2

I've got several Windows servers, all with the remote desktop session host role installed, and all normal domain users have starting getting "access is denied" messages when logging in. I've had to give normal users local administrative rights in order for them log in, but for lots of reason this is temporary and I cannot leave all users having local admin rights. Removing the session host role does fix the problem, but these servers are in an RDS farm and need the role installed.

I've checked just about everything I can think of - there were some minor GPO changes the day this started and I've gone through all the GPOs looking for anything obvious. I've removed those GPOs from the relevant OUs, and have added fresh servers, but the problem still occurs. Anyone ever seen this sort of problem with remote desktop session hosts?

Improve this question
1
  • Is RDS licensing working properly? Commented Sep 10, 2020 at 16:37

1 Answer 1

Reset to default
0

But what does the Event log have on the server regarding this issue? What OS the clients are using?

You should also check out the installed OS updates on the server too. Maybe a recently installed security update causing this. For example the update KB4103715 has been released recently which addresses some issue regarding the RDP service (CredSSP updates for CVE-2018-0886).

Improve this answer

You must log in to answer this question.

Start asking to get answers

Find the answer to your question by asking.

Ask question

Explore related questions

See similar questions with these tags.