Windows Server 2003 Remote Desktop



Remote

I often use the Windows Remote Desktop function to connect and remotely manage another Windows server. As you might know, there are many other better remote control software such as the free Virtual Network Computing (VNC) or even the popular Teamviewer, but I try to minimize the installations of third party software on the Server machines. Remote Desktop can be secured using SSL/TLS in Windows Vista, Windows 7, Windows 8, Windows 10 and Windows Server 2003/2008/2012/2016.Some systems listed are no longer supported by Microsoft and therefore do not meet Campus security standards. Okay, so I have here a server that has Windows Server 2003 Enterprise (R2 SP2) on it. It will currently only let us have 2 remote desktop sessions at a time. Oct 14, 2020 To do it, follow these steps: On the server, sign in to the server locally (not using Remote Desktop/Terminal Client). Select Start, Run, type tscc.msc /s (without quotation marks and select OK). In the Terminal Services Configuration snap-in, double-click Connections, then RDP-Tcp in the right pane.

Introduction to How to Configure Remote Desktop – Remotely

One of the most annoying situations is when you know that the Windows 2003 Server is up and running, but you cannot connect because Remote Desktop has not been setup. However, if you have the knowledge, then there is a backdoor called fDenyTSConnections which will turn the key to that backdoor.

Of all the services on Windows Server 2003 or 2008, Remote Desktop is the one service where you most need to plan ahead. The reason I say this is not because configuring Remote Desktop is difficult, quite the reverse; no my reason is to save you frustration.

Topics for Remotely Editing, Remote Desktop

Enabling Remote Desktop Mission

Our goal is to use a backdoor registry hack to enable Remote Desktop on Windows Server 2003. Fortunately, Microsoft’s Windows Server 2003 has the Terminal Services installed and built-in. So, our mission is merely to put a tick in Remote Desktop box, which you find in the System Icon, Remote tab.

Let us pretend that you wish to add another service such as RRAS or Certificate Server to a Windows Server 2003 machine. Inconveniently, this machine is the other side of town, or the other side of the world. The answer is regedit and fDenyTSConnections

How to find fDenyTSConnections in the Registry

Windows Server 2003 Remote Desktop

The technique of how I found the ‘fDenyTSConnections’ setting is instructive in its own right.

  1. Launch Regedit.
  2. Export the registry on the test machine.
  3. Next manually place the tick in the box
  4. Export the registry again.
  5. Run WinDiff to find the single change in the registry.
  6. What I found was that fDenyTSConnections had changed from 1, meaning deny Remote Desktop, to 0 meaning enable, permit that remote desktop connection.
  7. To be quite certain of the double negative logic, find fDenyTSConnections and experiment with adding and removing the tick in the Remote Desktop box.

Note: For more instructions on using Windiff see here

Now our mission is clear, on the Terminal Services machine, change fDenyTSConnections from =1 to =0. In order to achieve our mission we need to connect to the registry of the target machine. Magic s2 download. My first choice would be Remote Registry. Open regedit, File Menu, Connect Network Registry. Naturally, you have to connect to the correct registry hive,
HKLMSystemCurrentControlSetControlTerminal Server, now find the Reg_DWord called fDenyTSConnections and set the value = 0 (zero)

Note: You may have to Start the Remote Registry Service on the target machine. See here for a WMI Script to start services.

Unfortunately, you have to restart the Windows Server 2003 before the fDenyTSConnections setting takes effect. There must be service that you could start and stop but I have not found which one that is. Instead I use the shutdown command with the restart switch.

Guy Recommends: A Free Trial of the Network Performance Monitor (NPM) v12

SolarWinds’ Network Performance Monitor will help you discover what’s happening on your network. This utility will also guide you through troubleshooting; the dashboard will indicate whether the root cause is a broken link, faulty equipment or resource overload.

Windows Server 2003 Remote Desktop

Perhaps the NPM’s best feature is the way it suggests solutions to network problems. Its second best feature is the ability to monitor the health of individual VMware virtual machines. If you are interested in troubleshooting, and creating network maps, then I recommend that you give this Network Performance Monitor a try. Acd free nmr software.

Shutdown Command – Remote switch

Shutdown /m targetserver /r

The /r means restart. Mr Angry wrote in saying it should not be /m and /r but -m and -r. Personally, I find that either a minus or slash works equally well. With shutdown, beware shooting yourself in the foot and shutting down your own machine instead of the target Windows Server 2003, it sounds hilarious, but actually it’s embarrassing. Again knowledge is power there is a switch to abort a shutdown.

Another clever idea I have is using a .reg file. One reason for adding fDenyTSConnections to the registry from a file is that the remote registry service is disabled on the target machine. So you have a choice of strategies, start the Remote Registry service remotely with a script see here, or remotely execute a .reg file with a shell program.

Windows server 2003 remote desktop connection limit

Summary of Terminal Services and fDenyTSConnections

Here we have a precise, but tricky task. We want to enable Remote Desktop on a distant Terminal Server even though Remote Desktop is specifically denied on that distant server. Even if you have no need to configure fDenyTSConnections yet, you may like the challenge of testing the technique. You never know that you may need the combination of Windiff and remote registry editing to solve a similar Microsoft problem.

Windows Server 2003 Remote Desktop Connection

If you like this page then please share it with your friends

Related topics

  • Terminal Services Concepts