On Mon, Sep 16, 2024 at 6:27 AM Eby Mani <eby...@yahoo.com.invalid> wrote:
> Guacamole 1.5.1 > Native Install. > Ubuntu 22.04 LTS. > Guacamole not integrated with AD/LDAP. > > > > > I have weird Windows RDP issue with some servers and can’t figure out what > exactly is the problem. > > > We can’t connect to some of the Windows servers (W2016 and W2019) without > configuring username, password, domain values in guacamole connections. When > these parameters are not configured, we get “The remote desktop server is > currently unreachable” (screenshots attached). > > > When configuring RDP, we leave "username, password, domain, security mode" > empty and "Disable authentication" “un-selected” and "Ignore server > certificate" “selected”. (screenshots attached) > > I don't think you want to check the "Disable authentication" box - this is going to be particularly problematic if your servers use NLA (the default on most modern versions of Windows, including 2016 and 2019), which requires authentication as part of the connection process. > > > catalina.out log when connecting to W2019 without > username, password, domain values configured. > > ********************************************* > [2024-09-15 16:57:10] [info] 16:57:10.049 [http-nio-8080-exec-3] INFO > o.a.g.tunnel.TunnelRequestService - User "eby.mani" connected to connection > "34". > [2024-09-15 16:57:29] [info] Exception in thread "Thread-535" > java.lang.IllegalStateException: Message will not be sent because the > WebSocket session has been closed > [2024-09-15 16:57:29] [info] #011at > org.apache.tomcat.websocket.WsRemoteEndpointImplBase.writeMessagePart(WsRemoteEndpointImplBase.java:442) > [2024-09-15 16:57:29] [info] #011at > org.apache.tomcat.websocket.WsRemoteEndpointImplBase.sendMessageBlock(WsRemoteEndpointImplBase.java:314) > [2024-09-1516:57:29] [info] #011at > org.apache.tomcat.websocket.WsRemoteEndpointImplBase.sendMessageBlock(WsRemoteEndpointImplBase.java:254) > [2024-09-15 16:57:29] [info] #011at > org.apache.tomcat.websocket.WsRemoteEndpointImplBase.sendString(WsRemoteEndpointImplBase.java:195) > [2024-09-15 16:57:29] [info] #011at > org.apache.tomcat.websocket.WsRemoteEndpointBasic.sendText(WsRemoteEndpointBasic.java:37) > [2024-09-15 16:57:29] [info] #011at > org.apache.guacamole.websocket.GuacamoleWebSocketTunnelEndpoint.sendInstruction(GuacamoleWebSocketTunnelEndpoint.java:152) > [2024-09-15 16:57:29] [info] #011at > org.apache.guacamole.websocket.GuacamoleWebSocketTunnelEndpoint.access$200(GuacamoleWebSocketTunnelEndpoint.java:53) > [2024-09-15 16:57:29] [info] #011at > org.apache.guacamole.websocket.GuacamoleWebSocketTunnelEndpoint$2.run(GuacamoleWebSocketTunnelEndpoint.java:253) > [2024-09-15 16:57:29] [info] 16:57:29.258 [http-nio-8080-exec-7] INFO > o.a.g.tunnel.TunnelRequestService - User "eby.mani" disconnected from > connection "34". Duration: 19209 milliseconds > ********************************************* > These are just the logs from Tomcat - the logs that you actually need to look at for this particular failure are the ones that contain guacd logs, which will usually be where your syslog facility points (journalctl, /var/log/messages, etc.). -Nick
