You are viewing a plain text version of this content. The canonical link for it is here.
Posted to issues@guacamole.apache.org by "Bastien (Jira)" <ji...@apache.org> on 2021/04/23 16:50:00 UTC
[jira] [Created] (GUACAMOLE-1332) [Documentation] rdp connection :
undocumented alternative to "Ignore server certificate" and
.config/freerdp/known_hosts2
Bastien created GUACAMOLE-1332:
----------------------------------
Summary: [Documentation] rdp connection : undocumented alternative to "Ignore server certificate" and .config/freerdp/known_hosts2
Key: GUACAMOLE-1332
URL: https://issues.apache.org/jira/browse/GUACAMOLE-1332
Project: Guacamole
Issue Type: Wish
Environment: Debian buster guacamole 1.3.0
Reporter: Bastien
Attachments: guacamole.log
Hello,
I spend whole day to configure a RDP connection without using "Ignore server certificate". I use a xrdp serveur with a self signed certificate (end goal is a signed certificate from PKI). I didn't find how to trust the certificate fingerprint. I got "Certificate validation failed". "certificate not trusted, aborting."
I discovered that Guacamole use freerdp which is not well documented on the subject. I tried to add the pem certificate with {{update-ca-certificates}}, or in _.config/freerdp/certs_ and get nothing.
Do I miss some documentation on how to set-up a trusted RDP host on Guacamole ?
On my Guacamole test server, I install xfce and remina, succeed to connect to the target. It populates the .config/freerdp/known_hosts2 file, then Guacamole connection begin to work. But it is not an option for the production server.
Thanks you
--
This message was sent by Atlassian Jira
(v8.3.4#803005)