Configure Microsoft Remote Desktop
Microsoft Remote Desktop Services RDS allows users to access centralized applications and workstations in the data center remotely. Microsoft RDS is the new expanded and renamed Microsoft Terminal Services.
In this post I will document the implementation of RDS in my home lab using an ‘all-in-one’ configuration. VBoring Blog Series:. RDS Architecture Server Roles in RDS: There are three core roles to setup a RDS environment and are as follows:.
Remote Desktop Session Host RDSH: Applications are installed and published from the Session Host servers. Remote Desktop Connection Broker RDCB: This role handles user sessions by load balancing among the RD Session Host servers. Also allows disconnected users to reconnect to their existing sessions without starting a new one. Remote Desktop Web Access RDWA: This role provides a web portal to access the RDS environment. Also allows Windows 7 & 8 desktops to connect using the RemoteApp and Desktop Connection. The follows roles are not required but add additional abilities to RDS:. Remote Desktop Gateway RDG: This role enables remote users to use the Remote Desktop Protocol (RDP) over HTTPS. It is placed on the edge of your network and acts as the entry point to your RDS environment externally.
Install Microsoft Remote Desktop Connection
Remote Desktop Virtualization Host RDVH: This allows RDS integration with a Hyper-V hypervisor to manage virtual desktops. Licensing: RDS comes with a 120 day trial period. When the trial period ends RDS will no longer accept connections. The RDS License role handles the licensing for RDS.
For additional reading about the roles for RDS check out the Installing RDS Roles: When setting up RDS you have the option of running the three core roles run on a single server or separate each role onto its own server. If you are setting RDS up for a lab or a small environment then a all-in-one setup would save you hardware resources. If your environment is large you will want to separate these roles to spread the resources across multiple servers. No matter which setup you pick they both can scale outward depending on user growth.
For my documentation I went with a single server called a Quick Start setup. To start open Server Manager then click Manager - Add Roles and Features Click Next Change the selection to Remote Desktop Services Installation then click Next In my environment I will have the three core RDS roles running on a single VM (all-in-one con. If you have a large number of users you will run through the Standard deployment where the three core services run on separate servers. If you pick a Quick Start setup you can add additional servers to each role to allow expansion. Either option will allow you to grow with your environment! We are setting up application publishing.
Change selection to Session-based desktop deployment and click Next Since we did the Quick Start selection the Connection Broker, Web Access and Session Host roles will be installed on the single server. Click Next Check the box labeled Restart the destination server automatically if required then click Deploy Here is what the progress window looks like. In my install it rebooted after the Remote Desktop Services role but did not for Session Collection and RemoteApp. Once finished click Close. Remote Desktop Services is now installed!
Publishing Applications:- A collection is a logical grouping of RDSH servers that application can be published from. Note: Each RDSH server can only participate in a single collection If you went through the Quick Setup of RDS it will create a collection called “ QuickCollection” that contains the applications Wordpad, MS Paint, and Calculator.
To add applications to the collection, click Tasks - Publish RemoteApp Programs It will scan your RDSH for installed applications and display them in a list. I have the vSphere Client installed, select your application then click Next Confirm your application selection(s) and click Publish Click Close to complete the publish process RemoteApp Global Permissions: By default the QuickSessionCollection gives all Domain Users access to Remote App programs. To change this click Tasks - Edit Properties Click User Groups. If you wanted to add or remove users Click Add and search.
If you want to remove Domain Users you must first add a user or group first before you can remove it. (There has to be at least 1 in User Groups) Once you have a second user or group you can now remove Domain Users. Remember this is at the Collections level.
By default all RemoteApp programs inherit these permissions. RemoteApp Program Permissions: If you want to change the inherent permissions of a RemoteApp, select the application - right click and click Edit Properties Click User Assignment - then change the option to Only specified users and groups. You can now Add and Remove the permissions inherit from the collection. In my example I wanted only my VMware Admins AD group to have permission to the vSphere Client. Click Apply and Ok to save you changes. Accessing RemoteApp Programs via the Web Access: To access your newly deployed RDS environment enter the following address of your RDWeb Access into your browser.
Allow the add-on to run if prompted. Once logged in you will see applications that you have access to. If you went through the Quick Setup of RDS it will have created a “Collection” that contains Calculator, MS Paint and Wordpad. Click on a application to launch it. If you get a certificate error click Continue. The application should launch!
If you go to Help - About you will see Server 2012 instead of the local OS. The application is being ran on the RDSH server and are only viewing it via RDS.
Continue reading – Part 2.
On Windows 10, Microsoft introduced a new Remote Desktop app, which you can download from the Windows Store, and it aims to make it easier for anyone to connect to another computer over a local network or an internet connection. However, the app is just one piece of the puzzle. In order to successfully connect to other Windows devices remotely you must properly configure the computer you're trying to access and forward the correct port on your router. In this, we'll walk you through the steps to configure your computer and network to allow remote connections, and the steps to use the Remote Desktop app to start a remote session. How to allow remote connections on your PC Using the Remote Desktop app is a straightforward process, but the setup you'll need will depend if you're trying to initiate a remote desktop connection over the local network or the internet.
How to enable remote connections on your PC If you're trying to start a remote connection inside your local network, you only need to make sure the computer you're trying to access is configured to allow to handle remote desktop. Important: Windows 10 Home doesn't include support for remote desktop connections, you can only enable this feature on Windows 10 Pro and business variants of the operating system.
To allow a remote PC to accept remote connections, do the following:. Amd radeon hd 4800 specs. Open Control Panel. Click on System and Security. Click on Allow remote access. Under Remote Desktop make sure to select Allow remote connections to this computer. Click Apply. Click OK to complete the task.
After you completed the steps, your computer will allow remote desktop connections, and Windows 10 will even add the necessary rules in the firewall. If you're setting up a remote desktop using an internet connection, you can continue with the steps below.
If not you can skip to. How to set up remote access over the internet If you're planning to access your computer remotely over the internet, in addition to configuring the system properties, you'll need to set up your local router to allow remote connections to past through. And you will need to know your public IP address to contact your device over the internet. How to set a static IP address for your PC Most computers inside a private network are assigned dynamic IP addresses, which can change at any time. If you'll be using remote desktop regularly, it's recommended to configure your computer with a static IP address, so you don't have to reconfigure the port forwarding settings every time your device gets a new IP address. Open Control Panel.
Click on Network and Internet. Click on Network and Sharing Center. On the left page, click the Change adapter settings link. Right-click your network adapter and select Properties. Select Internet Protocol Version 4 (TCP/IPv4). Click the Properties button.
On the General tab, select the Use the following IP address. Enter a valid local IP address that is outside of the DHCP scope to prevent IP address conflicts in the network. For example, 10.1.2.150. (You can find this information in the DHCP settings section on your router). Enter a subnet mask for the network.
On most home networks, the subnet mask usually is 255.255.255.0. Enter the default gateway information, which is the IP address of your router. For example, 10.1.2.1. Under 'Use the following DNS server addresses', remember to enter the IP address of your DNS server, which in most cases is the IP address of your router. (If you can't connect to the internet, you may want to try using Google Public DNS addresses: 8.8.4.4 and 8.8.8.8.). Click OK.
Click Close to complete the task. Quick Tip: You can find your IP address information using the ipconfig command in Command Prompt. How to find your public IP address If you're trying to access your computer remotely over the internet, you'll need to know your public IP address in order to contact your device. The easiest way to find your public IP address is by opening your web browser, and while in Bing.com or Google.com, do a search for 'What's my IP'. Your public IP address should be the first result. Keep in mind that most internet providers offer dynamic public IP addresses for residential customers, which means that your public IP address may change from time to time. Of course, there are many services out there that offer DDNS (Dynamic Domain Name System) services that can help you track when your public IP address changes, such as NoIP and DynDNS.
Alternatively, you can contact your internet service provider to get a static IP address for an additional fee to your internet bill. How to forward a port on a local router To allow remote connections over the internet to a particular computer within a private network, you'll need to forward the TCP port 3389 on your router. Open Command Prompt. Type the following command and press Enter: ipconfig. Note the IPv4 Address information, which is the address that identifies your computer on the local network.
Also, note the Default Gateway, which is the IPv4 address of your router. Open your web browser. Type the IPv4 address of your router and press Enter. Sign in to your router with your username and password.
Browse through the available settings and find the Port Forwarding section. Make sure Port Forwarding is enabled. Under the port forwarding list add the required information, including:. Service name: This mane is only for reference, you can use any name you want. Port Range: Enter the TCP port number 3389. Local IP: Enter the IPv4 address of your computer.
For example, 10.1.2.150. Local Port: Enter the same TCP port number 3389.
Protocol: Select TCP. Make sure to add the new rule to the router. Save the configuration to apply the new settings. It's important to note that most routers their own interface; check your router's user manual to find out where to change the Port Forwarding settings. How to start a remote desktop connection Once your computer and network are configured properly to allow remote connections, starting a remote desktop session is a piece of cake.
On the device you'll be using to connect to your computer remotely, open the Remote Desktop app. (If you don't have the app,.
Click the add (+) button in the top-right corner. Click the Desktop option. Enter the IP address (recommended) or the name of the PC you're trying to connect:. If you're trying to connect to a PC inside a private network, then enter the local IP address of the PC you're trying to connect. If you're trying to connect to a PC over the internet, then enter the public IP address of the PC you're trying to connect. Click Add account.
Enter the information to sign-in on the remote computer:. If the remote computer is using a Microsoft account, then enter that Microsoft account sign-in information.
If the remote computer is using a local account, then enter the local username and password to sign-in. Click the Save button. Click the Save button again to add the connection to your list. On the list of available connections, click the computer to which you want to connect to start a remote desktop connection.
If you get a certificate warning from a trusted computer, check the Don't ask about this certificate again option. Click Connect to complete the task. If everything is working correctly, you will now be connected remotely to your computer inside a private network or over the internet. When you need to change settings for a particular connection, you can right-click the computer from the list, and click on Edit. On Edit a Desktop, you can update the IP address and user account. If you click More, you'll be able to configure additional options, including display name for the connection, gateway information, and you can choose whether the audio from the remote computer plays on your device.
Additionally, you will get the option to connect to an admin section and switch mouse buttons. How to troubleshoot a remote desktop connection In most cases, after everything has been configured, you'll be able to start a remote desktop connection without problems. However, if you can't connect, below you'll find some troubleshooting steps that may help you to resolve the connection issue. While enabling remote connections to you computer also configures the Windows Firewall automatically, you want to make Remote Desktop is allowed to pass through the firewall. You can check this setting on Control Panel System and Security Windows Firewall Allowed apps. If you have a third-party firewall or antivirus, you may want to disable these applications to see if you can connect. It's unlikely, but if you're trying to connect over the internet, it's possible that your internet service provider is blocking the port to allow remote desktop.
If this is the case, you may want to contact your provider to see how you can open the specified port. Stick to IP address and don't use computer name, as it could cause problems if not configured correctly.
When adding a new computer to the list on Remote Desktop, make sure you enter the correct IP address: Local IP address to connect inside a private network or public IP address to connect over the internet. Remote Desktop Connection vs. Remote Desktop app If you've used remote desktop in the past, you may also be familiar with the Remote Desktop Connection utility built in, and now you're probably wondering if there is any difference with the Microsoft Remote Desktop app you get from the Windows Store. While both applications have the same functionality, the new Remote Desktop app offers an entirely new interface that matches the new app design language on Windows 10, and it's available across platforms, including Windows 10 PCs, Android, iPhone, iPad, and Mac. You can also save your remote connections for faster access to a device, and you get options to quickly connect to Azure RemoteApp and Remote Resources. In addition, unlike the Remote Desktop Connection utility, you can't manually adjust the connection speed experience and certain resources, but most of these features are handled automatically using the Remote Desktop app. And if you used remote desktop in the past, you'll notice that the image quality in the new app isn't the same as the old utility.
However, it's good enough to remote in a PC and get your work done. Wrapping things up In this guide, we walked you through all the necessary steps to connect to your PC remotely inside a private network and through the internet. However, it's important to note that allowing remote desktop connections to your PC (in particular through the internet) carries its security risks. You should always be aware that configuring remote desktop and opening ports on your router could allow malicious individuals to get unauthorized access to your device.
Use this guide with caution, always use strong passwords, and disable the remote desktop and port forwarding on your router when they aren't needed. Do you usually connect remotely to your computer? Tell us in the comments below. More Windows 10 resources For more help articles, coverage, and answers on Windows 10, you can visit the following resources:.