Terminal Server

/in , /by

Common Complaints Include:
– I need access to the Terminal Server
– I need remote access to the Terminal Server
– I cannot connect to the Terminal Server
– I cannot connect to the Terminal Server remotely

General Tips:
1. Users can access Terminal Servers remotely by using ZeroTier VPN.
2. Similar to standard 365 accounts, users will also need an account created in the Domain Controller (DC) to access the Terminal Server
3. On premises AD accounts and Entra ID accounts are two different ways user’s can sign into a Terminal Server. On premises AD is a locally created user base/data center, typically located on the client’s physical server, and Entra ID is a Microsoft Cloud created user base/data center authenticated using 365 accounts. On premises AD users will look like TSIT\rileyb, and Entra ID users will look like [email protected], since Entra ID uses 365 accounts.
4. In some occasions, there can be a hybrid setup where the on premises AD server syncs to the Entra ID, meaning credentials updated through the on premises AD will update the respective Entra ID. This will be clear if you cannot change passwords through the 365 Admin Center, as it will give a message telling you to update credentials through the on premises AD.

Potential Resolutions:
I need access to the Terminal Server: To give a user TS access they will need a Remote Desktop icon on their desktop to remote in. Search for Remote Desktop Connection, and then enter the IP or name of the terminal server. Enter the client’s username (determine if it is an on premises AD account or an Entra ID account). Make sure you save this to their desktop and name it something like “Terminal Server”.

I need remote access to the Terminal Server: If the above resolution is already applied, then you’ll need to see if ZeroTier is setup. If not, refer to ZeroTier Device Setup

I cannot access the Terminal Server: Verify the IP they are trying to connect to and the user they are connecting with are both correct or exist. You can verify the IP by going to N-Able > Select the server > Tools > Command Prompt > ipconfig. You can verify the user is correct by remoting into the Domain Controller, searching “local active directory” and checking the list of users. Ensure they are added to the “Terminal Server” group or they will not have permission to connect. You can also reset their password here.


I cannot access the Terminal Server Remotely: Likely an issue with ZeroTier. Ensure you follow the steps and double check from ZeroTier Device Setup. Sometimes just reconnecting to the VPN can resolve the issue. If it is a DNS issue, put the IP of the server and the name of the server in the “hosts” file located in c:\Windows\System32\Drivers\etc\hosts.

*If users cannot connect to a TS over ZeroTier, use netsh winsock reset in cmd as admin and restart pc.