Unable to Remote into my Windows Server 2008 Machine using Remote desktop

i have full version of windows 2008 server standard edition installed (fresh install)

i've enabled remote desktop allow version of remote desktop connect

have shut off firewalls (including windows firewall on server) between server , client machines

machine(s) try remote desktop on same network subnet server

can ping server fine, can remote desktop server clients

im trying remote in administrator , default admin can remote in have no clue i'm missing here.

btw tried vista machines, xp machines, , 2003 server , nothing works.

if have ideas please help..thanks!

 

hi,

 

there lots of factors may lead issue. list common ones below reference. please check them 1 one , provide corresponding results.

 

1)windows firewall service stopped

 

due security concern, windows server 2008 block establish remote desktop connection if windows firewall service stopped on it. if disable windows firewall service,  please enable in service console of windows server 2008.

 

in addition, if hope close windows firewall, can use following command disable all:

 

netsh advfirewall set allprofiles state off

 

2) permission

 

a user needs have following rights establish remote desktop connection windows server 2003 terminal server:

 

1.    allow log on through terminal services

2.    rdp-tcp connection “user access” , “guest access” permissions

3.    “allow logon terminal server” in user property

 

please perform following steps check them 1 one check permissions:

 

step 1: allow logon through terminal services

-------------------------------------------

to connect terminal server properly, users need granted "allow logon through terminal services" right. if server domain controller, users need have "allow logon locally" right. understand have checked local access policy rights. please check group policies applied domain or ou have higher priority , override configuration of local policy.

 

1. logon administrator, click start -> run, type "rsop.msc" in text box, , click ok.
2. locate [computer configuration\windows settings\security settings\local policies\user rights assignment] item.
3. check "allow log on locally" item see whether policy defined. if so, "source gpo" column displays policy defines policy. please ensure "administrators", "remote desktop users", "backup operators", "account operators", "print operators", "server operators" granted right. if different, please configure corresponding policy grant permission.
4. check "allow log on through terminal services" item see whether policy defined. if so, "source gpo" column displays policy defines policy. please ensure "administrators", "remote desktop users", , other desired users granted right. if different, please configure corresponding policy grant permission.
5. check "deny log on locally" item see whether policy defined. if so, "source gpo" column displays policy defines policy. please ensure user or user groups remote user belongs not included in right. if so, please modify corresponding policy remove them.
6. check "deny log on through terminal services" item see whether policy defined. if so, "source gpo" column displays policy defines policy. please ensure user or user groups remote user belongs not included in right. if so, please modify corresponding policy remove them.
7. click start -> run, type "cmd" in text box, , click ok.
8. run following command refresh policy on both domain controller , terminal server:

 

gpupdate /force

 

9. wait while group policy replicated , try connect server again.

 

step 2: allow logon terminal server

------------------------------------

to grant user these permissions, start either active directory users , computers snap-in or local users , groups snap-in, open user’s properties, click terminal services profile tab, , click select allow logon terminal server check box.

 

step 3: check ts permission

----------------------------

i understand may have checked setting. reference, please double check setting again:

 

1. open terminal services configuration snap-in.
2. right click rdp-tcp item, , click properties.
3. in permissions tab, click "advanced".
4. click "default" button set permission default state.
5. close rdp-tcp properties dialog.
6. reopen ensure remote desktop users group has "user access" , "guest access" permission, administrators has full control permission, , there no deny entries.
7. click ok.

 

if issue still persists, please provide me following information:

 

what exact error message word word when failing remotely logon window server 2008?

 

please install telnet server feature on server , use windows xp client run following command , test whether 3389 port normal:

 

telnet <ip> :3389

 

hope helps. if need further assistance, please post back.

 

Windows Server  >  Windows Server General Forum