Share via

Enable allowing RDP connections through GPO does not work

Pompadour Informatica 6 Reputation points
2022-01-13T15:52:19.92+00:00

Hello.

I have a GPO that enables remote desktop on my computers ("Computer Configuration >> Administrative Templates >> Windows Components >> Remote Desktop Services >> Remote Desktop Session Host >> Connections >> Allow users to connect remotely via Remote Desktop Services")

This GPO create the Key (HKLM\software\Policies\Microsoft\Windows NT\terminal services\fDennyTSConnections - value 0) in the computers.

But RDP connections are not established (in remote desktop configuration we see that it is blocked by group policy but the RDP mark is as disabled).

If I unlink the GPO and enable remote desktop manually, the RDP connections work correctly, so we suspect that there is a problem with the application of this GPO.

What could be happening?

PS: The rest of the GPOs work correctly.

Best regards.

Windows for business | Windows Client for IT Pros | User experience | Remote desktop services and terminal services
Windows for business | Windows Client for IT Pros | Networking | Network connectivity and file sharing
Windows for business | Windows Server | User experience | Other
Windows for business | Windows Client for IT Pros | User experience | Other
0 comments

5 answers

Sort by: Most helpful
Most helpful Newest Oldest
  1. Limitless Technology 39,926 Reputation points
    2022-01-14T09:28:54.05+00:00

    Hello PompadourInformatica

    Not sure which specific policy you refer to inside the folder, but unless is the fDenyTSConnections, any value as 0 would be a Disabled.

    I would try instead with the policy Computer Configuration >> Administrative Templates >> Windows Components >> Remote Desktop Services >> Remote Desktop Session Host >> Connections.
    On the right-side panel. Double-click on Allow users to connect remotely using Remote Desktop Services as Enabled.

    --If the reply is helpful, please Upvote and Accept as answer--

    1 person found this answer helpful.
    0 comments
  2. Pompadour Informatica 6 Reputation points
    2022-01-14T12:25:55.957+00:00

    I was referring to the GPO "Allow users to connect remotely via Remote Desktop Services"

    sorry, I've already edited it

    1 person found this answer helpful.
  3. Bryce 1 Reputation point
    2022-04-18T21:02:56.417+00:00

    I am experiencing the same issue. I set this up for my test groups and even a PC that already had it turned off was disabled after run gpupdate /force.

  4. Nick Doud 6 Reputation points
    2022-06-29T16:39:53.863+00:00

    [11:35 AM] Nick Doud

    It used to be called Remote Desktop (TCP-In)

    NOW it is called Remote Desktop - User Mode (TCP-In)

    [11:36 AM] Nick Doud

    The GPO I have does the following things for Remote Desktop;

    Computer Configuration -> Policies ->Administrative Templates -> Windows Components -> Remote Desktop Services -> Remote DEsktop Session Host -> Connections -> "Allow users to connect remotely by using Remote Desktop Services" = Enabled

    Computer Configuration -> Policies -> Windows Settings -> Security Settings -> Local Policies -> User Rights Assignment -> "Allow log on through Terminal Services" = Administrators, DOMAIN\Domain Admins, Remote Desktop Users

    Computer Configuration -> Policies -> Windows Settings -> Security Settings -> Windows Firewall with Advanced Security -> Inbound Rules -> "Remote Desktop (TCP-IN)" = Enabled for Domain & Private

    0 comments
  5. Dirk Haex 81 Reputation points
    2022-10-28T21:04:02.637+00:00

    With what user are you trying to RDP?
    Is that user member of the remote desktop users group on that machine? Otherwise it won't work. (admins will of course)

    0 comments

Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.