VNC with SSO Authentication
I have several VNC servers where the Authentication method is Single Sign On (ie. Active Directory). I am unable to connect using Guacamole (the password field is left blank). After some time the connection times out. -- Sent from: http://apache-guacamole-general-user-mailing-list.2363388.n4.nabble.com/
Re: VNC with SSO Authentication
On Tue, Oct 23, 2018 at 7:16 AM yitzyb wrote: > I have several VNC servers where the Authentication method is Single Sign > On > (ie. Active Directory). > It's a little unclear to me what this means. Does your VNC server accept MS Login credentials for connecting? Or do you connect to VNC and then enter your credentials in the Windows login box? Currently Guacamole only supports VNC password-based authentication (None/Null should work, as well), so if your VNC server is expecting both a username and password in order to establish the VNC connection, Guacamole probably won't work. > I am unable to connect using Guacamole (the password field is left blank). > After some time the connection times out. > What version of Guacamole are you running? You should check logs for both Guacamole Client (your Java app server, Tomcat/JBOSS/Jetty/etc.) and guacd to see why the connection is failing. Also try some basic troubleshooting steps: - Can you connect to other systems with VNC? - Can you connect to systems using another protocol (SSH, RDP, etc.)? - Can you connect to this system with something like "vncviewer" running on the same system where guacd is running? - Have you verified port numbers, DNS/IP address in the Guacamole configuration? - If you compiled guacd manually, did you compile it with VNC support? -Nick
"Communications link failure" Exception being thrown.... Dear god help
I have pasted the relevant contents of the catalina.out file to the link below, as in the past some people have complained about code formatting. When I began testing my application, I was actually running a mysql server on an ec2 instance instead of running against an RDS instance. So my database currently is residing in an Aurora serverless cluster. I haven't experienced this exception before. That is the only major differences between my earlier test configurations. I am really stuck here, I have no idea where to begin troubleshooting this issue. Checked the syslog, no relevant messages logged there. I get the classic "blank screen" situation that I have posted about in the past. Any help on this would be greatly appreciated. --Zach http://dpaste.com/0GJ63JE -- Sent from: http://apache-guacamole-general-user-mailing-list.2363388.n4.nabble.com/
Re: "Communications link failure" Exception being thrown.... Dear god help
Are you sure the database is reachable over the network from the Guacamole server? Not blocked by an AWS security group, subnet is in routing tables, etc.? - Mike On Tue, Oct 23, 2018, 11:57 doyouhas wrote: > I have pasted the relevant contents of the catalina.out file to the link > below, as in the past some people have complained about code formatting. > When I began testing my application, I was actually running a mysql server > on an ec2 instance instead of running against an RDS instance. So my > database currently is residing in an Aurora serverless cluster. I haven't > experienced this exception before. That is the only major differences > between my earlier test configurations. I am really stuck here, I have no > idea where to begin troubleshooting this issue. Checked the syslog, no > relevant messages logged there. I get the classic "blank screen" situation > that I have posted about in the past. Any help on this would be greatly > appreciated. > > --Zach > > http://dpaste.com/0GJ63JE > > > > > -- > Sent from: > http://apache-guacamole-general-user-mailing-list.2363388.n4.nabble.com/ >
Re: "Communications link failure" Exception being thrown.... Dear god help
I wish you had a little more faith in me than that. Yes I made sure I was able to establish a connection with the cluster by using the mysql client with the same credentials I provided to guacamole. I was able to get into the console no problem. -- Sent from: http://apache-guacamole-general-user-mailing-list.2363388.n4.nabble.com/
Re: "Communications link failure" Exception being thrown.... Dear god help
Hey Zach, >The last packet sent successfully to the server was 0 milliseconds ago. The >driver has not received any packets from the server.Oct 23, 2018 6:28:44 PM >com.sun.jersey.spi.container.ContainerResponse logExceptionSEVERE: Mapped >exception to response: 500 (Internal Server Error) Have you checked any of the AWS logs? Based on the text above, there may be something relevant there as to why the db server is not responding. Are you able to ping across from the Guacamole instance to the db server and vice-versa? Erik Berndt On Tue, Oct 23, 2018 at 3:09 PM Mike Jumper wrote: > Are you sure the database is reachable over the network from the Guacamole > server? Not blocked by an AWS security group, subnet is in routing tables, > etc.? > > - Mike > > On Tue, Oct 23, 2018, 11:57 doyouhas wrote: > >> I have pasted the relevant contents of the catalina.out file to the link >> below, as in the past some people have complained about code formatting. >> When I began testing my application, I was actually running a mysql server >> on an ec2 instance instead of running against an RDS instance. So my >> database currently is residing in an Aurora serverless cluster. I haven't >> experienced this exception before. That is the only major differences >> between my earlier test configurations. I am really stuck here, I have no >> idea where to begin troubleshooting this issue. Checked the syslog, no >> relevant messages logged there. I get the classic "blank screen" situation >> that I have posted about in the past. Any help on this would be greatly >> appreciated. >> >> --Zach >> >> http://dpaste.com/0GJ63JE >> >> >> >> >> -- >> Sent from: >> http://apache-guacamole-general-user-mailing-list.2363388.n4.nabble.com/ >> > -- This e-mail and any files transmitted with it are confidential and are intended solely for the use of the individual or entity to whom they are addressed. If you are not the intended recipient or the person responsible for delivering the e-mail to the intended recipient, be advised that you have received this e-mail in error and that any use, dissemination, forwarding, printing or copying of this e-mail is strictly prohibited. If you have received this e-mail in error, please immediately notify Superior Paving Corp. by telephone at (703) 631-0004. You will be reimbursed for reasonable costs incurred in notifying us.
Re: "Communications link failure" Exception being thrown.... Dear god help
I checked my cloudwatch logs. Nothing relating to this problem was logged there. And as I stated in my previous post, on the instance where I've installed guacamole, I installed the mysql client and can connect to the database fine. I'm thinking it must have something to do with JDBC and AWS RDS, bc when I install mysql server on a physical instance, it doesn't have this issue. But I'm not pro enough with java to understand this JDBC failure. -- Sent from: http://apache-guacamole-general-user-mailing-list.2363388.n4.nabble.com/
Re: "Communications link failure" Exception being thrown.... Dear god help
On Tue, Oct 23, 2018 at 3:32 PM doyouhas wrote: > I checked my cloudwatch logs. Nothing relating to this problem was logged > there. And as I stated in my previous post, on the instance where I've > installed guacamole, I installed the mysql client and can connect to the > database fine. I'm thinking it must have something to do with JDBC and AWS > RDS, bc when I install mysql server on a physical instance, it doesn't have > this issue. But I'm not pro enough with java to understand this JDBC > failure. > > I'm guessing you're using a recent-ish version of the MySQL driver in your Guacamole instance? According to Amazon's docs they recommend the MariaDB Connector/J JDBC connector for connecting to Aurora, but I'm guessing MySQL should work fine, too. Also, looks like Aurora can be set up to use SSL/TLS - is that enabled/required/default on your Aurora instance? Sorry, trying to help but kind of shooting in the dark, here - I agree with the other folks that have responded that it really feels like some sort of network connectivity, firewall, or VDC configuration issue that is blocking the JDBC connection from hitting the Aurora instance. -Nick
Re: "Communications link failure" Exception being thrown.... Dear god help
You don't have to apologize my dude I appreciate any input. Gonna open up a aws support ticket and see what they can tell me. How would I use the MariaDB connector with guacamole tho? There's no Auth extension for Maria. On Tue, Oct 23, 2018, 3:04 PM Nick Couchman wrote: > On Tue, Oct 23, 2018 at 3:32 PM doyouhas wrote: > >> I checked my cloudwatch logs. Nothing relating to this problem was logged >> there. And as I stated in my previous post, on the instance where I've >> installed guacamole, I installed the mysql client and can connect to the >> database fine. I'm thinking it must have something to do with JDBC and AWS >> RDS, bc when I install mysql server on a physical instance, it doesn't >> have >> this issue. But I'm not pro enough with java to understand this JDBC >> failure. >> >> > I'm guessing you're using a recent-ish version of the MySQL driver in your > Guacamole instance? According to Amazon's docs they recommend the MariaDB > Connector/J JDBC connector for connecting to Aurora, but I'm guessing MySQL > should work fine, too. Also, looks like Aurora can be set up to use > SSL/TLS - is that enabled/required/default on your Aurora instance? > > Sorry, trying to help but kind of shooting in the dark, here - I agree > with the other folks that have responded that it really feels like some > sort of network connectivity, firewall, or VDC configuration issue that is > blocking the JDBC connection from hitting the Aurora instance. > > -Nick >
Re: "Communications link failure" Exception being thrown.... Dear god help
MariaDB is a fork of MySQL, so the mysql-auth extension should work the same as it does with MySQL. Erik Berndt On Tue, Oct 23, 2018 at 4:08 PM Zachary Piazza wrote: > You don't have to apologize my dude I appreciate any input. Gonna open up > a aws support ticket and see what they can tell me. How would I use the > MariaDB connector with guacamole tho? There's no Auth extension for Maria. > > On Tue, Oct 23, 2018, 3:04 PM Nick Couchman wrote: > >> On Tue, Oct 23, 2018 at 3:32 PM doyouhas wrote: >> >>> I checked my cloudwatch logs. Nothing relating to this problem was logged >>> there. And as I stated in my previous post, on the instance where I've >>> installed guacamole, I installed the mysql client and can connect to the >>> database fine. I'm thinking it must have something to do with JDBC and >>> AWS >>> RDS, bc when I install mysql server on a physical instance, it doesn't >>> have >>> this issue. But I'm not pro enough with java to understand this JDBC >>> failure. >>> >>> >> I'm guessing you're using a recent-ish version of the MySQL driver in >> your Guacamole instance? According to Amazon's docs they recommend the >> MariaDB Connector/J JDBC connector for connecting to Aurora, but I'm >> guessing MySQL should work fine, too. Also, looks like Aurora can be set >> up to use SSL/TLS - is that enabled/required/default on your Aurora >> instance? >> >> Sorry, trying to help but kind of shooting in the dark, here - I agree >> with the other folks that have responded that it really feels like some >> sort of network connectivity, firewall, or VDC configuration issue that is >> blocking the JDBC connection from hitting the Aurora instance. >> >> -Nick >> > -- This e-mail and any files transmitted with it are confidential and are intended solely for the use of the individual or entity to whom they are addressed. If you are not the intended recipient or the person responsible for delivering the e-mail to the intended recipient, be advised that you have received this e-mail in error and that any use, dissemination, forwarding, printing or copying of this e-mail is strictly prohibited. If you have received this e-mail in error, please immediately notify Superior Paving Corp. by telephone at (703) 631-0004. You will be reimbursed for reasonable costs incurred in notifying us.
Re: "Communications link failure" Exception being thrown.... Dear god help
On Tue, Oct 23, 2018 at 4:08 PM Zachary Piazza wrote: > You don't have to apologize my dude I appreciate any input. Gonna open up > a aws support ticket and see what they can tell me. How would I use the > MariaDB connector with guacamole tho? There's no Auth extension for Maria. > It shouldn't matter, since it's all supposed to be compatible, but, yes, you are correct, currently you cannot use the MariaDB Connector/J with Guacamole because the classes won't match up. -Nick >
Re: Handling of simultaneous key-down and mouse-button events
Hi Mike thanks a lot for your input. I thought a bit about it and it seems that the heuristics which makes sense here is: Use the keyboard behavior as is if no mouse button is pressed. If a mouse button is pressed, don't send repeated key events while the mouse button is pressed. Many CAD programs use combined key-down + mouse button-down + mouse move events to navigate in their 3D views, so I think that this behavior makes sense for at least this class of applications. I looked at the Guacamole.Keyboard as well as Guacamole.Mouse implementations. As I'm not a Javascript programmer I'm not completely sure whether I understand all of this stuff correctly, but it seems to me that I might get the described behavior by changing a function in guacamole/src/main/webapp/app/client/directives/guacClient.js: // Translate local keydown events to remote keydown events if keyboard is enabled $scope.$on('guacKeydown', function keydownListener(event, keysym, keyboard) { if ($scope.client.clientProperties.keyboardEnabled && !event.defaultPrevented && !($scope.client.mouse.currentState.left || $scope.client.mouse.currentState.middle || $scope.client.mouse.currentState.right)) { client.sendKeyEvent(1, keysym); event.preventDefault(); } }); The additional "!($scope.client.mouse.currentState.left || $scope.client.mouse.currentState.middle || $scope.client.mouse.currentState.right)" should tell the client to not send repeated key-down events if any mouse button is clicked. Does this sound right? signature.asc Description: This is a digitally signed message part
Re: "Communications link failure" Exception being thrown.... Dear god help
Until I get a response from aws I'm just gonna use a regular mysql server on an ec2 instance which should work no problem. Thanks again for all the suggestions guys, you are awesome. On Tue, Oct 23, 2018, 3:17 PM Nick Couchman wrote: > On Tue, Oct 23, 2018 at 4:08 PM Zachary Piazza wrote: > >> You don't have to apologize my dude I appreciate any input. Gonna open up >> a aws support ticket and see what they can tell me. How would I use the >> MariaDB connector with guacamole tho? There's no Auth extension for Maria. >> > > It shouldn't matter, since it's all supposed to be compatible, but, yes, > you are correct, currently you cannot use the MariaDB Connector/J with > Guacamole because the classes won't match up. > > -Nick > >>