory, msExchRpcHttpVirtualDirectory}
    WhenChanged                        : 12/23/2013 2:20:41 AM
    WhenCreated                        : 11/25/2013 2:51:36 PM
    WhenChangedUTC                     : 12/23/2013 7:20:41 AM
    WhenCreatedUTC                     : 11/25/2013 7:51:36 PM
    OrganizationId                     :
    OriginatingServer                  : DOMAINCONTROLLER.domain.com
    IsValid                            : True
    ObjectState                        : Changed
    Thanks in advance

    Hi,
    According to your description, users cannot connect to Exchange server 2013 both internal and external.
    Please run Test E-mail AutoConfiguration in Outlook to check your autodiscover service. Also
    reset your Exchange virtual directory to connect correctly. If the issue still continues after all configurations are setting properly, collect some Event logs would be helpful.
    If there is any question, please post the results here for further analysis.
    Thanks,
    Winnie Liang
    TechNet Community Support

  • Sharing only users cannot connect to Lion Server

    Dear all,
    I stumbled across a funny problem, that I tried to resolve all day. I just wanted to add a sharing only user for my girlfriends new MacBook that she could use to connect to a shared Time Machine Volume.
    If I add a new standard user, this user can connect to my server via finder (connect as...) and see the shared drives. If the same user tries to connect to the Time Machine Backup Volume via the settings dialog, it receives an error message (OSStatus-error 5).
    If I add a sharing only user, this user cannot connect via finder or Time Machine (same error). The clients console states the following error message:
    /System/Library/CoreServices/NetAuthAgent.app/Contents/MacOS/NetAuthAgent[2471]      AFP error -5018 mapped to EIO
    Does anybody have an Idea?

    That is my point.  Yes, Apple still lets you add users via users and groups in system preferences but that is not how you should be adding users.  I've seen nothing but trouble when that option is used to add users and I believe that the Lion server docs say to not use that.  If you are using lion server why not use it the way it was meant to be.  Just create a account in OD and only give her access to the Time Machine Service and none of the others.

  • Users cannot connect over SMB 10.10.1 server.app 4.0 and 4.0.3

    Hello,
    I have an issue where users cannot connect to a server for files sharing over SMB.
    Info:
    All users on 10.10.1
    2 Servers on 10.10.1
    Server.app 4.0.3 but issue was also present using 4.0
    SMB connection works when connecting to the OD Master
    SMB does not work when connecting to the OD Replica ServerBut AFP works fine when connecting to the OD Replica Server.
    I have destroyed and re-added the OD replica but that did not seem to help
    This is what I see in the logs each time I try to connect(logs have been cleaned to remove client details:
    Jan  9 14:37:12 server.pretendco.com digest-service[9961]: label: default
    Jan  9 14:37:12 server.pretendco.com digest-service[9961]: dbname: od:/Local/Default
    Jan  9 14:37:12 server.pretendco.com digest-service[9961]: mkey_file: /var/db/krb5kdc/m-key
    Jan  9 14:37:12 server.pretendco.com digest-service[9961]: acl_file: /var/db/krb5kdc/kadmind.acl
    Jan  9 14:37:12 server.pretendco.com digest-service[9961]: digest-request: uid=0
    Jan  9 14:37:12 server.pretendco.com digest-service[9961]: digest-request: netr probe 0
    Jan  9 14:37:12 server.pretendco.com digest-service[9961]: digest-request: init request
    Jan  9 14:37:12 server.pretendco.com digest-service[9961]: digest-request: init return domain: SERVER2 server: SERVER2 indomain was: <NULL>
    Jan  9 14:37:13 server.pretendco.com digest-service[9961]: digest-request: uid=0
    Jan  9 14:37:13 server.pretendco.com digest-service[9961]: digest-request: init request
    Jan  9 14:37:13 server.pretendco.com digest-service[9961]: digest-request: init return domain: SERVER2 server: SERVER2 indomain was: <NULL>
    Jan  9 14:37:13 server.pretendco.com kdc[4802]: Got a canonicalize request for a LKDC realm from local-ipc
    Jan  9 14:37:13 server.pretendco.com kdc[4802]: Asked for LKDC, but there is none
    Jan  9 14:37:13 server.pretendco.com sandboxd[395] ([4802]): kdc(4802) deny file-read-data /private/etc/krb5.conf
    Jan  9 14:37:22 server.pretendco.com kdc[4802]: Got a canonicalize request for a LKDC realm from local-ipc
    Jan  9 14:37:22 server.pretendco.com kdc[4802]: Asked for LKDC, but there is none
    Jan  9 14:37:23 server.pretendco.com digest-service[9961]: digest-request: uid=0
    Jan  9 14:37:23 server.pretendco.com digest-service[9961]: digest-request: init request
    Jan  9 14:37:23 server.pretendco.com digest-service[9961]: digest-request: init return domain: SERVER2 server: SERVER2 indomain was: <NULL>
    Jan  9 14:37:23 server.pretendco.com digest-service[9961]: digest-request: uid=0
    Jan  9 14:37:23 server.pretendco.com digest-service[9961]: digest-request: init request
    Jan  9 14:37:23 server.pretendco.com digest-service[9961]: digest-request: init return domain: SERVER2 server: SERVER2 indomain was: <NULL>
    Jan  9 14:37:23 server.pretendco.com digest-service[9961]: digest-request: uid=0
    Jan  9 14:37:23 server.pretendco.com digest-service[9961]: digest-request: od failed with 2 proto=ntlmv2
    Jan  9 14:37:23 server.pretendco.com digest-service[9961]: digest-request: user=SERVER2\\username
    Jan  9 14:37:23 server.pretendco.com digest-service[9961]: digest-request: kdc failed with 36150275 proto=unknown
    Jan  9 14:37:23 server.pretendco.com digest-service[9961]: digest-request: guest failed with -1561745590 proto=ntlmv2
    Jan  9 14:37:23 server.pretendco.com digest-service[9961]: digest-request: uid=0
    Jan  9 14:37:23 server.pretendco.com digest-service[9961]: digest-request: init request
    Jan  9 14:37:23 server.pretendco.com digest-service[9961]: digest-request: init return domain: SERVER2 server: SERVER2 indomain was: <NULL>
    Jan  9 14:37:23 server.pretendco.com digest-service[9961]: digest-request: uid=0
    Jan  9 14:37:23 server.pretendco.com digest-service[9961]: digest-request: init request
    Jan  9 14:37:23 server.pretendco.com digest-service[9961]: digest-request: init return domain: SERVER2 server: SERVER2 indomain was: <NULL>
    Jan  9 14:37:23 server.pretendco.com digest-service[9961]: digest-request: uid=0
    Jan  9 14:37:23 server.pretendco.com digest-service[9961]: digest-request: od failed with 2 proto=ntlmv2
    Jan  9 14:37:23 server.pretendco.com digest-service[9961]: digest-request: user=SERVER2\\codywood
    Jan  9 14:37:23 server.pretendco.com digest-service[9961]: digest-request: kdc failed with 36150275 proto=unknown
    Jan  9 14:37:23 server.pretendco.com digest-service[9961]: digest-request: guest failed with -1561745590 proto=ntlmv2
    I suspect the problem is to do with Kerberos and in relation to this server being an OD Replica.
    I would really appreciate anyone's insight into this.
    Thanks
    Morgs

    I have the same problem although I upgraded from Lion Server to Mountain Lion Server. The error appears to go hand in hand with this error.
    userInit: CFPreferences: user home directory for user kCFPreferencesCurrentUser at /Network/Servers/fullyqualifieddomainname/Users/user is unavailable. User domains will be volatile.
    I've read a number of things to try. A lot of people point to DNS being a problem, but I'm confident this is correct in my environment.

  • User cannot connect to backend system with user J2EE_ADMIN.

    I am using Rapid Installer to initiate the second part of the installtion "ERP 6.0 EhP 3 – Self-Service Scenarios and Automatic Roles".  When I get to the J2EE User section to enter the parameters, the user is defaulted to "Administrator" and I enter my password.  I click next and get this message "User cannot connect to backend system with user J2EE_ADMIN."  Any ideas?

    If this is a double stack installation, you need to enter J2EE_ADMIN as user, NOT administrator.
    Markus

  • Domain users cannot connect to the network folders when logged in via rds remote apps

    Hi,
    recently I setup an RDS farm for remote apps on server 2012 r2.
    all users can connect to the apps published. no problems there.
    but when users connect via rds they cannot connect to the networkfolders and cannot store the resultance of there work (docx and xlsx files)
    all users are normally connected to the networkfolders using a small login batch file handing down the unc path needed. when I log in as domain admin, also using a login batch, connections are setup correctly. It seems to me to be an security issue on the
    rds session host.
    how to alter this?
    greetz, Fons
    Fons system and network engineer Balie Amsterdam

    Hi,
    Thank you for posting in Windows Server Forum.
    We use WMI to communicate with the RDSH server. Various issues can cause WMI to deny access or return error codes. Here's a few things you can try:
    1.  Check if the "TS Web Access Computers" security group on the RDSH server has incorrect permissions in DCOM and/or WMI:
       For checking DCOM security settings:
       1. Start the Component Services MMC snapin
       2. Navigate to Component Services -> Computers -> My Computer
       3. Right-click on My Computer and select properties
       4. Go to the COM Security tab
       5. Under Access Permissions, click the Edit Limits button
       6. Ensure that TS Web Access Computers is in the list, with all of the permissions set to “allow”.
       7. Under Launch and Activation Permissions, click the Edit Limits button
       8. Ensure that TS Web Access Computers is in the list, with all of the permissions set to “allow”.
       For checking WMI security settings:
       1. Start the WMI Control MMC snapin
       2. Right-click the WMI Control node and select properties
       3. Go to the Security tab
       4. Navigate to Root->CIMV2->TerminalServices
       5. With TerminalServices selected, click the Security button
       6. Ensure that TS Web Access Computers is in the list with Execute Methods, Enable Account, and Remote Enable set to "allow"
    2.  Verify the RD Session Host server's firewall allows WMI calls.
    3. Verify that the RD Connection Broker hasn't lost its trust relationship with the domain.
    4. See if non-RDS related WMI calls can be successfully made to the RDSH server. This can help differentiate between a general WMI issue and an issue calling the RDS WMI provider.
    (Quoted from following thread.)
    RemoteApp Source not working from RDWeb
    http://social.technet.microsoft.com/Forums/windowsserver/en-US/173d4546-e12f-47c1-ac66-8b4f69826892/remoteapp-source-not-working-from-rdweb?forum=winserverTS
    Hope it helps!
    Thanks.
    Dharmesh Solanki

  • User cannot connect to SCCM 2012 R2 CAS site from any location

    I have a strange issue happening with only one of my users. No matter where he attempts to connect from, his console session gets hung up at
    “Connecting to Site Database”.  He is the only one of my users having this issue and was able to connect up to a few days ago.  I originally thought the issue was his user profile on
    our RDS server farm, so I removed his profile with no improvement.  I even tried to have him RDP to my CAS server and use the main console from there, but he gets the same result.
    Any idea where I should look?
    Thanks.
    Scott

    smsprov.log on the CAS.
    Torsten Meringer | http://www.mssccmfaq.de

  • Users cannot connect to shares or sync Exchange via company wifi

    Hello, I am posting this because my users can connect to the company wifi (guest and private) with no problem.  They can use the internet, but nobody can reach network shares, nor can they setup or sync Exchange email via the wifi.  Currently, anybody with a smartphone must be on 3g or 4g in order to get their email onsite.  Laptops with wifi capability must be connected via ethernet cable in order to get to network shares and email.  I've searched and searched, but cannot find anything on this.  Anyone have ideas?                  

    Hi Luis,
    I am using a Cisco ASA 5510 with two Cisco AP 2600's.  After digging in their configuration settings, I was able to see that the AP's IP addresses are completely different than our internal IP's, which would explain why Exchange isn't able to sync.  Unless I am misunderstanding how they work, shouldn't they be giving out the same Ip scheme as the ASA?  (i.e. ASA IP scheme: 10.0.10.XXX, AP IP scheme: 174.XXX.XXX.XXX)
    Your help is greatly appreciated.
    Thank you,
    Jye

  • One user cannot connect to safari.

    Good morning. We have developed a strange new problem lately that I cannot solve. On our Mac mini running 10.5 we have one user setup for our kids, and one administrator. As of yesterday the kids' account cannot connect to the internet with Safari or Firefox, however, the administrator can. I have tried all the usual routines, trashing cashes/prefs, repairing permissions, etc. I tried this morning creating a guest account to see what happens, and the guest account can also connect to the internet with no problems!
    The only thing that changed lately is my Mac Pro asked me to upgrade the airport utility and firmware, so I did.
    Any ideas? This is very frustrating and confusing.
    Thanks
    Josh

    josh bosse wrote:
    the kids' account cannot connect to the internet with Safari or Firefox
    What type of account are they using, managed, standard, or administrator? If they are using a managed account, how are the parental controls set?

  • Wifi chipset incompatibility issues? 2 users cannot connect

    i recently purchased a couple of Airport Extreme (n) WAP's for my office. I ended up only connecting 1 of them in the centre of the office (so-to-speak), and replaced 4 previous WAPs. Very Impressive!!!
    i have 2 users who cannot connect though (conversely i have 11-15 who have no problem).
    in looking at the log file using the Airport Utility, i see the following error lines:
    Mar 14 12:24:05 5 Installed unicast TKIP key for supplicant 00:14:a4:34:cd:19
    Mar 14 12:24:07 5 Deauthenticating with station 00:14:a5:1f:b7:62 (reserved 2).
    Mar 14 12:24:07 5 Disassociated with station 00:14:a5:1f:b7:62
    Mar 14 12:24:07 5 Associated with station 00:14:a5:1f:b7:62
    Mar 14 12:24:08 5 Deauthenticating with station 00:14:a4:34:cd:19 (reserved 2).
    Mar 14 12:24:08 5 Disassociated with station 00:14:a4:34:cd:19
    Mar 14 12:24:10 5 Deauthenticating with station 00:14:a5:1f:b7:62 (reserved 2).
    Mar 14 12:24:10 5 Disassociated with station 00:14:a5:1f:b7:62
    Mar 14 12:24:10 5 Associated with station 00:14:a5:1f:b7:62
    Mar 14 12:24:11 5 Associated with station 00:14:a5:1f:b7:62
    Mar 14 12:24:11 5 Associated with station 00:14:a4:34:cd:19
    Mar 14 12:24:11 5 Deauthenticating with station 00:14:a5:1f:b7:62 (reserved 2).
    Mar 14 12:24:11 5 Disassociated with station 00:14:a5:1f:b7:62
    Mar 14 12:24:11 5 Installed unicast TKIP key for supplicant 00:14:a4:34:cd:19
    Mar 14 12:24:12 5 Deauthenticating with station 00:14:a5:1f:b7:62 (reserved 2).
    Mar 14 12:24:12 5 Disassociated with station 00:14:a5:1f:b7:62
    Mar 14 12:24:12 5 Associated with station 00:14:a5:1f:b7:62
    Mar 14 12:24:13 5 Deauthenticating with station 00:14:a5:1f:b7:62 (reserved 2).
    Mar 14 12:24:13 5 Disassociated with station 00:14:a5:1f:b7:62
    Mar 14 12:24:13 5 Associated with station 00:14:a5:1f:b7:62
    Mar 14 12:24:14 5 Deauthenticating with station 00:14:a5:1f:b7:62 (reserved 2).
    Mar 14 12:24:14 5 Disassociated with station 00:14:a5:1f:b7:62
    Mar 14 12:24:14 5 Deauthenticating with station 00:14:a4:34:cd:19 (reserved 2
    it appears to be only these two people, who both have MAC Addresses starting with 00:14, which is an Atheros(?) wireless chipset? is my only option to give these users a pcmcia wifi card? One is a Dell Laptop (Vista), one is an IBM Laptop (XP) - but i suspect this is a compatibility issue with the chipset and the AP...
    thoughts or ideas?
    <br<br>
      Other OS  

    One more detail. Last school year our Xserve, iMacs and MacBook Pro systems all ran Mac OS 10.8.5.

  • User cannot connect to exchange server

    I have rounded up all of the usual suspects and am at a loss here. A user has been running in offline mode for a while. The ability to uncheck offline mode is greyed out. Pinged my Exchange server by name to see if resolves from this PC. It does. Renamed
    .ost so a new one would be generated. No help. I removed the Outlook profile in Control Panel>mail and tried to create a new one. I get the cannot connect to Exchange error. I tried to log in as him on my PC and have the same results. I do not see any issues
    with his account on my Exchange server. Any ideas to check on next? Never had one do this before.
    Brian Gilmore Lead IT Technician Don-Nan Pump & Supply

    This type of error generally occurs when user had disabled Encryption of data between Microsoft
    Office Outlook and Microsoft Exchange profile , and default configuration of Exchange requires RPC encryption from Outlook client , which is not available, so this error is displayed.
    To solve this issue you may try any of these solutions below:
    1. Disable the encryption requirement on all CAS servers.
    2. Try to manually update your Outlook profile with RPC encryption.
    3.
    Expand Group Policy settings to update existing Outlook profiles with RPC encryption
    Hope this will work for you !!!

  • User cannot connect phone to account

    I have a single user account that cannot connect devices.  I can connect to other accounts from the device with exact settings, but not this users account.  I know this is basic, but I am stumped.  How can I troubleshoot this?  

    Hello
    tip: http://support2.microsoft.com/kb/2579075
    and 
    https://technet.microsoft.com/en-us/library/dd439375%28v=exchg.80%29.aspx?f=255&MSPPError=-2147217396
    sorry my english
    The Owner Rights security principal did not have Full Control permissions on the user account that was trying to synchronize the device.

  • Windows SMB users cannot connect to 10.5.4 server

    Hi all,
    Have a server running 10.5.4 bound to AD and running an OD to provide management of the Macs. Pretty standard setup and haven't had any problems elsewhere with the same deployment. However we're having a problem with XP users connecting to SMB shares. Mac users can connect over AFP or SMB fine, XP users are getting a "Network path could not be found" error. What's more the errors in the SMB log on the server aren't too descriptive. We're getting a few broken pipe errors, but no indication of what's causing that. XP machines don't appear to be getting to the authentication stage.
    Server is an Xserve with a Promise RAID, shares are on a 4TB partition, bound to AD (OD not running Kerberos). SMB setup seems to be correctly aware of the AD.
    Anyone any ideas?
    Thanks

    Is your SMB a Standalone or Domain Member?
    I have a similar problem and noticed that if I change SMB from "Domain Member" to Standalone Windows users can connect. Now every so often Leopard Server will change SMB back to a Domain Member (automatically).
    I have the Server bound to AD. AFP works for the Macs no matter what. Mac Users authenticate to AD and mount the share. However if they try to use SMB, it fails for the Macs as well if SMB is a Domain Member.
    I would like to stop Leopard from not reverting back or fix the "domain member" problem.
    The fact that I can connect while it's a Standalone suggests, to me, that it's not a permissions problem. As well the failure carries to the Mac side means it's not a Windows issue.

  • Satellite internet users cannot connect to Flash based online multiplayer games

    Hello,
    I have found that Satellite internet users are unable to
    connect to the game Club Penguin because of the recent security
    fixes that have been added to the flash player over the last 6
    months or so. Club Penguin used to require at least Flash Player 7
    to run, at this time satellite users could connect.
    They recently upgraded their system to require Flash player 9
    or higher, since this update no satellite users can connect if they
    have the newest versions of Flash. If they revert back to the Flash
    Player 9r47 they can then connect to the game. Of coarse this opens
    the computer up to the exploits that have been fixed.
    Anyone have any idea of how to notify Adobe of this issue? Or
    possibly another way to make it work with the newest versions of
    Flash Player?

    Does this problem with your Internet satellite happen only with this game? You might want to contact your Internet provider as I'm sure they will be able to work with Adobe in fixing the problem.

Maybe you are looking for