On Thu, Apr 7, 2022 at 6:35 PM Estevão Costa <[email protected]> wrote:
> Perfect. We are using Postgres as database. How Can I set up that > configuration properly? > > I created an account with the same username and password as the AD account > in the Guacamole Admin panel but it doesn't work too. Looks like I'm doing > something wrong. > > Don't create the user with the same password as your AD password - for two reasons. First, this will still bypass the LDAP module, as the JDBC module will most likely be evaluated, first, and will succeed. Second, the password will get out-of-sync, anyway, assuming you're enforcing password rotation in AD, and there's no reason to try to keep them in-sync. Just set a different/random password for the JDBC user, but make sure the username is the same, and you should be good. One other note - the username matching that Guacamole does is case-sensitive - so, if you create a user in the JDBC module called "John_Doe" but log in with your AD credentials using "john_doe", they are considered different users. -Nick >
