You are viewing a plain text version of this content. The canonical link for it is here.
Posted to user@guacamole.apache.org by Guilherme Carvalho <gc...@gmail.com> on 2020/03/23 19:57:49 UTC
Problems to RDP
Hello guys, i made Guacamole Works fine in my Work, but i´m getting to
install it on a Client, i made almost everything ok, LDAP, TOTP etc is
working, but when i try to connect into a RDP i got this messages on the
/var/log/syslog, i´m running guacamole 1.1.0 into a Ubuntu 18.04.
What could be?? How fix it?
==> syslog <==
Mar 23 19:48:41 acesso tomcat9[20628]: 19:48:41.438 [http-nio-8080-exec-4]
INFO o.a.g.environment.LocalEnvironment - GUACAMOLE_HOME is
"/etc/guacamole".
Mar 23 19:48:41 acesso rsyslogd: action 'action 8' resumed (module
'builtin:omfile') [v8.32.0 try http://www.rsyslog.com/e/2359 ]
Mar 23 19:48:41 acesso rsyslogd: action 'action 8' suspended (module
'builtin:omfile'), retry 0. There should be messages before this one giving
the reason for suspension. [v8.32.0 try http://www.rsyslog.com/e/2007 ]
Mar 23 19:48:41 acesso rsyslogd: action 'action 8' resumed (module
'builtin:omfile') [v8.32.0 try http://www.rsyslog.com/e/2359 ]
Mar 23 19:48:41 acesso rsyslogd: action 'action 8' suspended (module
'builtin:omfile'), retry 0. There should be messages before this one giving
the reason for suspension. [v8.32.0 try http://www.rsyslog.com/e/2007 ]
Mar 23 19:48:41 acesso rsyslogd: action 'action 8' resumed (module
'builtin:omfile') [v8.32.0 try http://www.rsyslog.com/e/2359 ]
Mar 23 19:48:41 acesso rsyslogd: action 'action 8' suspended (module
'builtin:omfile'), retry 0. There should be messages before this one giving
the reason for suspension. [v8.32.0 try http://www.rsyslog.com/e/2007 ]
Mar 23 19:48:41 acesso rsyslogd: action 'action 8' resumed (module
'builtin:omfile') [v8.32.0 try http://www.rsyslog.com/e/2359 ]
Mar 23 19:48:41 acesso rsyslogd: action 'action 8' suspended (module
'builtin:omfile'), retry 0. There should be messages before this one giving
the reason for suspension. [v8.32.0 try http://www.rsyslog.com/e/2007 ]
Mar 23 19:48:41 acesso rsyslogd: action 'action 8' resumed (module
'builtin:omfile') [v8.32.0 try http://www.rsyslog.com/e/2359 ]
Mar 23 19:48:41 acesso rsyslogd: action 'action 8' suspended (module
'builtin:omfile'), retry 0. There should be messages before this one giving
the reason for suspension. [v8.32.0 try http://www.rsyslog.com/e/2007 ]
Mar 23 19:48:41 acesso rsyslogd: action 'action 8' resumed (module
'builtin:omfile') [v8.32.0 try http://www.rsyslog.com/e/2359 ]
Mar 23 19:48:41 acesso rsyslogd: action 'action 8' suspended (module
'builtin:omfile'), retry 0. There should be messages before this one giving
the reason for suspension. [v8.32.0 try http://www.rsyslog.com/e/2007 ]
Mar 23 19:48:41 acesso rsyslogd: action 'action 8' resumed (module
'builtin:omfile') [v8.32.0 try http://www.rsyslog.com/e/2359 ]
Mar 23 19:48:41 acesso rsyslogd: action 'action 8' suspended (module
'builtin:omfile'), retry 0. There should be messages before this one giving
the reason for suspension. [v8.32.0 try http://www.rsyslog.com/e/2007 ]
Mar 23 19:48:41 acesso rsyslogd: action 'action 8' resumed (module
'builtin:omfile') [v8.32.0 try http://www.rsyslog.com/e/2359 ]
Mar 23 19:48:41 acesso rsyslogd: action 'action 8' suspended (module
'builtin:omfile'), retry 0. There should be messages before this one giving
the reason for suspension. [v8.32.0 try http://www.rsyslog.com/e/2007 ]
Mar 23 19:48:41 acesso rsyslogd: action 'action 8' resumed (module
'builtin:omfile') [v8.32.0 try http://www.rsyslog.com/e/2359 ]
Mar 23 19:48:41 acesso rsyslogd: action 'action 8' suspended (module
'builtin:omfile'), retry 0. There should be messages before this one giving
the reason for suspension. [v8.32.0 try http://www.rsyslog.com/e/2007 ]
Mar 23 19:48:41 acesso rsyslogd: action 'action 8' resumed (module
'builtin:omfile') [v8.32.0 try http://www.rsyslog.com/e/2359 ]
Mar 23 19:48:41 acesso rsyslogd: action 'action 8' suspended (module
'builtin:omfile'), retry 0. There should be messages before this one giving
the reason for suspension. [v8.32.0 try http://www.rsyslog.com/e/2007 ]
Mar 23 19:48:41 acesso rsyslogd: action 'action 8' suspended (module
'builtin:omfile'), next retry is Mon Mar 23 19:49:11 2020, retry nbr 0.
There should be messages before this one giving the reason for suspension.
[v8.32.0 try http://www.rsyslog.com/e/2007 ]
Mar 23 19:48:41 acesso guacd[20683]: Creating new client for protocol "rdp"
Mar 23 19:48:41 acesso guacd[20683]: Connection ID is
"$450d4bc9-9d4d-4da6-9937-5c9fe57f7d1b"
Mar 23 19:48:41 acesso guacd[24114]: Security mode: NLA
Mar 23 19:48:41 acesso guacd[24114]: Resize method: none
Mar 23 19:48:41 acesso guacd[24114]: User
"@c70d1746-113c-4da8-a862-4e63962720ba" joined connection
"$450d4bc9-9d4d-4da6-9937-5c9fe57f7d1b" (1 users now present)
Mar 23 19:48:41 acesso tomcat9[20628]: 19:48:41.589 [http-nio-8080-exec-10]
INFO o.a.g.tunnel.TunnelRequestService - User "redisul" connected to
connection "2".
Mar 23 19:48:41 acesso guacd[24114]: Loading keymap "base"
Mar 23 19:48:41 acesso guacd[24114]: Loading keymap "en-us-qwerty"
Mar 23 19:48:56 acesso guacd[24114]: Error connecting to RDP server
Mar 23 19:48:56 acesso guacd[24114]: User
"@c70d1746-113c-4da8-a862-4e63962720ba" disconnected (0 users remain)
Mar 23 19:48:56 acesso guacd[24114]: Last user of connection
"$450d4bc9-9d4d-4da6-9937-5c9fe57f7d1b" disconnected
Mar 23 19:48:56 acesso tomcat9[20628]: Exception in thread "Thread-16"
19:48:56.616 [http-nio-8080-exec-1] INFO o.a.g.tunnel.TunnelRequestService
- User "redisul" disconnected from connection "2". Duration: 15027
milliseconds
Mar 23 19:48:56 acesso tomcat9[20628]: java.lang.IllegalStateException:
Message will not be sent because the WebSocket session has been closed
Mar 23 19:48:56 acesso tomcat9[20628]: #011at
org.apache.tomcat.websocket.WsRemoteEndpointImplBase.writeMessagePart(WsRemoteEndpointImplBase.java:425)
Mar 23 19:48:56 acesso tomcat9[20628]: #011at
org.apache.tomcat.websocket.WsRemoteEndpointImplBase.sendMessageBlock(WsRemoteEndpointImplBase.java:309)
Mar 23 19:48:56 acesso tomcat9[20628]: #011at
org.apache.tomcat.websocket.WsRemoteEndpointImplBase.sendMessageBlock(WsRemoteEndpointImplBase.java:250)
Mar 23 19:48:56 acesso tomcat9[20628]: #011at
org.apache.tomcat.websocket.WsRemoteEndpointImplBase.sendString(WsRemoteEndpointImplBase.java:191)
Mar 23 19:48:56 acesso tomcat9[20628]: #011at
org.apache.tomcat.websocket.WsRemoteEndpointBasic.sendText(WsRemoteEndpointBasic.java:37)
Mar 23 19:48:56 acesso tomcat9[20628]: #011at
org.apache.guacamole.websocket.GuacamoleWebSocketTunnelEndpoint.sendInstruction(GuacamoleWebSocketTunnelEndpoint.java:152)
Mar 23 19:48:56 acesso tomcat9[20628]: #011at
org.apache.guacamole.websocket.GuacamoleWebSocketTunnelEndpoint.access$200(GuacamoleWebSocketTunnelEndpoint.java:53)
Mar 23 19:48:56 acesso tomcat9[20628]: #011at
org.apache.guacamole.websocket.GuacamoleWebSocketTunnelEndpoint$2.run(GuacamoleWebSocketTunnelEndpoint.java:253)
Mar 23 19:48:56 acesso guacd[20683]: Connection
"$450d4bc9-9d4d-4da6-9937-5c9fe57f7d1b" removed.
Re: Problems to RDP
Posted by garvati <g....@apam.it.INVALID>.
Hello,
I solved the problem.
1) one problem was a mistake in user-mapping.xml
I wrote instead of
2) I did not understand correctly the relation between security NLA
and credentials in user-mapping.xml
thank you
Giuseppe
--
Sent from: http://apache-guacamole-general-user-mailing-list.2363388.n4.nabble.com/
---------------------------------------------------------------------
To unsubscribe, e-mail: user-unsubscribe@guacamole.apache.org
For additional commands, e-mail: user-help@guacamole.apache.org
Re: Problems to RDP
Posted by Nick Couchman <vn...@apache.org>.
On Mon, Apr 6, 2020 at 4:44 AM garvati <g....@apam.it.invalid> wrote:
> Hello,
> I have the same problem
>
> I just built on centOS8 the Guacamole (1.1.0) service, client , ...
>
>
> Apr 6 10:31:16 swork guacd[2175]: Creating new client for protocol "rdp"
> Apr 6 10:31:16 swork guacd[2175]: Connection ID is
> "$707c3a95-69bc-4692-b5af-8a30a0dace8d"
> Apr 6 10:31:16 swork guacd[4935]: No security mode specified. Defaulting
> to
> security mode negotiation with server.
> Apr 6 10:31:16 swork guacd[4935]: Resize method: none
> Apr 6 10:31:16 swork guacd[4935]: User
> "@a3670e55-fec3-41c7-8440-e64007ab3aca" joined connection
> "$707c3a95-69bc-4692-b5af-8a30a0dace8d" (1 users now present)
> Apr 6 10:31:16 swork guacd[4935]: Loading keymap "base"
> Apr 6 10:31:16 swork guacd[4935]: Loading keymap "it-it-qwerty"
> Apr 6 10:31:16 swork guacd[4935]: Error connecting to RDP server
> Apr 6 10:31:16 swork guacd[4935]: User
> "@a3670e55-fec3-41c7-8440-e64007ab3aca" disconnected (0 users remain)
> Apr 6 10:31:16 swork guacd[4935]: Last user of connection
> "$707c3a95-69bc-4692-b5af-8a30a0dace8d" disconnected
> Apr 6 10:31:16 swork guacd[2175]: Connection
> "$707c3a95-69bc-4692-b5af-8a30a0dace8d" removed.
>
>
>
> I'm using a simple user-mapping.xml file and I tried different combinations
> of parameters:
> with credential without credentials
> with security rdp, with security any, without security
> with ingnore-cert true
> with different destination hosts ( win10, win2k8R2, ..)
>
> but I had always an " Error connecting to RDP server"
>
> Is there a way or command to focus on the missing rdp connections ?
>
> I tried to raise log level to debug/trace on guacd.conf but without success
>
>
Changing the log level in guacd.conf should do the trick, but you'll need
to restart guacd. You can also use the "-L" flag on the guacd command line
to change it - so, start guacd with "-L debug" as one of the command line
arguments and this will increase verbosity.
-Nick
Re: Problems to RDP
Posted by garvati <g....@apam.it.INVALID>.
Hello,
I have the same problem
I just built on centOS8 the Guacamole (1.1.0) service, client , ...
Apr 6 10:31:16 swork guacd[2175]: Creating new client for protocol "rdp"
Apr 6 10:31:16 swork guacd[2175]: Connection ID is
"$707c3a95-69bc-4692-b5af-8a30a0dace8d"
Apr 6 10:31:16 swork guacd[4935]: No security mode specified. Defaulting to
security mode negotiation with server.
Apr 6 10:31:16 swork guacd[4935]: Resize method: none
Apr 6 10:31:16 swork guacd[4935]: User
"@a3670e55-fec3-41c7-8440-e64007ab3aca" joined connection
"$707c3a95-69bc-4692-b5af-8a30a0dace8d" (1 users now present)
Apr 6 10:31:16 swork guacd[4935]: Loading keymap "base"
Apr 6 10:31:16 swork guacd[4935]: Loading keymap "it-it-qwerty"
Apr 6 10:31:16 swork guacd[4935]: Error connecting to RDP server
Apr 6 10:31:16 swork guacd[4935]: User
"@a3670e55-fec3-41c7-8440-e64007ab3aca" disconnected (0 users remain)
Apr 6 10:31:16 swork guacd[4935]: Last user of connection
"$707c3a95-69bc-4692-b5af-8a30a0dace8d" disconnected
Apr 6 10:31:16 swork guacd[2175]: Connection
"$707c3a95-69bc-4692-b5af-8a30a0dace8d" removed.
I'm using a simple user-mapping.xml file and I tried different combinations
of parameters:
with credential without credentials
with security rdp, with security any, without security
with ingnore-cert true
with different destination hosts ( win10, win2k8R2, ..)
but I had always an " Error connecting to RDP server"
Is there a way or command to focus on the missing rdp connections ?
I tried to raise log level to debug/trace on guacd.conf but without success
Thank you for any help
Giuseppe
--
Sent from: http://apache-guacamole-general-user-mailing-list.2363388.n4.nabble.com/
---------------------------------------------------------------------
To unsubscribe, e-mail: user-unsubscribe@guacamole.apache.org
For additional commands, e-mail: user-help@guacamole.apache.org
Re: Problems to RDP
Posted by Nick Couchman <vn...@apache.org>.
On Mon, Mar 23, 2020 at 3:58 PM Guilherme Carvalho <gc...@gmail.com>
wrote:
> Hello guys, i made Guacamole Works fine in my Work, but i´m getting to
> install it on a Client, i made almost everything ok, LDAP, TOTP etc is
> working, but when i try to connect into a RDP i got this messages on the
> /var/log/syslog, i´m running guacamole 1.1.0 into a Ubuntu 18.04.
>
> What could be?? How fix it?
>
>
Based on the message you're getting in the log file, the guacd system
cannot connect to the RDP server. Check the following things:
- Connection parameters are correct (hostname, port, etc.)
- Credentials are correct
- Security mode is compatible (NLA, TLS, RDP, etc.)
- guacd system has access (firewall, routing, DNS, etc.)
-Nick