This topic has 11 replies, 2 voices, and was last updated 3 years, 3 months ago by Denis Shchepetov.

  • Author
    Posts
  • #4671

    Hello,
    This is my first attempt at adding RDS to MSPC, and I’m having some issues.

    I added my first session host to Settings/Servers, and configured all those settings.
    When I go to Settings/RDS servers and try to add a RDS SH server, this is the error that’s logged on the Connection broker.
    It looks like it doesn’t have access to do the task, but I’m not sure what permissions are required.
    I suspect a specific account needs to be a domain admin (given that servers have to be moved to specific OU’s, but which account??

    [11/23/2016 9:18:31 AM] ERROR: ‘Remote Desktop Services Windows 2012’ GetServerNetBiosName
    System.Management.Automation.CmdletInvocationException: Access is denied. (Exception from HRESULT: 0x80070005 (E_ACCESSDENIED)) —> System.UnauthorizedAccessException: Access is denied. (Exception from HRESULT: 0x80070005 (E_ACCESSDENIED))
    at System.Runtime.InteropServices.Marshal.ThrowExceptionForHRInternal(Int32 errorCode, IntPtr errorInfo)
    at System.Management.ManagementScope.InitializeGuts(Object o)
    at System.Management.ManagementScope.Initialize()
    at System.Management.ManagementObjectSearcher.Initialize()
    at System.Management.ManagementObjectSearcher.Get()
    at Microsoft.PowerShell.Commands.GetWmiObjectCommand.BeginProcessing()
    at System.Management.Automation.Cmdlet.DoBeginProcessing()
    at System.Management.Automation.CommandProcessorBase.DoBegin()
    — End of inner exception stack trace —
    at System.Management.Automation.Runspaces.PipelineBase.Invoke(IEnumerable input)
    at MSPControl.Providers.RemoteDesktopServices.RdsRunspaceExtensions.ExecuteShellCommand(Runspace runspace, List`1 scripts, Object[]& errors)
    at MSPControl.Providers.RemoteDesktopServices.Windows2012.GetServerNetBiosName(String fqdName)
    at MSPControl.Server.RemoteDesktopServices.GetServerNetBiosName(String fqdName)

    0
    Be the first one to like this.
    Please wait...
    #4672

    Hi Bogdan!

    Our best practice is to istall MSPC Server on broker and then give that account domain admin rights. Also, be sure that you have Cenral NPS installed, configured and added to settings in panel.

    0
    Be the first one to like this.
    Please wait...

    Best regards,
    Denis Shchepetov, MSPC support lead, software producer.
    E-mail: d@hosting.build

    #4673

    Ok – I understand now.
    I’ve already added the account to domain admin (I figured if it needs to move AD computers in various OU’s, it has to have that.

    Could you please tell me what is (in this context, under RDS in panel):
    Root OU
    Computers Root OU

    Right now I’m getting this error, and I suspect it’s because I don’t know how those 2 OU’s are supposed to work together.

    [11/24/2016 6:22:20 PM] ERROR: ‘Remote Desktop Services Windows 2012’ MoveSessionHostToRdsOU
    System.Runtime.InteropServices.COMException (0x80005000): Unknown error (0x80005000)
    at System.DirectoryServices.DirectoryEntry.Bind(Boolean throwIfFail)
    at System.DirectoryServices.DirectoryEntry.Exists(String path)
    at MSPControl.Providers.RemoteDesktopServices.Windows2012.CheckOrCreateComputersRoot(String computersRootPath)
    at MSPControl.Providers.RemoteDesktopServices.Windows2012.MoveSessionHostToRdsOU(RdsServer rdsServer)
    at MSPControl.Server.RemoteDesktopServices.MoveSessionHostToRdsOU(RdsServer rdsServer)

    0
    Be the first one to like this.
    Please wait...
    #4675

    UPDATE:
    Now I’m getting “MoveSessionHostToRdsOu” -> 0x80072030 There is no such object on the server.

    I suspect this is one of the OU’s but they both exist.

    0
    Be the first one to like this.
    Please wait...
    #4676

    UPDATE:
    Was able to add the server to “RDS SERVERS”.

    Next issue I have is when I try to add a rds server to a client.

    MoveRdsServerToTenantOu – There is no such object on the server.

    Bummer.

    Any ideas?

    0
    Be the first one to like this.
    Please wait...
    #4677

    UPDATE:
    Ok, so Root OU is your “Hosted Orgs” OU.

    0
    Be the first one to like this.
    Please wait...
    #4678

    And gateway server should be internal name.

    It finally create a session collection, but when I add users to the “allowed”, even though mspc shows membership, in active directory no users are added.

    I have this in the event log:

    Server was unable to process request. —> Some or all identity references could not be translated.
    at System.Web.Services.Protocols.SoapHttpClientProtocol.ReadResponse(SoapClientMessage message, WebResponse response, Stream responseStream, Boolean asyncCall)
    at System.Web.Services.Protocols.SoapHttpClientProtocol.Invoke(String methodName, Object[] parameters)
    at MSPControl.Providers.HostedSolution.Organizations.GetAclIssues(String organizationId, String[] rdsCollections)
    at MSPControl.EnterpriseServer.OrganizationController.CheckAclIssues(Int32 itemId)

    And when I try to edit generic properties of a user in this org (like password never expires), I get this:
    Server was unable to process request. —> Unknown name. (Exception from HRESULT: 0x80020006 (DISP_E_UNKNOWNNAME))
    at System.Web.Services.Protocols.SoapHttpClientProtocol.ReadResponse(SoapClientMessage message, WebResponse response, Stream responseStream, Boolean asyncCall)
    at System.Web.Services.Protocols.SoapHttpClientProtocol.Invoke(String methodName, Object[] parameters)
    at MSPControl.Providers.HostedSolution.Organizations.SetUserGeneralSettings(String organizationId, String accountName, String displayName, String password, Boolean hideFromAddressBook, Boolean disabled, Boolean locked, String firstName, String initials, String lastName, String address, String city, String state, String zip, String country, String jobTitle, String company, String department, String office, String managerAccountName, String businessPhone, String fax, String homePhone, String mobilePhone, String pager, String webPage, String notes, String externalEmail, Boolean userMustChangePassword, Boolean passwordNeverExpires)
    at MSPControl.EnterpriseServer.OrganizationController.SetUserGeneralSettings(Int32 itemId, Int32 accountId, String displayName, String alternateEmailAddress, String password, Boolean hideAddressBook, Boolean disabled, Boolean locked, Boolean excludedFromIUReport, String firstName, String initials, String lastName, String address, String city, String state, String zip, String country, String jobTitle, String company, String department, String office, String managerAccountName, String businessPhone, String fax, String homePhone, String mobilePhone, String pager, String webPage, String notes, String externalEmail, String subscriberNumber, Int32 levelId, Boolean isVIP, Boolean userMustChangePassword, Boolean passwordNeverExpires, Int32 locationId)

    Any thoughts?

    0
    Be the first one to like this.
    Please wait...
    #4679

    Actually, I get this for all users in webpanel.
    Weird.

    Server was unable to process request. —> Unknown name. (Exception from HRESULT: 0x80020006 (DISP_E_UNKNOWNNAME))
    at System.Web.Services.Protocols.SoapHttpClientProtocol.ReadResponse(SoapClientMessage message, WebResponse response, Stream responseStream, Boolean asyncCall)
    at System.Web.Services.Protocols.SoapHttpClientProtocol.Invoke(String methodName, Object[] parameters)
    at MSPControl.Providers.HostedSolution.Organizations.SetUserGeneralSettings(String organizationId, String accountName, String displayName, String password, Boolean hideFromAddressBook, Boolean disabled, Boolean locked, String firstName, String initials, String lastName, String address, String city, String state, String zip, String country, String jobTitle, String company, String department, String office, String managerAccountName, String businessPhone, String fax, String homePhone, String mobilePhone, String pager, String webPage, String notes, String externalEmail, Boolean userMustChangePassword, Boolean passwordNeverExpires)
    at MSPControl.EnterpriseServer.OrganizationController.SetUserGeneralSettings(Int32 itemId, Int32 accountId, String displayName, String alternateEmailAddress, String password, Boolean hideAddressBook, Boolean disabled, Boolean locked, Boolean excludedFromIUReport, String firstName, String initials, String lastName, String address, String city, String state, String zip, String country, String jobTitle, String company, String department, String office, String managerAccountName, String businessPhone, String fax, String homePhone, String mobilePhone, String pager, String webPage, String notes, String externalEmail, String subscriberNumber, Int32 levelId, Boolean isVIP, Boolean userMustChangePassword, Boolean passwordNeverExpires, Int32 locationId)

    0
    Be the first one to like this.
    Please wait...
    #4680

    Correction:

    Not all users, at this point looks like just the ones that were imported using the enterprise importing tool (from websitepanel days).

    0
    Be the first one to like this.
    Please wait...
    #4681

    Yes.. it looks like my setup has issues modifying user attributes. This explains why it cannot add users to the group.
    This is a problem for another day, but any ideas are appreciated.

    0
    Be the first one to like this.
    Please wait...
    #4682

    Error executing ‘ADD_RDS_COLLECTION’ task on ” REMOTE_DESKTOP_SERVICES —> System.Web.Services.Protocols.SoapException: Server was unable to process request. —> The server is not operational.

    I had to un-install and reinstall due to having a .lan for the domain name (hat to switch to .ca for ssl).
    Now.. when I try to recreate the collection I get this error.

    0
    Be the first one to like this.
    Please wait...
    #4683

    Hi Bogdan! Looks like you had a great time with yourself lol

    I’d recommend you to enable logging level 3 in web.config for your MSPC Server located on broker. Then try to reproduce issue and check log. Most probably you’ll see some request with servername and then this error “server not operational” and you’ll see who’s the bad guy. Probably it’s because of incorrect FQDN or enabled firewall or changed IP or…

    0
    Be the first one to like this.
    Please wait...

    Best regards,
    Denis Shchepetov, MSPC support lead, software producer.
    E-mail: d@hosting.build

Viewing 12 posts - 1 through 12 (of 12 total)

The topic ‘RDS deployment’ is closed to new replies.

©2020 MSPControl | Privacy Policy

Log in with your credentials

or    

Forgot your details?

Create Account