AW: Re-Authenticate Google TOTP on New Device
Take my this script guacamole_resetTOTP.sh:
Try also the hidden Option "-s" 😊
#!/bin/bash
# wla, 06.06.2020: created
if [[ "$#" = "0" || "$#" -gt 2 || "$1" = "-h" ]] ; then
echo "$0 [GUAC_USER]"
exit 0
fi
SQL=/usr/bin/mysql
DB=guacamole
USER="$1"
# check if user exists
echo -e "Check user \"${USER}\" ... \c"
ENTITY_ID=$(${SQL} ${DB} -Bse "select entity_id from guacamole_entity where
name='${USER}';")
test -n "${ENTITY_ID}" && USER_ID=$(${SQL} ${DB} -Bse "select user_id from
guacamole_user where entity_id='${ENTITY_ID}';")
if [[ -z "${ENTITY_ID}" || -z "${USER_ID}" ]] ; then
echo -e "Not exist ... exit\n"
exit
else
echo -e "Found\n user ${USER}, entity_id=${ENTITY_ID}, user_id=${USER_ID}\n"
fi
# before reset
IS_TOTP=$(${SQL} ${DB} -Bse "select attribute_value from
guacamole_user_attribute where attribute_name='guac-totp-key-confirmed' and
user_id='${USER_ID}';")
if [ -z "${IS_TOTP}" ] ; then
echo "No TOTP initialization found for user \"${USER}\" ... nothing to do ...
exit"
exit
else
if [ "$2" = "-s" ] ; then
# dump the secret to stdout
${SQL} ${DB} -Bse "select attribute_value from guacamole_user_attribute
where attribute_name='guac-totp-key-secret' and user_id='${USER_ID}';"
exit
fi
echo -e "TOTP configured before reset: ${IS_TOTP}"
fi
# ask
read -p "Reset TOTP for user ${USER}? [ (y)es/(n)o ]: " KEY
if [ "${KEY}" != "y" -a "${KEY}" != "Y" ] ; then
echo -e "Cancel ...\n"
exit 0
fi
# new secret will be generated
${SQL} ${DB} -Bse "delete from guacamole_user_attribute where
user_id='${USER_ID}';"
# after reset
IS_TOTP=$(${SQL} ${DB} -Bse "select attribute_value from
guacamole_user_attribute where attribute_name='guac-totp-key-confirmed' and
user_id='${USER_ID}';")
if [ -n "${IS_TOTP}" ] ; then
echo "!!! Error, please check ... !!!"
exit 1
else
echo "TOTP reset for user \"${USER}\" was successful!"
fi
echo ""
AW: Home inaccessible
Okay, thanks for clarifying. Von: Mike Jumper Gesendet: Montag, 6. Juli 2020 10:50 An: user@guacamole.apache.org Betreff: Re: Home inaccessible Not a change - that behavior is intentional and has been a standard behavior for Guacamole for quite some time. If a user can only possibly choose one connection, and the user lacks admin privileges, they will be taken to their single connection instead of a home screen. - Mike On Mon, Jul 6, 2020, 01:45 Walter Laub mailto:walter.l...@schwindt.eu>> wrote: Ubuntu Server 18.04.4 Guacamole 1.2.0 + database + totp Hi, I'm not sure if this change is intended: if you only have permission for one connection, the home page will no longer be loaded as the first page and the connection will start immediately. Thanks, Walter
Home inaccessible
Ubuntu Server 18.04.4 Guacamole 1.2.0 + database + totp Hi, I'm not sure if this change is intended: if you only have permission for one connection, the home page will no longer be loaded as the first page and the connection will start immediately. Thanks, Walter
Issue with user creation
Ubuntu Server 18.04.4 Guacamole 1.2.0 + database + totp Hi, an issue with user creation (also in version 1.1.0): I have an user template from which I clone a new user. It works, but all entries in the PROFILE (Full name, Email address, Organisation, Role) are reset (empty) after the first login of the user and the totp pairing. Mit freundlichen Grüßen / Kind regards SCHWINDT CAD/CAM-Technologie GmbH Callenberger Straße 8, D-96450 Coburg Application Industrialisation i.A. Walter Laub Tel: +49-9561-5560-25 Fax: +49-9561-5560-10 www.schwindt.eu<http://www.schwindt.eu> Blog: catia-3dexperience.schwindt.eu<http://catia-3dexperience.schwindt.eu> Kundenportal: portal.schwindt.eu<https://portal.schwindt.eu/portal4s/kp/> Sitz der Gesellschaft Coburg, AG Coburg: HRB 2087 Geschäftsführung Dr. Ralf Seidler, Jörg Schwenk The information contained in this e-mail is confidential and may be privileged. It is intended for the addressees only. The copying, use, distribution or disclosure of the confidential or proprietary information contained in this document is strictly prohibited without prior written consent.
Permission denied when Clone user
Ubuntu Server 18.04.4 Guacamole 1.1.0 Hi, Can anyone confirm this or does anyone have a solution? Create and save a user. This works fine. Then select this user and choose Clone, assign a name, save. Permission denied" appears, but the user is created. Thanks, Walter
Posibilty to run a script at each successful login
Hi, Would it be possible to run a script at every successful login? If a hook exists here and even better variables such as user name, mail address are passed, then for security reasons a mail could be sent to the user at each successful login. Thanks, Walter
AW: Guacamole FreeRDP disconnect
Here a recompile solved the problem. But we only have Win10 clients. Von: Mike Jumper Gesendet: Donnerstag, 4. Juni 2020 08:38 An: user@guacamole.apache.org Betreff: Re: Guacamole FreeRDP disconnect On Wed, Jun 3, 2020, 22:16 ivanmarcus mailto:ivanmar...@yahoo.com.invalid>> wrote: Updating with some further information: A recompile of Guacamole server did *not* address the issue for me. Please let us know if it has for you. After running a few tests it seems the issue *may* not be present when connecting to Win10 machines. This was a small test sample however - if you have the same issue with Win10 please tell us. Symptoms may vary connecting to Win7 machines - could be instant disconnect, disconnect when left-click start menu, disconnect at other random times, colour issues if using 32-bit colour, and maybe others. Some of the above sound like regressions that have already been addressed on the "staging/1.2.0" branch, in particular the various flavors of disconnect. The odd colors, on the other hand ... If this only occurs with the latest release of FreeRDP, this is concerning. It suggests that the internals of the color conversation functions provided by the library have changed such that the byte order is incorrect in certain cases. - Mike
AW: Guacamole FreeRDP disconnect
Yeah, in my installation. In the meantime, I checked autoupdate, which installed an update of the freerdp2 libraries. This caused the problem, I think. Von: Neumen - Juan Prigoshin Gesendet: Dienstag, 2. Juni 2020 15:35 An: user@guacamole.apache.org Betreff: RE: Guacamole FreeRDP disconnect Same Ubuntu. With recompile the problema dissapear? De: Walter Laub [mailto:walter.l...@schwindt.eu] Enviado el: martes, 02 de junio de 2020 10:06 a.m. Para: user@guacamole.apache.org<mailto:user@guacamole.apache.org> Asunto: AW: Guacamole FreeRDP disconnect It should say "Ubuntu 18.04.4" Von: Walter Laub mailto:walter.l...@schwindt.eu>> Gesendet: Dienstag, 2. Juni 2020 15:04 An: user@guacamole.apache.org<mailto:user@guacamole.apache.org> Betreff: AW: Guacamole FreeRDP disconnect I had same(?) issue today. Recompile guacd and restart it and report the result. Do you have "Ubuntu 18.5.4"? Maybe the libraries have been updated? Von: Neumen - Juan Prigoshin mailto:jprigos...@autoneumen.com>> Gesendet: Dienstag, 2. Juni 2020 14:34 An: user@guacamole.apache.org<mailto:user@guacamole.apache.org> Betreff: Guacamole FreeRDP disconnect Hi, we have using Guacamole for about 2 months. We use a user-mapping auth. Everything Works fine. Today, the users cannot use RDP for conections. Login ok, Windows Login ok. 15 secs later, disconnect. Any help what i need see? The syslog shows no errors, but 4 diferent W7 machines shows the same behavior. The machine disconnect when we click in Start Menu. I have disabled remote disk, remote printing, same problem. Any help?? Juan
AW: Guacamole FreeRDP disconnect
It should say "Ubuntu 18.04.4" Von: Walter Laub Gesendet: Dienstag, 2. Juni 2020 15:04 An: user@guacamole.apache.org Betreff: AW: Guacamole FreeRDP disconnect I had same(?) issue today. Recompile guacd and restart it and report the result. Do you have "Ubuntu 18.5.4"? Maybe the libraries have been updated? Von: Neumen - Juan Prigoshin mailto:jprigos...@autoneumen.com>> Gesendet: Dienstag, 2. Juni 2020 14:34 An: user@guacamole.apache.org<mailto:user@guacamole.apache.org> Betreff: Guacamole FreeRDP disconnect Hi, we have using Guacamole for about 2 months. We use a user-mapping auth. Everything Works fine. Today, the users cannot use RDP for conections. Login ok, Windows Login ok. 15 secs later, disconnect. Any help what i need see? The syslog shows no errors, but 4 diferent W7 machines shows the same behavior. The machine disconnect when we click in Start Menu. I have disabled remote disk, remote printing, same problem. Any help?? Juan
AW: Guacamole FreeRDP disconnect
I had same(?) issue today. Recompile guacd and restart it and report the result. Do you have "Ubuntu 18.5.4"? Maybe the libraries have been updated? Von: Neumen - Juan Prigoshin Gesendet: Dienstag, 2. Juni 2020 14:34 An: user@guacamole.apache.org Betreff: Guacamole FreeRDP disconnect Hi, we have using Guacamole for about 2 months. We use a user-mapping auth. Everything Works fine. Today, the users cannot use RDP for conections. Login ok, Windows Login ok. 15 secs later, disconnect. Any help what i need see? The syslog shows no errors, but 4 diferent W7 machines shows the same behavior. The machine disconnect when we click in Start Menu. I have disabled remote disk, remote printing, same problem. Any help?? Juan
AW: Remote IP behind haproxy mode tcp
Hi, > send-proxy/send-proxy-v2 So, I think with this setup it's not possible to monitor the remote ip. Since the Tomcat does not support the PROXY protocol, it cannot handle it. Thanks, Walter - To unsubscribe, e-mail: user-unsubscr...@guacamole.apache.org For additional commands, e-mail: user-h...@guacamole.apache.org
Remote IP behind haproxy mode tcp
Sorry, first postet it to dev, but "user" should be the right adress. Von: Walter Laub Gesendet: Montag, 25. Mai 2020 12:56 An: d...@guacamole.apache.org Betreff: Remote IP behind haproxy mode tcp Hi, guacamole behind haproxy with "mode tcp". HTTPS is terminated on tomcat, so haproxy use "mode tcp". It works. But, how to pass the "remote IP" (Client IP) to guacamole? It see the IP of haproxy ... Thanks, Walter
