How to fix 8 common remote desktop connection problems – TechTargetby September 3, 2022
ra2 studio – Fotolia
When the remote desktop connection between a Windows desktop and its host fails, it’s time to do some remote desktop troubleshooting by checking firewalls, security certificates and more.
There are many remote desktop connection problems that administrators may encounter, including network failure, Secure Sockets Layer certificate issues, authentication troubles and capacity limitations.
As a desktop admin, you can prevent and solve common remote desktop problems by using these tips.
A lack of a valid communications path can prevent a client from connecting to a remote desktop session. The easiest way to diagnose this issue is through the process of elimination.
First, try to establish a session from a client that has been able to successfully connect in the past. The goal is to find out if the problem is specific to an individual client, the network or a terminal server/Windows server.
If you suspect the network might be to blame, try to narrow down the scope of the issue to find the root cause. In doing so, you might discover that the problem affects wireless connections but not wired ones. Likewise, you may discover the problem is unique to VPN traffic or a particular subnet.
It’s easy to dismiss the notion that a firewall could contribute to a remote desktop not working, but it’s quite common. To avoid firewall problems, ensure that the port your remote desktop software uses is open on any firewalls residing between client computers and the server they connect to. Remote Desktop Protocol (RDP)-based tools use RDP port 3389 by default.
You may need to configure multiple firewalls. For example, the client and the server may both run Windows Defender Firewall, and there will probably be one or more hardware firewalls between the two systems.
Some public networks block RDP traffic. This setting is especially common for Wi-Fi networks found in some hotels, airports and coffee shops.
Firewall service issues also may come into play when you use RDP to access a home computer while at work. Some organizations configure their corporate firewall to block outbound RDP traffic, thereby preventing connectivity to remote systems.
You can check to make sure that the Windows Defender Firewall service allows RDP traffic by completing these steps:
Security certificates can also cause remote desktop connection problems. Many VDI products use Secure Sockets Layer (SSL) encryption for users that access VDI sessions outside the network perimeter. But SSL encryption requires the use of certificates, which creates two problems that can cause a remote desktop to not work.
First, if remote desktops are going to connect properly, client computers must trust the certificate authority that issued the certificate. This isn’t usually a problem for organizations that purchase certificates from large, well-known authorities, but clients won’t always trust the certificates an organization generates in-house. Use a reliable certificate authority to ensure that clients establish remote desktop connectivity.
If you’re using a certificate provided by an enterprise certificate authority, it is important to note that network clients do not automatically trust the certificate. You will need to download a copy of the certificate authority’s root certificate and add it to the client’s certificate store in a way that allows it to trust the certificate authority associated with the certificate.
The client must also be able to verify the certificate the server uses. The verification process can break down if the certificate has expired or if the name on the certificate doesn’t match the name of the server using it.
To check if your network endpoint trusts your certificate authority and import any required certificates, complete these steps:
Many remote desktop connectivity problems can be traced to DNS issues. If an admin changed a host’s IP address, then clients might not be able to connect to the host until the client’s DNS resolver cache expires. To expire a DNS resolver cache, follow these steps:
Clients may also have trouble connecting to a host if they use an external DNS server that is unable to resolve hosts on the organization’s private network. The fix for this problem is to modify the client’s IP address settings so it uses one of the organization’s DNS servers rather than an external DNS.
As an alternative, you may be able to connect to a remote system by specifying its IP address rather than a host name. To determine whether an endpoint is connected to the correct DNS server, complete the following steps:
For users to access a remote resource through the Remote Desktop Services, formerly known as Terminal Services, you must assign them the Logon Through Remote Desktop Services right. Otherwise, the users will receive an error when they try to connect to the remote resource. To make sure you have the proper permissions assigned, complete these steps on the remote server:
You could also experience remote desktop connectivity issues if you exceed infrastructure capacity. In an organization with virtual desktops or VDI, for example, clients may be unable to connect if the available licenses have been depleted. Some VDI implementations also refuse client connections if the server is too busy or if launching another virtual desktop session would weaken the performance of existing sessions.
Sometimes the client can establish an RDP session, but the available bandwidth is inadequate to support the session’s requirements. Depending on the RDP client used, this problem can manifest itself in a variety of ways.
The session may appear to freeze, or you might see a black screen. In some cases, the client may drop the connection and display a message that says ‘Reconnecting.’ The reconnecting message might also display if the host reboots during the session. This could occur if you have recently installed a Windows update.
If you suspect there might not be enough bandwidth to support the RDP session, try closing any applications that may be consuming bandwidth. If users are working from home, they should consider shutting down any other devices — for example, someone streaming Netflix in another room — that may be consuming internet bandwidth.
You can adjust the RDP client to use a lower display resolution or color depth and disable visual features such as font smoothing or the Windows background. To reduce the bandwidth consumption of the native Windows RDP client, follow these steps:
RDP connectivity can sometimes fail due to issues with the Credential Security Support Provider (CredSSP) protocol. The CredSSP provides a means of sending user credentials from a client computer to a host computer when an RDP session is in use.
In 2018, Microsoft updated the CredSSP to fix a security vulnerability. Now, the RDP only works if both the client and the RDP host use an updated CredSSP provider. If a system does not include an up-to-date CredSSP provider, the client will typically display an authentication error. Depending on which RDP client you use, this error may even indicate that the issue was caused by CredSSP.
The best way to fix this is to ensure that both the client and the host are running supported Windows versions and both systems are fully updated. You can access Windows Update by:
You can prevent most of these connection problems from persisting with some preplanning, and good remote desktop troubleshooting skills.
Understanding remote desktop connection management tools
Part of: Remote desktop troubleshooting for IT administrators
When the connection between a desktop and its host fails, it’s time to do some remote desktop troubleshooting. Check firewalls, security certificates and more if a remote desktop is not working.
Admins forced to troubleshoot a Microsoft RDP session getting stuck at configuration must understand these key steps to fix their issue and be able to adapt these steps to their environment.
Without a solid connection, remote desktops simply cannot function. When there are remote desktop connection issues, IT administrators should follow these steps.
Businesses have delayed and reduced their desktop and laptop orders from HP and Dell, executives reported. The PC market has …
The shift to Chromium has improved several aspects of Microsoft’s Edge browser — from privacy settings to reliability.
Whether organizations automate their log monitoring within Windows desktops or inspect them manually, logs can offer IT …
VMware plans to change products, strategic direction and marketing to keep up with customers rushing to deploy multi-cloud …
IBM and VMware expanded their long-held partnership with a deal to provide hybrid cloud services and consulting to IT pros in …
Updates to VMware’s flagship vSphere and vSAN software keep pace with enterprise interest in hybrid cloud infrastructure for …
This year’s VMware conference runs from Aug. 29 to Sept. 1. Read the latest news and announcements about and from the event, …
Background features and processes can often take up precious OS resources. With VMware’s OS Optimization Tool, you can run …
Learn how container management products from VMware, Red Hat and Hewlett Packard Enterprise compare when it comes to their …
All Rights Reserved, Copyright 2008 – 2022, TechTarget