Issue – AVD could not connect to session desktop
I have seen this exact error “couldn’t connect to session desktop” many times and a couple of AVD PoC testers raised this issue.
Error Message – Oops, we couldn’t connect to “Session Desktop” – we couldn’t connect to the remote PC because the admin has restricted the type of logon that you can use. Ask your admin or tech support for help.
Cause of AVD Admin has Rejected Type of Login Error
Well, the cause of this admin has restricted the type of logon error when you try to connect to session host in AVD is mainly because of ignorance of the end-user. What? Yes of course. This is why I highlighted in the first paragraph of this post that I have seen this issue mostly with PoC/Test environments.
In PoC or Test environment, the test users might have more than one user accounts to test and certify different scenarios. This error occurs when:
- User Logs into AVD Web client with a user ID [for example – [emailprotected]].
- Click on Remote Desktop Icon to logon to session desktop/remote PC.
- The user [[emailprotected]] will get prompted to re-enter the user name and password [domain-level authentication].
- But because of user error or ignorance – The user enters a different user name [anoop2@htmdforum.com] and password.
- Click on Submit button.
Refresh and Session token Policies for AVD
You can read more about Azure AD refresh and session tokens-related configuration from Microsoft docs. In Azure AD, a policy object represents a set of rules that are enforced on individual applications or on all applications in an organization.
Each policy type has a unique structure, with a set of properties that are applied to objects to which they are assigned.
Error Message & Fix
The following is the exact error message that you get mostly because of time-out.
Oops, we couldn’t connect to “Session Desktop”. We ate working on refreshing your token, please try again after a short while or refresh page.
- The fix is to click on the REFRESH button.
- In most of the scenarios, this refresh helps. If not, check out the following steps.
- Logoff from the AVD Web client portal. //aka.ms/wvdARMweb
Close Browser, Re-open, and Login back.
5 Replies
Hi,
Have you assigned users to the resource:
Add-RdsAppGroupUser -TenantName Companytenant -HostPoolName Host-Pool -AppGroupName “Desktop Application Group” -UserPrincipalName
yes i did do that. that got me the icon when I would sign in to the web portal. Now when I click on the icon to start the remote session, it tries to connect but ultimately fails and says " We couldn't connect because there are currently no available resources. Try again later or if this keeps happening, ask your admin or tech support for help"
I followed://securityboulevard.com/2019/11/windows-virtual-desktop-the-best-step-by-step-walkthrough/
Just skipped the VPN stuff
Just found this - had the same problem today so adding in the solution I found for others who find this on a search engine.
In my case I had two Host VMs in the pool - I keep one turned off most of the time to save costs, I turned it on today as a lot of users needed access to an application. The second Host started OK but it was set in Drain mode [doesn't allow new connections], for some reason the pool was trying to connect sessions to this VM first and was giving the No resources error - turning Drain mode off fixed the problem [although sessions were still added to the second VM first]
This discussion has been inactive for over a year.
You may get a better answer to your question by starting a new discussion.
-
-
-
Quote Post