Windows 2008 R2 TS VPN connection closed when another user logs in

Similar Messages

• Firefax hangs in remote desktop when another user logs in on the console

  When I work with remote desktop on a windows 7 pc I could always use firefox without any problem, even when someone else was logged in on the same windows 7 machine. Siince the update of firefox to version 13, ff hangs in the remote desktop session as soon as someone else logs in on the wndows 7 console.

  To be specific, this problem occurs in a multiple concurrent user configuration (=hack), where the RDC user and console users are simultaneous users. Firefox will hang, using 50% of the CPU. As soon as the RDC user walks over to the console and switches to that user the hang is released. The behavior is new to v13 and is highly reproducible.
  For more info on multiple concurrent users:
  [http://www.missingremote.com/guide/how-enable-concurrent-sessions-windows-7-service-pack-1-rtm http://www.missingremote.com/guide/how-enable-concurrent-sessions-windows-7-service-pack-1-rtm]

• Windows 2008 member server, repeating event 4625 in the security log

  Hello,
     I'm having an issue with a member server on our 2008 domain, security log is filling up with event 4625, here are the details:
  Log Name:      Security
  Source:        Microsoft-Windows-Security-Auditing
  Date:          4/23/2014 2:04:42 PM
  Event ID:      4625
  Task Category: Logon
  Level:         Information
  Keywords:      Audit Failure
  User:          N/A
  Computer:      my.member.server
  Description:
  An account failed to log on.
  Subject:
   Security ID:  NULL SID
   Account Name:  -
   Account Domain:  -
   Logon ID:  0x0
  Logon Type:   3
  Account For Which Logon Failed:
   Security ID:  NULL SID
   Account Name:  
   Account Domain:  
  Failure Information:
   Failure Reason:  Unknown user name or bad password.
   Status:   0xc000006d
   Sub Status:  0xc000006a
  Process Information:
   Caller Process ID: 0x0
   Caller Process Name: -
  Network Information:
   Workstation Name: -
   Source Network Address: 10.0.0.115
   Source Port:  51366
  Detailed Authentication Information:
   Logon Process:  Kerberos
   Authentication Package: Kerberos
   Transited Services: -
   Package Name (NTLM only): -
   Key Length:  0
  This event is generated when a logon request fails. It is generated on the computer where access was attempted.
  The Subject fields indicate the account on the local system which requested the logon. This is most commonly a service such as the Server service, or a local process such as Winlogon.exe or Services.exe.
  The Logon Type field indicates the kind of logon that was requested. The most common types are 2 (interactive) and 3 (network).
  The Process Information fields indicate which account and process on the system requested the logon.
  The Network Information fields indicate where a remote logon request originated. Workstation name is not always available and may be left blank in some cases.
  The authentication information fields provide detailed information about this specific logon request.
   - Transited services indicate which intermediate services have participated in this logon request.
   - Package name indicates which sub-protocol was used among the NTLM protocols.
   - Key length indicates the length of the generated session key. This will be 0 if no session key was requested.
  Event Xml:
  <Event xmlns="http://schemas.microsoft.com/win/2004/08/events/event">
    <System>
      <Provider Name="Microsoft-Windows-Security-Auditing" Guid="{54849625-5478-4994-a5ba-3e3b0328c30d}" />
      <EventID>4625</EventID>
      <Version>0</Version>
      <Level>0</Level>
      <Task>12544</Task>
      <Opcode>0</Opcode>
      <Keywords>0x8010000000000000</Keywords>
      <TimeCreated SystemTime="2014-04-23T18:04:42.197Z" />
      <EventRecordID>99893119</EventRecordID>
      <Correlation />
      <Execution ProcessID="744" ThreadID="844" />
      <Channel>Security</Channel>
      <Computer>KLINEWEB.kline.local</Computer>
      <Security />
    </System>
    <EventData>
      <Data Name="SubjectUserSid">S-1-0-0</Data>
      <Data Name="SubjectUserName">-</Data>
      <Data Name="SubjectDomainName">-</Data>
      <Data Name="SubjectLogonId">0x0</Data>
      <Data Name="TargetUserSid">S-1-0-0</Data>
      <Data Name="TargetUserName">
      </Data>
      <Data Name="TargetDomainName">
      </Data>
      <Data Name="Status">0xc000006d</Data>
      <Data Name="FailureReason">%%2313</Data>
      <Data Name="SubStatus">0xc000006a</Data>
      <Data Name="LogonType">3</Data>
      <Data Name="LogonProcessName">Kerberos</Data>
      <Data Name="AuthenticationPackageName">Kerberos</Data>
      <Data Name="WorkstationName">-</Data>
      <Data Name="TransmittedServices">-</Data>
      <Data Name="LmPackageName">-</Data>
      <Data Name="KeyLength">0</Data>
      <Data Name="ProcessId">0x0</Data>
      <Data Name="ProcessName">-</Data>
      <Data Name="IpAddress">10.0.0.115</Data>
      <Data Name="IpPort">51366</Data>
    </EventData>
  </Event>
  The IP address that appears in source network address all belong to VPN clients. And it looks like its only happening with 4-5 IPs, all of which are VPN clients. These clients shouldn't be connecting to anything on this server, which is why its puzzling.
  Our DC is Windows 2008 and the VPN server is another member server on the domain. I suspect the issue is at the client PCs since there are many other VPN clients connected that don't generate the event ID.
  Can anyone tell what the issue might be?
  Thanks.

  Hi Rayminette,
  There are multiple login sources that could possibly be generating the errors:
  FTP logins - check your FTP log to see if login failures are showing up at the same time.
  Logins via Basic Authentication over http or https (simple, but possibly dangerous, way to password-protect a web site).
  ASP scripts.
  This logon type 8 indicates a network logon like logon type 3 but where the password was sent over the network in the clear text. Windows server doesn’t allow connection to shared file or printers with clear text authentication. The only situation
  I’m aware of are logons from within an ASP script using the ADVAPI or when a user logs on to IIS using IIS’s basic authentication mode. In both cases the logon process in the event’s description will list advapi. Basic authentication is only dangerous
  if it isn’t wrapped inside an SSL session (i.e. https). As far as logons generated by an ASP, script remember that embedding passwords in source code is a bad practice for maintenance purposes as well as the risk that someone malicious will view the source
  code and thereby gain the password.
  Reference from:
  What is the source of thousands of 4625 Logon Failure errors with Logon Type 8 (NetworkCleartext)?
  I hope this helps.

• IPlanet 6.0 SP2 restart on Windows NT when a user logs off the server.

  UPDATE: We have found that the iWS 6.0 only restart with JDK 1.3.1 installed for JSP pages. What is the best JDK to use?
  iPlanet 6.0 SP2 restart on Windows NT when a user logs off the server. If a admin or joe developer logs into the server (C+A+D) and does what ever... When the
  person logs off the NT 4.0 box ... ALL the httpd process restart. We have 80 & 443 & Admin. The processes are running under a user account. Any one have an idea why the process are restarting?"

  Hi,
  You can use following JDK version for Windows NT.
  And please check it out whether WinNT-SP6 as been installed in winNT box.
  Window NT:
  SDK and JRE 1.4 http://java.sun.com/j2se/1.4/
  SDK and JRE 1.3.1_02 http://java.sun.com/j2se/1.3/
  SDK and JRE 1.2.2_011 http://java.sun.com/products/jdk/1.2/
  JDK and JRE 1.1.8_009
  http://java.sun.com/products/jdk/1.1/download-jdk-windows.html
  I hope this helps.
  Regards,
  Dakshin.
  Developer Technical Support
  Sun Microsystems
  http://www.sun.com/developers/support.

• How to undo the automatically start program to when a user logs on

  I have followed this following directions (http://technet.microsoft.com/en-us/library/cc736643%28v=ws.10%29.aspx#BKMK_TSC) :
  "Using Terminal Services Configuration
  Open Terminal Services Configuration.
  In the console tree, click Connections.
  In the details pane, right-click the connection for which you want to specify an initial program, and then click
  Properties.
  On the Environment tab, under Initial program, select
  Start the following program when the user logs on. This option allows you to configure an initial program for the connection.
  If you select Do not allow an initial program to be launched. Always show desktop, then Terminal Services cannot start a specified initial program automatically when a client connects to a terminal server. Instead, the user must start programs
  by using the default desktop that is displayed during the Terminal Services session.
  If you select Run initial program specified by user profile and Remote Desktop Connection or Terminal Services client, then the program that is specified in the default user profile and in Remote Desktop Connection or the Terminal Services
  client will run when the client connects to the terminal server.
  If you selected Start the following program when the user logs on, in
  Program path and file name, type the path and file name of the program that you want to start when the user logs on to the terminal server.
  In Start in, type the working directory path for the program, and then click
  OK."
  the problem is that now all of the server users get the specific program automatically starts when logged on and i cant undo it because i cant get to the desktop or to the "tscc.msc"
  is there a way to fix it?

  Hi,
  Thanks for posting in Windows Server Forum.
  As this thread has been quiet for a while, we assume that the issue has been resolved. At this time, we will mark it as ‘Answered’ as the previous steps should be helpful for many similar scenarios. If the issue still persists, please feel free to  reply
  this post directly so we will be notified to follow it up. 
  BTW,  we’d love to hear your feedback about the solution. By sharing your experience you can help other community members facing similar problems. 
  Thanks for your Support & understanding.
  Regards.
  Dharmesh Solanki
  TechNet Community Support

• Pre populating the database field when a user logs into web forms

  Hi,
  When my users log into the web forms application I want the database name field to be pre populated, how do I do this, I presume it can be defined in the config files ?
  Thanks in anticipation.
  SDG.

  Hi,
  I think u are refering to the username, password, database field (connect string)
  here. If this is the case then you can use LOGON(username, password||'@'||connectstring) procedure and hardcode the connect string.
  Best Regards
  Rajesh Alex

• How do you make a program run when any user logs in?

  I have an application which will need to run when any users logs in.
  Such that Joe downloads and installs the application, logs out, then Sally logs in and the application runs for Sally.
  Does anyone know how to do this?

  Hey Steve, thanks for that link. It seems to be what
  I am looking for. What is the meaning of the
  ~/Library vs /Library ? They are definitely
  different folders.
  Yes, they are definitely different folders. The "~" character represents the current users home folder, so "~/Library" represents the Library folder that's located inside a users home folder. Anything placed in there will only affect the one user whose home folder you've accessed.
  The "/Library" folder is the Library folder that exists at to root of the boot volume. Things placed in this Library folder will affect all users of the system. Basically it's sort of a "global" Library.
  Also, from a script, how do I add an item to execute
  for that kind of PList?
  That could be tricky based on the structure of that particular plist file. I haven't really looked at it closely but one place you could start is to read the "man" page for the "defaults" command... enter "man defaults" in Terminal. The "defaults" command allows you to read/write plist files, but defaults is not very good at accessing deeply nested plist items.
  Related to that, how do I tell if the logging item
  for my App is already there? I do not want to keep
  adding to the list if it is there. If someone
  deletes my app and then reinstalls it, I do not want
  it to run twice, three times, etc..
  Again, you could possibly read the plist using the defaults command and determine whether your item was already present or not.
  Do you know of the one in the ~/Library path, what
  user it execute as? Since it is all users, it
  probably is root or something like that.
  No, the one in ~/Library is in each individual user home folder. It will execute with the current user's privileges. This is where Login Items normally go when you go through the GUI... "Sys.Prefs -> Accounts -> Login Items" and add a login item for one user.
  Even items placed in /Library, which should execute for all users, will execute with the current user's privileges.
  In the near
  future we might need root privileges, so I might need
  a program to startup for all users as root instead of
  the user.
  Is your app, that needs to run at login time, a GUI application or is it a faceless shell script (or something similar). Your original post gave me the impression that you needed to launch a GUI application. However, if it's a shell script then you probably want to look at doing a LoginHook instead of using the Login Items procedure at the web page I posted earlier. I believe a LoginHook will also give you the ability to run the script as root.
  Check out this link at the ADC website.
  or
  Take a look at this information and this utility at Mike Bombich's website.
  Steve

• How to create a logon script to delete folder, subfolders and contents when a user logs on ?

  I need to create a logon script which will delete a folder, subfolder and contents when a user logs on. I have no experience with scripting so any pointers you can give would be much appreciated.
  Thanks

  depending on how you have thing set up, it might be easier to make a LaunchAgent to handle this.  do this:
  copy the text below into a text editor
  save it as a plain text file in /Library/LaunchAgents with the file name "user.startup.folderDeleter.plist" (the name doesn't matter so much, but the 'plist' extension is required)
  load the plist into launchd by restarting the machine or by opening terminal and running the command launchctl load /Library/LaunchAgents/user.startup.folderDeleter.plist
  This will delete the folder any time any user logs in.  You could also expand this to delete the folder periodically (once a day, for instance) if that would be helpful.
  Note, this file must be saved as plain text. apps like TextEdit sometimes default to making rich text files which will not work.  Either download a programmer's text editor like TextWrangler, or make sure that TextEdit is using plain text (if the window has a formatting toolbar it's using rich text;  select "Make Plain Text" from the Format menu).
  copy the text below:
  <?xml version="1.0" encoding="UTF-8"?>
  <!DOCTYPE plist PUBLIC "-//Apple//DTD PLIST 1.0//EN" "http://www.apple.com/DTDs/PropertyList-1.0.dtd">
  <plist version="1.0">
  <dict>
            <key>Label</key>
            <string>user.startup.folderDeleter</string>
            <key>RunAtLoad</key>
            <true/>
            <key>ProgramArguments</key>
            <array>
                      <string>osascript</string>
                      <string>-e</string>
                      <string>tell application "Finder" to delete folder "Final Cut Express Data" of folder (path to preferences from user domain)</string>
                      <string>-e</string>
                      <string>tell application "Finder" to empty trash</string>
            </array>
  </dict>
  </plist>

• JSP session getting destroyed when second user logs in

  Hi,
  I am facing a session related problem in a small login program in jsp. I am using three jsp pages, login.jsp (user logs in), page1.jsp (creates a session and stores username) and page2.jsp (accesses session).
  Login.jsp:
  No jsp actually. Just a simple html form.
  Page1.jsp:
  String name=request.getParameter("Name");
  session=request.getSession(true);
  session.setAttribute("Name",name);
  Page2.jsp:
  session=request.getSession(false);
  if(session.isNew())
  System.out.println("new session created");
  String name=session.getAttribute("Name").toString();
  As expected, it works like session getting set at page1 and used at page2. It works good if users log in one by one. The problem arises when 2 (or more users with different logins) try to access the page at same time. When a new user logs in, the previous user session gets destroyed (session.isNew() becomes true and session Id changes).
  Is it the way I am using sessions (missing something), or there is some setting in tomcat server to specify maximum number of logins (sessions that can be handled).
  Regards
  Kamal

  Hi,
  Thanks for reply, but I guess the problem is not clear. Let me explain..
  A user logs in, he reaches first page (page1.jsp), here session is getting set. Then user goes to page2.jsp where application retrieves the information from session and uses it. It works all well.
  When two (or more) user logs in.. First user logs in, he reaches page 1, session is set. But then another user logs in (different id) and a session is set for him as well. Now the problem here is that session for first user gets destroyed at this point, which is unexpected (two sessions should not conflict, on different machines).
  Additionally, the problem does not happen necessarily at second login. eg. sometimes 4 users log in and when fifth one logs in, fourth gets logged out (session gets destroyed).
  I am not able to figure out, whether the problem is in code (given in first post) or there is some tomcat setting responsible for this behavior.
  Regards
  Kamal

• How to Keep all the Portal report menu's are "open" when the user logs on?

  Hi
  I have a question about the BI Portalu2019s configuration.  Does anyone know how to keep the Web Portal (i-vew) report menu's are "open" when the user logs on?
  Thanks.
  For example:
  Web Report Panel
  Report  Folder A 
                i-view  a1
                i-view  a2
                i-view  a3
                i-view  a4
                i-view  a5
                i-view  a6
  Report  Folder B 
                i-view  b1
                i-view  b2
                i-view  b3
                i-view  b4
                i-view  b5
                i-view  b6

  Hi,
  Thank you very much.  The problem is the Folder didn't 'open when the user logs on.  Yes, the iview can be openned.  Does anyone know how to set the default Open for the Folder.  My question is about the folder in BI portal.  Yes, the ivew we can set the defaul Open but we have Folder in the portal and our user wants to be able to see the report lists when they log on to the Portal.
  For example:
  Our Current situation
      Navigation Panel
     .>Act vs Plan report Folder_
     .>Year to Day report Folder_
  Hope To Be (When user logs on the BI Portal)
     Navigation Panel
      .>Act vs. Plan report Folder
          (i-view) Report A
          (i-view) Report B
          (i-view) Report C
          (i-view) Report D
          (i-view) Report E
  .>Year to Day report Folder
         (i-view)  Budget by Cost Element report
         (i-view)  Actual by Cost Center report
         (i-view)  Income statement report
         (i-view)  Balance Sheet report

• My computer freezes when a user logs out

  Since I updated to Tiger (10.4.5) from Panther (10.3.9) it often happens that, when a user logs out from his account, the computer freezes. The mouse arrow won't move, so it's not possible anymore for anyone to log back in. I have to hold the start-button to force the computer to a shutdown. After restart everything works fine.
  There are 3 other users (the kids) apart from my administrator account.
  Any idea what to do ?

  I suggest reinstalling the 10.4.5 COMBO update, repair permissions after restart, and restart again.

• Windows 2008 R2 RRAS VPN Issue

  Hello,
      I have a Windows 2008 R2 server configured with RRAS.  I have several persistent connections set up to do remote data backups.  After a while, the connections get disconnected and if I try to reconnect, I get an error message
  that states:
  An error occurred during connection of the interface.  A connection to the remote computer could not be established.  You might need to change the network settings for this connection.
  If I restart the RRAS service, then I can reconnect them all.  And they work fine until they get disconnected again.  The server is a standalone server, not part of a domain or anything.
  I previously had these connections set up on a 2003 server, and they worked pretty flawlessly.  It's only since I changed to this new server that these issues started.  Anyone know what the issue could be?
  Thanks.

  Is that Event ID 20167?
  Is there a DHCP Relay Agent configured?
  I assume the DHCP server has enough free IPs to hand out to RRAS when needed. RRAS grabs a block of 10 IPs from DHCP at a time to use for connections.
  How long is the lease?
  References:
  Event ID 20167 — RRAS IPCP Negotiation - Resolution
  http://technet.microsoft.com/en-us/library/dd315994(v=ws.10).aspx
  Not enough IPs in DHCP Scope:
  http://www.eventid.net/display.asp?eventid=20167&eventno=5288&source=RemoteAccess&phase=1
  Routing and Remote Access VPN DHCP error - DHCP lease too short
  http://social.technet.microsoft.com/Forums/windowsserver/en-US/58e62df7-ce40-4814-b522-6785e230c869/routing-and-remote-access-vpn-dhcp-error?forum=winserver8gen
  Ace Fekay
  MVP, MCT, MCSE 2012, MCITP EA & MCTS Windows 2008/R2, Exchange 2013, 2010 EA & 2007, MCSE & MCSA 2003/2000, MCSA Messaging 2003
  Microsoft Certified Trainer
  Microsoft MVP - Directory Services
  Complete List of Technical Blogs: http://www.delawarecountycomputerconsulting.com/technicalblogs.php
  This posting is provided AS-IS with no warranties or guarantees and confers no rights.

• Oracle Client for Windows 2008 R2 server to connect to Oracle database 9iR2

  Hi,
  We are running Oracle 9.2.0.7 on Sun solaris (64 Bit) 5.10 and trying to install client on new Windows 2008 R2 (64 - bit) server. (Before this 2008 R2 we were using Windows 2003 32 bit and 9iR2 client was working great.) I can't install 9iR2 clinet and I tried installing 10gR1, 10gR2 and 11gR1 but none of them worked. It is only allowing me to install 11gR2. When I installed 11gR2 client I am getting some 'overflow exception on an arithmetic operation' error.
  1.) Do I have any choice for client installation or only 11gR2?
  2.) Any solution for overflow error?
  Thanks,
  -H

  May I know the reason why ODBC driver is not include in option like Runtime?Oracle software utilizes SQL*Net (not ODBC) to connect to Oracle RDBMS.
  ODBC is not required by Oracle client software to connect to Oracle RDBMS.

• Windows 2008 R2 intermittently getting access denied when logging in

  Hi, 
  I recently built 2 new Virtual Machines. They both run on Hyper-V (version 6.2x).
  One is Windows 2008 R2 standard and the other Windows 2008 R2 Datacenter. These are both remote desktop servers. 
  These are both connected to a domain. 
  The domain controller is linux/samba based, this will mimic the Windows NT4 style domain controller environment. 
  Within each Virtual Machine I have a remote desktop users group, that is a staff group. 
  Intermittently users get an access denied error when logging on. This only happens when logging on as domain users. 
  If this happened all the time, I might think the machine needed to be removed and re-added to the domain but as it's intermittent, I don't see the trust relationship as the problem. 
  Any ideas? 
  Thanks

  Hi,
  Thanks for your post in Windows Server Forum.
  Before providing you some information, I would like to get some more information to resolve your issue.
  - Have you notice any specific error when trying to remote login?
  - Did you check GPO setting option “Allow log on through Remote Desktop Services”
  As group policy and the user group are interrelated with each other. There are 2 types of user rights.
  (1)   Logon rights  (2) Privileges
  These two plays an important part in allowing an RDP session to the server. Also need to check in GPO Setting for more option.
  a. Allow log on through Remote Desktop Services : Users\Group must be added for Remote Session
  b. Deny log on through Remote Desktop Services : Users\Group must not be added for Remote Session
  For checking the setting in GPO follow below path:
  - Start > Run >gpedit.msc
  - Computer Configuration\Windows Settings\Security Settings\Local Policies\User Rights Assignment
  For more information, refer beneath article.
  “Allow Logon through Terminal Services (Remote Desktop Services)” group policy and “Remote Desktop Users” group.
  http://blogs.technet.com/b/askperf/archive/2011/09/09/allow-logon-through-terminal-services-group-policy-and-remote-desktop-users-group.aspx
  Hope This Helps!
  Thanks.

• Data Protection Manager 2012 on Hyper-V Windows 2008 R2 and NAS connectivity

  Hi, we currently use Symantec Backup Exec 2010/2012 on Windows 2008 R2 servers storing the data on two LAN-connected NAS servers. As part of our MS licensing package, we have obtained System Center 2012. I'm seeing if DPM can replace our BE software, but
  I'm running into a major hurdle, I can't connect (Add) either of the NAS machines. I see on DPM posts where you need to have a physical connection to the NAS (iSCSi or fiber channel) not an option on the NAS (Thecus N8800 & N8900 (no ability to add cards)
  and SMB 3.0 (appears to be a Windows 2012-only option ... I dread 2012 and don't want to move to it right now). Can my virtualized (hyper-v) W2008 R2 server see a non-connected NAS and if so, how do I pull this off.
  Thanks

  Hi 
  DPM needs local storage to connect to. you cannot use a NAS or USB device to backup to like with other backup software.