You are viewing a plain text version of this content. The canonical link for it is here.
Posted to user@guacamole.apache.org by "Abramson, Eli" <El...@Honeywell.com.INVALID> on 2021/12/19 09:44:09 UTC
RDP Credentials
Hi,
Is it possible to create and connect to an RDP host without setting the credentials during the creation of the connection template?
Does Guacamole have the option to ask the user for credentials via UI?
Thanks!
RE: [External] Re: RDP Credentials
Posted by "Abramson, Eli" <El...@Honeywell.com.INVALID>.
Thank you Nick, indeed setting it to NLA has caused the credentials prompt to pop
From: Nick Couchman <vn...@apache.org>
Sent: Monday, December 20, 2021 1:25 AM
To: user@guacamole.apache.org
Subject: Re: [External] Re: RDP Credentials
On Sun, Dec 19, 2021 at 7:41 AM Abramson, Eli <El...@honeywell.com.invalid>> wrote:
Thank you Mike! I am not getting credentials prompt when the connection is configured with no credentials, ignore server certificate and security mode is not set. In guacd the log says the following:
guacd[45411]: INFO: No security mode specified. Defaulting to security mode negotiation with server.
guacd[45411]: INFO: Resize method: none
guacd[45411]: INFO: User "@ebfb17c7-3f46-42ff-bedd-7ae8ca589639" joined connection "$0e863f55-b2c9-41aa-8467-ddf390663b58" (1 users now present)
guacd[45411]: INFO: Loading keymap "base"
guacd[45411]: INFO: Loading keymap "en-us-qwerty"
guacd[45411]: INFO: RDP server closed/refused connection: Server refused connection (wrong security type?)
guacd[45411]: INFO: User "@ebfb17c7-3f46-42ff-bedd-7ae8ca589639" disconnected (0 users remain)
guacd[45411]: INFO: Last user of connection "$0e863f55-b2c9-41aa-8467-ddf390663b58" disconnected
Is it perhaps related to NLA? The remote machine is a newer Windows with NLA required by default.
The security level _should_ be auto-negotiated, but you might just try forcing NLA and see if that helps.
-Nick
Re: [External] Re: RDP Credentials
Posted by Nick Couchman <vn...@apache.org>.
On Sun, Dec 19, 2021 at 7:41 AM Abramson, Eli
<El...@honeywell.com.invalid> wrote:
> Thank you Mike! I am not getting credentials prompt when the connection is
> configured with no credentials, ignore server certificate and security mode
> is not set. In guacd the log says the following:
>
> guacd[45411]: INFO: No security mode specified. Defaulting to security
> mode negotiation with server.
>
> guacd[45411]: INFO: Resize method: none
>
> guacd[45411]: INFO: User "@ebfb17c7-3f46-42ff-bedd-7ae8ca589639"
> joined connection "$0e863f55-b2c9-41aa-8467-ddf390663b58" (1 users now
> present)
>
> guacd[45411]: INFO: Loading keymap "base"
>
> guacd[45411]: INFO: Loading keymap "en-us-qwerty"
>
> guacd[45411]: INFO: RDP server closed/refused connection: Server
> refused connection (wrong security type?)
>
> guacd[45411]: INFO: User "@ebfb17c7-3f46-42ff-bedd-7ae8ca589639"
> disconnected (0 users remain)
>
> guacd[45411]: INFO: Last user of connection
> "$0e863f55-b2c9-41aa-8467-ddf390663b58" disconnected
>
>
>
> Is it perhaps related to NLA? The remote machine is a newer Windows with
> NLA required by default.
>
The security level _should_ be auto-negotiated, but you might just try
forcing NLA and see if that helps.
-Nick
>
RE: [External] Re: RDP Credentials
Posted by "Abramson, Eli" <El...@Honeywell.com.INVALID>.
Thank you Mike! I am not getting credentials prompt when the connection is configured with no credentials, ignore server certificate and security mode is not set. In guacd the log says the following:
guacd[45411]: INFO: No security mode specified. Defaulting to security mode negotiation with server.
guacd[45411]: INFO: Resize method: none
guacd[45411]: INFO: User "@ebfb17c7-3f46-42ff-bedd-7ae8ca589639" joined connection "$0e863f55-b2c9-41aa-8467-ddf390663b58" (1 users now present)
guacd[45411]: INFO: Loading keymap "base"
guacd[45411]: INFO: Loading keymap "en-us-qwerty"
guacd[45411]: INFO: RDP server closed/refused connection: Server refused connection (wrong security type?)
guacd[45411]: INFO: User "@ebfb17c7-3f46-42ff-bedd-7ae8ca589639" disconnected (0 users remain)
guacd[45411]: INFO: Last user of connection "$0e863f55-b2c9-41aa-8467-ddf390663b58" disconnected
Is it perhaps related to NLA? The remote machine is a newer Windows with NLA required by default.
From: Mike Jumper <mi...@glyptodon.com>
Sent: Sunday, December 19, 2021 12:59 PM
To: user@guacamole.apache.org
Subject: [External] Re: RDP Credentials
CAUTION: This email originated from outside of the organization. Do not click links or open attachments unless you recognize the sender and know the content is safe.
On Sun, Dec 19, 2021, 01:44 Abramson, Eli <El...@honeywell.com.invalid>> wrote:
Hi,
Is it possible to create and connect to an RDP host without setting the credentials during the creation of the connection template?
Does Guacamole have the option to ask the user for credentials via UI?
Yes, if you don't set those parameters, the user will be prompted.
You can also use credential pass-through using parameter tokens if your users' desktop credentials will match their Guacamole credentials (common with LDAP):
https://guacamole.apache.org/doc/gug/configuring-guacamole.html#parameter-tokens<https://nam12.safelinks.protection.outlook.com/?url=https%3A%2F%2Fguacamole.apache.org%2Fdoc%2Fgug%2Fconfiguring-guacamole.html%23parameter-tokens&data=04%7C01%7CEli.Abramson%40honeywell.com%7Cd45b1398a1414d2e5ba508d9c2dea641%7C96ece5269c7d48b08daf8b93c90a5d18%7C0%7C0%7C637755083798200145%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C3000&sdata=2ASZZbCSJ6uejrNeSmoLIKyA%2B%2B%2FU0gtUaCPhR4rGnSQ%3D&reserved=0>
- Mike
Re: RDP Credentials
Posted by Mike Jumper <mi...@glyptodon.com>.
On Sun, Dec 19, 2021, 01:44 Abramson, Eli
<El...@honeywell.com.invalid> wrote:
> Hi,
>
> Is it possible to create and connect to an RDP host without setting the
> credentials during the creation of the connection template?
>
> Does Guacamole have the option to ask the user for credentials via UI?
>
Yes, if you don't set those parameters, the user will be prompted.
You can also use credential pass-through using parameter tokens if your
users' desktop credentials will match their Guacamole credentials (common
with LDAP):
https://guacamole.apache.org/doc/gug/configuring-guacamole.html#parameter-tokens
- Mike