I have been having issues for the last few months with logon times in one datacenter. I have tried pretty much every RDP/Logon slow posting I could find but nothing is resolving it. Some bullet points below:
Has been occurring since late last year.
RDP to member servers is slow, to domain controllers are not having the issue.
Environment is fully patched. ( I even tried backing out all updates through Dec 2020 with no difference. )
Networking / DNS is good all domain tests come back PASS and local DNS has no errors.
Slow RDP logon occurs once every few hours based on usage of the server. So if I login slow and then logoff and right back on it is fine.
GPO seems to be processing fine in a gpresult
Found indicators of the slow logon. ( See timestamps )
GPSVC(3c4.1220) 16:13:48:104 GPOThread(Machine)
GPSVC(3c4.1220) 16:13:48:104 GPOThread: registering for NLA when GPService is running
GPSVC(3c4.1220) 16:13:48:104 GPOThread(Machine): dwOffset=780000., dwTimeout=6180000.
GPSVC(3c4.1220) 16:13:48:104 RecentlyResumed: dwNow=31843. dwSinceResume=31843. recentlyResumed=0.
GPSVC(3c4.1220) 16:13:48:104 GPOThread(Machine): Waiting 6180000.
GPSVC(1594.1598) 16:14:27:427 CGPNotify::RegisterForNotification: Entering with target Machine and event 0x224
GPSVC(1594.1598) 16:14:27:427 CGPNotify::RegisterForNotification: Exiting with status = 0
GPSVC(1594.1598) 16:14:27:427 CGPNotify::RegisterForNotification: Entering with target User and event 0x278
GPSVC(1594.1598) 16:14:27:427 CGPNotify::RegisterForNotification: Exiting with status = 0
GPSVC(3c4.7c4) 16:18:32:190 CGPEventSubSystem::GroupPolicyCreateSession::++ (SessionId: 2)
GPSVC(3c4.7c4) 16:18:32:190 CGPApplicationService::CreateSessionEvent::++ (SessionId: 2)
GPSVC(3c4.7c4) 16:18:32:190 CGPApplicationService::CheckAndCreateCriticalPolicySection.
GPSVC(3c4.7c4) 16:18:32:190 User SID = MACHINE SID
Does anyone have any ideas?