Forum Discussion
Solved
We couldn't connect to the gateway because of an error
My test account can see the VD in the web browser but I get this error every time I try to connect, it says "opening remote port" and fails. If I try to connect through the app I get told I do not have permission.
I can remote into the VD while I am controlling the server but I cannot access the VD as my admin account that I used to join the VD.
Ideas?
ian11230 If you're using Azure Active Directory Domain Services, you need to make sure the deployed servers are in the "AADDC Computers" OU and you log in using an admin account that is in the "AADDC Users" OU. Make sure the admin user is a member of the "AAD DC Administrators" group in Azure Active Directory.
When I did this, I was finally able to Remote Desktop directly into the deployed VM's in the hostgroup.
ian11230 We had the same error message as you. Our solution was to start an Azure P2 trial for our tenant. So I'm guessing it was a licensing issue, but I can't find exactly what license is required, as maybe a cheaper license would have sufficed.
- Password complexity didn't help here, any other workaround to solve the gateway error?
ian11230 If you're using Azure Active Directory Domain Services, you need to make sure the deployed servers are in the "AADDC Computers" OU and you log in using an admin account that is in the "AADDC Users" OU. Make sure the admin user is a member of the "AAD DC Administrators" group in Azure Active Directory.
When I did this, I was finally able to Remote Desktop directly into the deployed VM's in the hostgroup.
Can you help me check/do that? I am still getting used to Azure.
Conrad AgramontI wouldn't want to make the users any sort of admin - I don't think that there should be a need to. The service should be secure by design, so elevating a user must surely be working around a problem, rather than fixing it's cause?
What about if we have on-premise AD with AD Connect instead Azure ADDS?
Also, one of DCs is in Azure as VM, and HostPool machines are joined to AD.Regards,
vstefanovic Yes, we are in the same scenario. The error message we get when using the desktop client or the web link is:
"Oops, we couldn’t connect to “USSPA-RDSH”. We couldn’t connect to the gateway because of an error. If this keeps happening, ask your admin or tech support for help.”
Any ideas?
HIian11230
I had the same problem, and to solve it I raise the word complix
As a :o minimum length 12 characters
o Capital letters of European languages (A to Z, with diacritics, Greek and Cyrillic characters)
o Tiny letters from European languages (a to z, sharp-s, with diacritics, Greek and Cyrillic characters)
o Figures in base 10 (0 to 9)
o Non-alphanumeric characters (special characters): (~! @ # $% ^ & * _- + = '| \ () {} \ [] :; »» <>,.? /) currency symbols such as l Euro or a British pound are not considered special characters for this policy setting.
o The password should not be in a dictionary (dictionary attack)
o The password should not be a subject known as Christmas, Easter, Carnival, etc.Hello,
Is there any new info regarding this issue? Or increasing password complexity is solution?
Regards,
