Remote desktop not allowed between two Windows 8.1 pro pcs

PC1 client of a domain

PC2 notebook (no domain)

User (in remote access) is a domain administrator and also pc1 admin.Logon is not allowed from pc2 to pc1 with the following message:

"The system administrator has restricted the types of logon (network or interactive) that you may use. For assistance, contact your system administrator or technical support."

no problem if I use a PC with Windows 7 or XP

The standard configurations for remote access are equal for the two pc: no network authentication is required"

Thanks

May 23rd, 2014 9:57am

roa2012,

If you haven't already, ensure through the Local Group Policy Editor that you have the right groups added for allowing who can log on through Remote Desktop Services.  The item can be found under Computer Configuration>Windows Settings>Security Settings>Account Policies>Local Policies>User Rights Assignment

Mike

Windows Outreach Team IT Pro

Free Windows Admin Tool Kit Click here and download it now
May 23rd, 2014 2:25pm

Thanks, Mike.

I have the security configuration that you suggest, but the problem is always on air.

Another information is that I can connect ,with remote desktop, to PC1 using the built-in administrator of the domain controller. So now I can connect to PC1:

  • logging me as Domain Built In admnistrator (not with other administrators of Domain or of PC1)
  • using Windows XP pro / win7 pro  remote Desktop

I am not able to understand.

May 24th, 2014 2:55am

Hi,

Enable the two policies below on PC1 to check how it works:

  1. Computer Settings\Policies\Administrative Templates\Windows Components\Remote Desktop Session Host\Security\Require use of specific security layer for remote (RDP) connections

        Set Security Layer to RDP

2.   Computer Settings\Policies\Administrative Templates\Windows Components\Remote Desktop Session Host\Security\ Require user authentication for remote connections by using Network Level Authentication

Set to Di

Free Windows Admin Tool Kit Click here and download it now
May 26th, 2014 6:40am

Thanks Alex.

I set:

Computer Configuration\Administrative Templates\Windows Components\Remote Destop Services\Remote Desktop Session Host\Security\ Require user authentication for remote connections by using Network Level Authentication  to disabled

Computer Configuration\Administrative Templates\Windows Components\Remote Destop Services\Remote Desktop Session Host\Security\ENABLED (RDP)

as you suggest, in the following combination

  • on PC1 only
  • on PC1 and PC2
  • on PC1 and PC2 and DOMAIN SERVER(Group policy)

in administrator cannot connect in Remote Desktop also . Perhaps, I should go back to Windows 7 pro.

May 26th, 2014 11:16am

Oops! I loose some text.

Thanks Alex.

I set:

Computer Configuration\Administrative Templates\Windows Components\Remote Destop Services\Remote Desktop Session Host\Security\ Require user authentication for remote connections by using Network Level Authentication  to disabled

Computer Configuration\Administrative Templates\Windows Components\Remote Destop Services\Remote Desktop Session Host\Security\ENABLED (RDP)

as you suggest, in the following combination

  • on PC1 only
  • on PC1 and PC2
  • on PC1 and PC2 and DOMAIN SERVER(Group policy)

the only two things that changed are:

  • the error message ("Unable to connect to remote computer")
  • the built-in administrator cannot connect in Remote Desktop also

Perhaps, I should go back to Windows 7 pro.

Free Windows Admin Tool Kit Click here and download it now
May 26th, 2014 11:21am
I have similar problem. Have you worked out yet? 
September 26th, 2014 12:10am

Same problem here, any answers? This looks like a bug to me.

I my case though I have found a workaround. Using the same scenario outlined in the original questions. Say PC1 is in domain A and PC 2 is in domain B (A and B are in different forests with no trust set between them)

When trying to log on from PC2 to PC1 first use a user from Domain B, which will of course fail in PC1 but it will at list connect to RDP and display the message "The user name or Password is incorrect. Try again". Hit ok, now you will be asked for credentials on the regular windows 8 screen rather than the RDP prompt. No using the user from domain A to log in works. If I tried on the first prompt for credentials from RDP I get the error stated before:

"The system administrator has restricted the types of logon (network or interactive) that you may use. For assistance, contact your system administrator or technical support."

Thanks.

Ernesto


Free Windows Admin Tool Kit Click here and download it now
May 20th, 2015 3:06pm

Same problem here, any answers? This looks like a bug to me.

I my case though I have found a workaround. Using the same scenario outlined in the original questions. Say PC1 is in domain A and PC 2 is in domain B (A and B are in different forests with no trust set between them)

When trying to log on from PC2 to PC1 first use a user from Domain B, which will of course fail in PC1 but it will at list connect to RDP and display the message "The user name or Password is incorrect. Try again". Hit ok, now you will be asked for credentials on the regular windows 8 screen rather than the RDP prompt. No using the user from domain A to log in works. If I tried on the first prompt for credentials from RDP I get the error stated before:

"The system administrator has restricted the types of logon (network or interactive) that you may use. For assistance, contact your system administrator or technical support."

Thanks.

Ernesto


May 20th, 2015 7:05pm

This topic is archived. No further replies will be accepted.

Other recent topics Other recent topics