hamburger
close

Blog

January 23, 2014
Category: rds-2012
Tags: microsoft, microsoft-windows, rdp, rds, rds12, rds2012, remote-desktop, remote-desktop-connection, remote-desktop-protocol, remote-desktop-services, remote-desktop-services-2012, server-2012, shadowing, windows-server-2008-r2, windows-server-2012

Shadowing RDS 2012 Sessions

Server 2012 R2 Remote Desktop Services brings a new feature called shadowing, which allows administrators to view sessions.

This can be done through the GUI or through the use of Command Line.

alt text

As you can see from the MSTSC Connection Usage help Window, there are three new commands that we can use for connecting to end user sessions. There are two types of Shadowing ( view & control) and the option to select "No Consent" which means you don't need the end user's approval/permission before connecting to their session.

Here is the command line for Shadowing:

```Mstsc.exe** [/shadow:sessionID [/v:Servername] [/u:[Username]] [/control] [/noConsentPrompt]]``

/shadow:ID Starts shadow with the specified sessionID.

/v:servername If not specified, will use the current server as the default.

/u:username If not specified, the currently logged on user is used.

/control If not specified, will only view the session.

/noConsentPrompt Attempts to shadow without prompting the shadowee to grant permission.

RDS GUI Shadowing:

As you can see from the screenshot provided above, there are three users showing in the connections task pane. By right clicking on the user, you will be presented with the following options:

Select Shadow and you will be presented with a Shadowing options box.

As mentioned earlier, you have the option of viewing , controlling and prompting for user consent. For this example we are going view and request the users permission to shadow their screen.

Once the request has been sent, you will see the Remote Desktop Connection loading box.

The requester will see this box until the end user actions the request.

If the end user refuses the connection, you will see the above error.

When the user selects yes, you will then be able to view their screen.

As you can see from the screenshot, we are now viewing the user's screen.

If we try and access the User's session with out their permission, we are presented with the following error message.

This is an out of the box feature and to disable it,  you will need to apply a Group policy.

The Group Policy that needs to be changed is located under  Administrative Templates>Windows components>Remote Desktop Services>Remote Session Host>Connections. "Set rules for remote control of Remote Desktop Services user sessions"

This can be applied as a user or computer policy.

PowerShell RDS Shadowing:

To shadow User sessions using PowerShell, we first need to Find the session ID's of our users.

For this I will use the following:

Get-RDUserSession | ft Username, UnifiedSessionId, SessionState, HostServer, ApplicationType -GroupBy Sessionstate -Wrap

The following Cmd organises User Active and Disconnected RDS sessions. This is also useful for reporting.

Once you have obtained the Session ID's , you can then connect to that session.

mstsc /shadow:<ID> /Control

If you don't want to request the user's permission add the /noconsentprompt

For more information on shadowing please see the articles from TechNet and Freek Berson RDS MVP: http://blogs.technet.com/b/askperf/archive/2013/10/22/windows-8-1-windows-server-2012-r2-rds-shadowing-is-back.aspx

http://microsoftplatform.blogspot.co.uk/2013/06/what-new-in-windows-server-2012-r2.html

Previous PostNext Post

Welcome to Democratising Clouds, the evolution of Ryanmangansitblog. Explore the latest in Cloud and IT infrastructure through the insightful lens of Ryan Mangan, offering thoughts, opinions, and perspectives.

Copyright © ryanmangansitblog ltd 2016 – 2024. All rights reserved.

LINKS

HomeBlogAbout MeResourcesDisclaimerPrivacy Policy
img

Announcing Second Ed Mastering Azure Virtual Desktop

Building on the success of the first edition, its with pleasure we annonuce the second edition of Azure Virtual Desktop.

img

AI An Accelerator Of Innovation Or A Risky Proposition

In the spectrum of AI, where do we land? Is AI a behemoth ready to take over the world, or is it a catalyst for increased productivity and an accelerator for innovation? After exploring and dissecting the vast landscape that AI encompasses, I propose it is more of the latter.

img

The IT Industry's Skyward Journey: Glimpsing through the Window of Cloud Adoption

Over the past decade, cloud services have steadily ascended to prominence in the Information Technology (IT) sector, often heralded as the pinnacle of organisational aspiration. Chief Information Officers (CIOs) ...

img

Navigating The Fragmented It Landscape

As we navigate the modern software landscape, one trend becomes increasingly evident. Software has traditionally been sold as a perpetual licence, with bundled suites of tools addressing a broad range of productivity needs.

Subscribe