subject:"Re\: Issue logging in locally as guacadmin on new install"

RE: Issue logging in locally as guacadmin on new install

2024-01-22 Thread Devine, Harry (FAA)

I thought our playbook should’ve done that, but I guess it did not.  I just did 
it manually from my notes, and was able to log in with guacadmin locally as 
well as an LDAP user.  So I’ll double check those parts of the playbook (where 
the jar file ends up and whether the SQL files get imported) for any 
issues/errors.

Thanks!
Harry

From: Nick Couchman 
Sent: Monday, January 22, 2024 1:28 PM
To: user@guacamole.apache.org
Subject: Re: Issue logging in locally as guacadmin on new install

On Mon, Jan 22, 2024 at 1:26 PM Devine, Harry (FAA) 
mailto:harry.dev...@faa.gov.invalid>> wrote:
So I’m still fighting this.  I found an article where the user said they put 
the connector in the guacamole lib folder and all was good.  So I put the 
mysql-connector-j-8.2.0.jar file under /usr/share/tomcat/.guacamole/lib, 
changed ownership to tomcat:tomcat, and restarted Tomcat.  I don’t get the JDBC 
driver error any more, but I do get the following in /var/log/messages, and the 
web interface shows an error:

Jan 22 13:21:46 guac-test server[416800]: 13:21:46.637 [main] INFO  
o.a.g.extension.ExtensionModule - Extension "MySQL Authentication" (mysql) 
loaded.
Jan 22 13:21:46 guac-test server[416800]: 13:21:46.770 [main] WARN  
o.a.g.e.LanguageResourceService - Overlay language resource "de" does not exist.
Jan 22 13:21:46 guac-test server[416800]: 13:21:46.772 [main] INFO  
o.a.g.extension.ExtensionModule - Extension "LDAP Authentication" (ldap) loaded.
Jan 22 13:21:46 guac-test server[416800]: 13:21:46.792 [main] INFO  
o.a.g.extension.ExtensionModule - Extension "Guac-Test" (tsose) loaded.
Jan 22 13:21:46 guac-test server[416800]: 13:21:46.863 [main] INFO  
o.a.g.t.w.WebSocketTunnelModule - Loading JSR-356 WebSocket support...
Jan 22 13:21:47 guac-test server[416800]: 22-Jan-2024 13:21:47.534 INFO [main] 
org.apache.catalina.startup.HostConfig.deployWAR Deployment of web application 
archive [/var/lib/tomcat/webapps/guacamole.war] has finished in [3,327] ms
Jan 22 13:21:47 guac-test server[416800]: 22-Jan-2024 13:21:47.536 INFO [main] 
org.apache.coyote.AbstractProtocol.start Starting ProtocolHandler 
["http-nio-8080"]
Jan 22 13:21:47 guac-test server[416800]: 22-Jan-2024 13:21:47.553 INFO [main] 
org.apache.catalina.startup.Catalina.start Server startup in [3384] milliseconds
Jan 22 13:22:00 guac-test server[416800]: Loading class 
`com.mysql.jdbc.Driver'. This is deprecated. The new driver class is 
`com.mysql.cj.jdbc.Driver'. The driver is automatically registered via the SPI 
and manual loading of the driver class is generally unnecessary.
Jan 22 13:22:00 guac-test server[416800]: 13:22:00.308 [http-nio-8080-exec-7] 
WARN  o.a.g.e.AuthenticationProviderFacade - The "mysql" authentication 
provider has encountered an internal error which will halt the authentication 
process. If this is unexpected or you are the developer of this authentication 
provider, you may wish to enable debug-level logging. If this is expected and 
you wish to ignore such failures in the future, please set 
"skip-if-unavailable: mysql" within your guacamole.properties.
Jan 22 13:22:00 guac-test server[416800]: 13:22:00.312 [http-nio-8080-exec-7] 
ERROR o.a.g.rest.RESTExceptionMapper - Unexpected internal error:
Jan 22 13:22:00 guac-test server[416800]: ### Error querying database.  Cause: 
java.sql.SQLSyntaxErrorException: Table 'guacamole.guacamole_user' doesn't exist

If it's a brand-new install, have you imported the SQL schema into the 
database? The indication is that it can connect, but the table(s) is/are 
missing...

-Nick

Re: Issue logging in locally as guacadmin on new install

2024-01-22 Thread Nick Couchman

On Mon, Jan 22, 2024 at 1:26 PM Devine, Harry (FAA)
 wrote:

> So I’m still fighting this.  I found an article where the user said they
> put the connector in the guacamole lib folder and all was good.  So I put
> the mysql-connector-j-8.2.0.jar file under
> /usr/share/tomcat/.guacamole/lib, changed ownership to tomcat:tomcat, and
> restarted Tomcat.  I don’t get the JDBC driver error any more, but I do get
> the following in /var/log/messages, and the web interface shows an error:
>
>
>
> Jan 22 13:21:46 guac-test server[416800]: 13:21:46.637 [main] INFO
> o.a.g.extension.ExtensionModule - Extension "MySQL Authentication" (mysql)
> loaded.
>
> Jan 22 13:21:46 guac-test server[416800]: 13:21:46.770 [main] WARN
> o.a.g.e.LanguageResourceService - Overlay language resource "de" does not
> exist.
>
> Jan 22 13:21:46 guac-test server[416800]: 13:21:46.772 [main] INFO
> o.a.g.extension.ExtensionModule - Extension "LDAP Authentication" (ldap)
> loaded.
>
> Jan 22 13:21:46 guac-test server[416800]: 13:21:46.792 [main] INFO
> o.a.g.extension.ExtensionModule - Extension "Guac-Test" (tsose) loaded.
>
> Jan 22 13:21:46 guac-test server[416800]: 13:21:46.863 [main] INFO
> o.a.g.t.w.WebSocketTunnelModule - Loading JSR-356 WebSocket support...
>
> Jan 22 13:21:47 guac-test server[416800]: 22-Jan-2024 13:21:47.534 INFO
> [main] org.apache.catalina.startup.HostConfig.deployWAR Deployment of web
> application archive [/var/lib/tomcat/webapps/guacamole.war] has finished in
> [3,327] ms
>
> Jan 22 13:21:47 guac-test server[416800]: 22-Jan-2024 13:21:47.536 INFO
> [main] org.apache.coyote.AbstractProtocol.start Starting ProtocolHandler
> ["http-nio-8080"]
>
> Jan 22 13:21:47 guac-test server[416800]: 22-Jan-2024 13:21:47.553 INFO
> [main] org.apache.catalina.startup.Catalina.start Server startup in [3384]
> milliseconds
>
> Jan 22 13:22:00 guac-test server[416800]: Loading class
> `com.mysql.jdbc.Driver'. This is deprecated. The new driver class is
> `com.mysql.cj.jdbc.Driver'. The driver is automatically registered via the
> SPI and manual loading of the driver class is generally unnecessary.
>
> Jan 22 13:22:00 guac-test server[416800]: 13:22:00.308
> [http-nio-8080-exec-7] WARN  o.a.g.e.AuthenticationProviderFacade - The
> "mysql" authentication provider has encountered an internal error which
> will halt the authentication process. If this is unexpected or you are the
> developer of this authentication provider, you may wish to enable
> debug-level logging. If this is expected and you wish to ignore such
> failures in the future, please set "skip-if-unavailable: mysql" within your
> guacamole.properties.
>
> Jan 22 13:22:00 guac-test server[416800]: 13:22:00.312
> [http-nio-8080-exec-7] ERROR o.a.g.rest.RESTExceptionMapper - Unexpected
> internal error:
>
> Jan 22 13:22:00 guac-test server[416800]: ### Error querying database.
> Cause: java.sql.SQLSyntaxErrorException: Table 'guacamole.guacamole_user'
> doesn't exist
>

If it's a brand-new install, have you imported the SQL schema into the
database? The indication is that it can connect, but the table(s) is/are
missing...

-Nick

>

RE: Issue logging in locally as guacadmin on new install

2024-01-22 Thread Devine, Harry (FAA)

So I’m still fighting this.  I found an article where the user said they put 
the connector in the guacamole lib folder and all was good.  So I put the 
mysql-connector-j-8.2.0.jar file under /usr/share/tomcat/.guacamole/lib, 
changed ownership to tomcat:tomcat, and restarted Tomcat.  I don’t get the JDBC 
driver error any more, but I do get the following in /var/log/messages, and the 
web interface shows an error:

Jan 22 13:21:46 guac-test server[416800]: 13:21:46.637 [main] INFO  
o.a.g.extension.ExtensionModule - Extension "MySQL Authentication" (mysql) 
loaded.
Jan 22 13:21:46 guac-test server[416800]: 13:21:46.770 [main] WARN  
o.a.g.e.LanguageResourceService - Overlay language resource "de" does not exist.
Jan 22 13:21:46 guac-test server[416800]: 13:21:46.772 [main] INFO  
o.a.g.extension.ExtensionModule - Extension "LDAP Authentication" (ldap) loaded.
Jan 22 13:21:46 guac-test server[416800]: 13:21:46.792 [main] INFO  
o.a.g.extension.ExtensionModule - Extension "Guac-Test" (tsose) loaded.
Jan 22 13:21:46 guac-test server[416800]: 13:21:46.863 [main] INFO  
o.a.g.t.w.WebSocketTunnelModule - Loading JSR-356 WebSocket support...
Jan 22 13:21:47 guac-test server[416800]: 22-Jan-2024 13:21:47.534 INFO [main] 
org.apache.catalina.startup.HostConfig.deployWAR Deployment of web application 
archive [/var/lib/tomcat/webapps/guacamole.war] has finished in [3,327] ms
Jan 22 13:21:47 guac-test server[416800]: 22-Jan-2024 13:21:47.536 INFO [main] 
org.apache.coyote.AbstractProtocol.start Starting ProtocolHandler 
["http-nio-8080"]
Jan 22 13:21:47 guac-test server[416800]: 22-Jan-2024 13:21:47.553 INFO [main] 
org.apache.catalina.startup.Catalina.start Server startup in [3384] milliseconds
Jan 22 13:22:00 guac-test server[416800]: Loading class 
`com.mysql.jdbc.Driver'. This is deprecated. The new driver class is 
`com.mysql.cj.jdbc.Driver'. The driver is automatically registered via the SPI 
and manual loading of the driver class is generally unnecessary.
Jan 22 13:22:00 guac-test server[416800]: 13:22:00.308 [http-nio-8080-exec-7] 
WARN  o.a.g.e.AuthenticationProviderFacade - The "mysql" authentication 
provider has encountered an internal error which will halt the authentication 
process. If this is unexpected or you are the developer of this authentication 
provider, you may wish to enable debug-level logging. If this is expected and 
you wish to ignore such failures in the future, please set 
"skip-if-unavailable: mysql" within your guacamole.properties.
Jan 22 13:22:00 guac-test server[416800]: 13:22:00.312 [http-nio-8080-exec-7] 
ERROR o.a.g.rest.RESTExceptionMapper - Unexpected internal error:
Jan 22 13:22:00 guac-test server[416800]: ### Error querying database.  Cause: 
java.sql.SQLSyntaxErrorException: Table 'guacamole.guacamole_user' doesn't exist
Jan 22 13:22:00 guac-test server[416800]: ### The error may exist in 
org/apache/guacamole/auth/jdbc/user/UserMapper.xml
Jan 22 13:22:00 guac-test server[416800]: ### The error may involve 
defaultParameterMap
Jan 22 13:22:00 guac-test server[416800]: ### The error occurred while setting 
parameters
Jan 22 13:22:00 guac-test server[416800]: ### SQL: SELECT 
guacamole_user.user_id, guacamole_entity.entity_id, 
guacamole_entity.name, password_hash, password_salt,
 password_date, disabled, expired, 
access_window_start, access_window_end, valid_from, 
valid_until, timezone, full_name, 
email_address, organization, organizational_role,   
  MAX(start_date) AS last_active FROM guacamole_user JOIN 
guacamole_entity ON guacamole_user.entity_id = guacamole_entity.entity_id   
  LEFT JOIN guacamole_user_history ON guacamole_user_history.user_id = 
guacamole_user.user_id WHERE guacamole_entity.name = ?  
   AND guacamole_entity.type = 'USER' GROUP BY 
guacamole_user.user_id, guacamole_entity.entity_id;  SELECT 
guacamole_user_attribute.user_id, 
guacamole_user_attribute.attribute_name, 
guacamole_user_attribute.attribute_value FROM guacamole_user_attribute  
   JOIN guacamole_user ON guacamole_user.user_id = 
guacamole_user_attribute.user_id JOIN guacamole_entity ON 
guacamole_user.entity_id = guacamole_entity.entity_id WHERE 
guacamole_entity.name = ? AND guacamole_entity.type = 'USER'
Jan 22 13:22:00 guac-test server[416800]: ### Cause: 
java.sql.SQLSyntaxErrorException: Table 'guacamole.guacamole_user' doesn't exist

Thoughts?

Thanks,
Harry

From: Devine, Harry (FAA) 
Sent: Wednesday, January 17, 2024 12:57 PM
To: user@guacamole.apache.org
Subject: RE: Issue logging in locally as guacadmin on new install

I have guacamole-auth-jdbc-mysql-1.5.4.jar and guacamole-auth-ldap-1.5.4.jar 
under

RE: Issue logging in locally as guacadmin on new install

2024-01-17 Thread Devine, Harry (FAA)

I have guacamole-auth-jdbc-mysql-1.5.4.jar and guacamole-auth-ldap-1.5.4.jar 
under /etc/guacamole/extensions, and mysql-connector-j-8.2.0.jar under 
/etc/guacamole/lib.  Is this not the correct locations?

Thanks,
Harry

From: Nick Couchman 
Sent: Wednesday, January 17, 2024 11:26 AM
To: user@guacamole.apache.org
Subject: Re: Issue logging in locally as guacadmin on new install

On Wed, Jan 17, 2024 at 10:23 AM Vincent Sherwood 
mailto:vince...@itsolutions.ie.invalid>> wrote:
We have  mysql-connector-j-8.0.32.jar  on our system and it works great with 
MariaDB 10.5.22

Note: we didn't install from an RPM but rather just downloaded and copied the 
jar file directly into /etc/guacamole/lib/ - perhaps guacamole is not finding 
the jar file where the RPM installs it.

Yeah, depending on where the RPM drops the library, and how Tomcat has been 
installed, the MySQL JDBC driver may not be found by default. Linking it in 
/etc/guacamole/lib is definitely the best way to make sure Guacamole can find 
it.

-Nick

Re: Issue logging in locally as guacadmin on new install

2024-01-17 Thread Nick Couchman

On Wed, Jan 17, 2024 at 10:23 AM Vincent Sherwood
 wrote:

> We have  mysql-connector-j-8.0.32.jar  on our system and it works great
> with MariaDB 10.5.22
>
> Note: we didn't install from an RPM but rather just downloaded and copied
> the jar file directly into /etc/guacamole/lib/ - perhaps guacamole is not
> finding the jar file where the RPM installs it.
>

Yeah, depending on where the RPM drops the library, and how Tomcat has been
installed, the MySQL JDBC driver may not be found by default. Linking it in
/etc/guacamole/lib is definitely the best way to make sure Guacamole can
find it.

-Nick

>

Re: Issue logging in locally as guacadmin on new install

2024-01-17 Thread Vincent Sherwood

We have  mysql-connector-j-8.0.32.jar  on our system and it works great with 
MariaDB 10.5.22

Note: we didn't install from an RPM but rather just downloaded and copied the 
jar file directly into /etc/guacamole/lib/ - perhaps guacamole is not finding 
the jar file where the RPM installs it.


From: Devine, Harry (FAA) 
Sent: Wednesday 17 January 2024 15:06
To: user@guacamole.apache.org 
Subject: RE: Issue logging in locally as guacadmin on new install


Any thoughts on this?  I still can’t log in with guacadmin, but can log in with 
an LDAP user.  I’ll need the local guacadmin user to be able to log in moving 
forward, and whatever the solution turns out to be for this, I’ll need to 
update my Ansible role so future Guacamole installations behave as intended.



Thanks,

Harry



From: Devine, Harry (FAA) 
Sent: Thursday, January 11, 2024 3:20 PM
To: user@guacamole.apache.org
Subject: RE: Issue logging in locally as guacadmin on new install



I do have the “mysql-connector-j-8.0.33-1.el8.noarch.rpm” file as part of my 
Ansible role, and that gets installed as part of the playbook execution.  Could 
it be that this is not the correct connector for MariaDB on RHEL 8?



Thanks,

Harry



From: Devine, Harry (FAA) 
mailto:harry.dev...@faa.gov.INVALID>>
Sent: Thursday, January 11, 2024 3:14 PM
To: user@guacamole.apache.org
Subject: Issue logging in locally as guacadmin on new install



I have a playbook that installs Guacamole for me.  I’ve been refining it for a 
few days and it’s finally just-about working, but the last thing left to get 
working is to log in as the local guacadmin user.  I have the JDBC and LDAP jar 
files installed under /usr/share/tomcat/.guacamole/extensions, and the LDAP 
file loads, but the JDBC will not:



Jan 11 15:05:05 guac-test server[242104]: 15:05:05.785 [main] INFO  
o.a.g.extension.ExtensionModule -  - [mysql] "MySQL Authentication" 
(/usr/share/tomcat/.guacamole/extensions/guacamole-auth-jdbc-mysql-1.5.4.jar)

Jan 11 15:05:05 guac-test server[242104]: 15:05:05.785 [main] INFO  
o.a.g.extension.ExtensionModule -  - [ldap] "LDAP Authentication" 
(/usr/share/tomcat/.guacamole/extensions/guacamole-auth-ldap-1.5.4.jar)

Jan 11 15:05:05 guac-test server[242104]: 15:05:05.785 [main] INFO  
o.a.g.extension.ExtensionModule -  - [tsose] "Guac-Test" 
(/usr/share/tomcat/.guacamole/extensions/tsose.jar)

Jan 11 15:05:05 guac-test server[242104]: 15:05:05.785 [main] INFO  
o.a.g.extension.ExtensionModule - To change this order, set the 
"extension-priority" property or rename the extension files. The default 
priority of extensions is dictated by the sort order of their filenames.

Jan 11 15:05:05 guac-test server[242104]: 15:05:05.797 [main] ERROR 
o.a.g.extension.ProviderFactory - authentication provider extension failed to 
start: No JDBC driver for MySQL/MariaDB is installed.

Jan 11 15:05:05 guac-test server[242104]: 15:05:05.798 [main] ERROR 
o.a.g.extension.ProviderFactory - authentication provider extension failed to 
start: No JDBC driver for MySQL/MariaDB is installed.

Jan 11 15:05:05 guac-test server[242104]: 15:05:05.834 [main] INFO  
o.a.g.extension.ExtensionModule - Extension "MySQL Authentication" (mysql) 
loaded.

Jan 11 15:05:05 guac-test server[242104]: 15:05:05.968 [main] WARN  
o.a.g.e.LanguageResourceService - Overlay language resource "de" does not exist.

Jan 11 15:05:05 guac-test server[242104]: 15:05:05.970 [main] INFO  
o.a.g.extension.ExtensionModule - Extension "LDAP Authentication" (ldap) loaded.

Jan 11 15:05:05 guac-test server[242104]: 15:05:05.990 [main] INFO  
o.a.g.extension.ExtensionModule - Extension "Guac-Test" (tsose) loaded.



When I attempt to log in as guacadmin then as an LDAP user, the LDAP user works 
but not guacadmin (I redacted the LDAP server name and internal IPs):



Jan 11 15:06:53 guac-test server[242104]: 15:06:53.904 [http-nio-8080-exec-3] 
WARN  o.a.g.e.AuthenticationProviderFacade - Authentication attempt ignored 
because the relevant authentication provider could not be loaded. Please check 
for errors earlier in the logs.

Jan 11 15:06:53 guac-test server[242104]: 15:06:53.904 [http-nio-8080-exec-3] 
WARN  o.a.g.e.AuthenticationProviderFacade - Authentication attempt ignored 
because the relevant authentication provider could not be loaded. Please check 
for errors earlier in the logs.

Jan 11 15:06:58 guac-test server[242104]: 15:06:58.885 [http-nio-8080-exec-2] 
WARN  o.a.g.e.AuthenticationProviderFacade - Authentication attempt ignored 
because the relevant authentication provider could not be loaded. Please check 
for errors earlier in the logs.

Jan 11 15:06:58 guac-test server[242104]: 15:06:58.892 [http-nio-8080-exec-2] 
INFO  o.a.g.a.l.AuthenticationProviderService - Unable to determine DN of user 
"guacadmin" using LDAP server "ldap1". Proceeding with next server...

Jan 11 15:06:58 guac-test server[242104]: 15:06:58.892 [http-nio-8080-exec-2] 
INFO

RE: Issue logging in locally as guacadmin on new install

2024-01-17 Thread Devine, Harry (FAA)

Any thoughts on this?  I still can't log in with guacadmin, but can log in with 
an LDAP user.  I'll need the local guacadmin user to be able to log in moving 
forward, and whatever the solution turns out to be for this, I'll need to 
update my Ansible role so future Guacamole installations behave as intended.

Thanks,
Harry

From: Devine, Harry (FAA) 
Sent: Thursday, January 11, 2024 3:20 PM
To: user@guacamole.apache.org
Subject: RE: Issue logging in locally as guacadmin on new install

I do have the "mysql-connector-j-8.0.33-1.el8.noarch.rpm" file as part of my 
Ansible role, and that gets installed as part of the playbook execution.  Could 
it be that this is not the correct connector for MariaDB on RHEL 8?

Thanks,
Harry

From: Devine, Harry (FAA) 
mailto:harry.dev...@faa.gov.INVALID>>
Sent: Thursday, January 11, 2024 3:14 PM
To: user@guacamole.apache.org
Subject: Issue logging in locally as guacadmin on new install

I have a playbook that installs Guacamole for me.  I've been refining it for a 
few days and it's finally just-about working, but the last thing left to get 
working is to log in as the local guacadmin user.  I have the JDBC and LDAP jar 
files installed under /usr/share/tomcat/.guacamole/extensions, and the LDAP 
file loads, but the JDBC will not:

Jan 11 15:05:05 guac-test server[242104]: 15:05:05.785 [main] INFO  
o.a.g.extension.ExtensionModule -  - [mysql] "MySQL Authentication" 
(/usr/share/tomcat/.guacamole/extensions/guacamole-auth-jdbc-mysql-1.5.4.jar)
Jan 11 15:05:05 guac-test server[242104]: 15:05:05.785 [main] INFO  
o.a.g.extension.ExtensionModule -  - [ldap] "LDAP Authentication" 
(/usr/share/tomcat/.guacamole/extensions/guacamole-auth-ldap-1.5.4.jar)
Jan 11 15:05:05 guac-test server[242104]: 15:05:05.785 [main] INFO  
o.a.g.extension.ExtensionModule -  - [tsose] "Guac-Test" 
(/usr/share/tomcat/.guacamole/extensions/tsose.jar)
Jan 11 15:05:05 guac-test server[242104]: 15:05:05.785 [main] INFO  
o.a.g.extension.ExtensionModule - To change this order, set the 
"extension-priority" property or rename the extension files. The default 
priority of extensions is dictated by the sort order of their filenames.
Jan 11 15:05:05 guac-test server[242104]: 15:05:05.797 [main] ERROR 
o.a.g.extension.ProviderFactory - authentication provider extension failed to 
start: No JDBC driver for MySQL/MariaDB is installed.
Jan 11 15:05:05 guac-test server[242104]: 15:05:05.798 [main] ERROR 
o.a.g.extension.ProviderFactory - authentication provider extension failed to 
start: No JDBC driver for MySQL/MariaDB is installed.
Jan 11 15:05:05 guac-test server[242104]: 15:05:05.834 [main] INFO  
o.a.g.extension.ExtensionModule - Extension "MySQL Authentication" (mysql) 
loaded.
Jan 11 15:05:05 guac-test server[242104]: 15:05:05.968 [main] WARN  
o.a.g.e.LanguageResourceService - Overlay language resource "de" does not exist.
Jan 11 15:05:05 guac-test server[242104]: 15:05:05.970 [main] INFO  
o.a.g.extension.ExtensionModule - Extension "LDAP Authentication" (ldap) loaded.
Jan 11 15:05:05 guac-test server[242104]: 15:05:05.990 [main] INFO  
o.a.g.extension.ExtensionModule - Extension "Guac-Test" (tsose) loaded.

When I attempt to log in as guacadmin then as an LDAP user, the LDAP user works 
but not guacadmin (I redacted the LDAP server name and internal IPs):

Jan 11 15:06:53 guac-test server[242104]: 15:06:53.904 [http-nio-8080-exec-3] 
WARN  o.a.g.e.AuthenticationProviderFacade - Authentication attempt ignored 
because the relevant authentication provider could not be loaded. Please check 
for errors earlier in the logs.
Jan 11 15:06:53 guac-test server[242104]: 15:06:53.904 [http-nio-8080-exec-3] 
WARN  o.a.g.e.AuthenticationProviderFacade - Authentication attempt ignored 
because the relevant authentication provider could not be loaded. Please check 
for errors earlier in the logs.
Jan 11 15:06:58 guac-test server[242104]: 15:06:58.885 [http-nio-8080-exec-2] 
WARN  o.a.g.e.AuthenticationProviderFacade - Authentication attempt ignored 
because the relevant authentication provider could not be loaded. Please check 
for errors earlier in the logs.
Jan 11 15:06:58 guac-test server[242104]: 15:06:58.892 [http-nio-8080-exec-2] 
INFO  o.a.g.a.l.AuthenticationProviderService - Unable to determine DN of user 
"guacadmin" using LDAP server "ldap1". Proceeding with next server...
Jan 11 15:06:58 guac-test server[242104]: 15:06:58.892 [http-nio-8080-exec-2] 
INFO  o.a.g.a.l.AuthenticationProviderService - User "guacadmin" did not 
successfully authenticate against any LDAP server.
Jan 11 15:06:58 guac-test server[242104]: 15:06:58.892 [http-nio-8080-exec-2] 
WARN  o.a.g.r.auth.AuthenticationService - Authentication attempt from 
[xxx.xxx.xxx.xxx, 127.0.0.1] for user "guacadmin" failed.

Any thoughts on what I could have misconfigured?

Thanks,
Harry

Harry Devine
Secure-OSE System Administrator
Red Hat Certified System Administrator (RHCSA)
Work: (609) 485-4218
FAA Cell:  (609)

RE: Issue logging in locally as guacadmin on new install

2024-01-11 Thread Devine, Harry (FAA)

I do have the "mysql-connector-j-8.0.33-1.el8.noarch.rpm" file as part of my 
Ansible role, and that gets installed as part of the playbook execution.  Could 
it be that this is not the correct connector for MariaDB on RHEL 8?

Thanks,
Harry

From: Devine, Harry (FAA) 
Sent: Thursday, January 11, 2024 3:14 PM
To: user@guacamole.apache.org
Subject: Issue logging in locally as guacadmin on new install

I have a playbook that installs Guacamole for me.  I've been refining it for a 
few days and it's finally just-about working, but the last thing left to get 
working is to log in as the local guacadmin user.  I have the JDBC and LDAP jar 
files installed under /usr/share/tomcat/.guacamole/extensions, and the LDAP 
file loads, but the JDBC will not:

Jan 11 15:05:05 guac-test server[242104]: 15:05:05.785 [main] INFO  
o.a.g.extension.ExtensionModule -  - [mysql] "MySQL Authentication" 
(/usr/share/tomcat/.guacamole/extensions/guacamole-auth-jdbc-mysql-1.5.4.jar)
Jan 11 15:05:05 guac-test server[242104]: 15:05:05.785 [main] INFO  
o.a.g.extension.ExtensionModule -  - [ldap] "LDAP Authentication" 
(/usr/share/tomcat/.guacamole/extensions/guacamole-auth-ldap-1.5.4.jar)
Jan 11 15:05:05 guac-test server[242104]: 15:05:05.785 [main] INFO  
o.a.g.extension.ExtensionModule -  - [tsose] "Guac-Test" 
(/usr/share/tomcat/.guacamole/extensions/tsose.jar)
Jan 11 15:05:05 guac-test server[242104]: 15:05:05.785 [main] INFO  
o.a.g.extension.ExtensionModule - To change this order, set the 
"extension-priority" property or rename the extension files. The default 
priority of extensions is dictated by the sort order of their filenames.
Jan 11 15:05:05 guac-test server[242104]: 15:05:05.797 [main] ERROR 
o.a.g.extension.ProviderFactory - authentication provider extension failed to 
start: No JDBC driver for MySQL/MariaDB is installed.
Jan 11 15:05:05 guac-test server[242104]: 15:05:05.798 [main] ERROR 
o.a.g.extension.ProviderFactory - authentication provider extension failed to 
start: No JDBC driver for MySQL/MariaDB is installed.
Jan 11 15:05:05 guac-test server[242104]: 15:05:05.834 [main] INFO  
o.a.g.extension.ExtensionModule - Extension "MySQL Authentication" (mysql) 
loaded.
Jan 11 15:05:05 guac-test server[242104]: 15:05:05.968 [main] WARN  
o.a.g.e.LanguageResourceService - Overlay language resource "de" does not exist.
Jan 11 15:05:05 guac-test server[242104]: 15:05:05.970 [main] INFO  
o.a.g.extension.ExtensionModule - Extension "LDAP Authentication" (ldap) loaded.
Jan 11 15:05:05 guac-test server[242104]: 15:05:05.990 [main] INFO  
o.a.g.extension.ExtensionModule - Extension "Guac-Test" (tsose) loaded.

When I attempt to log in as guacadmin then as an LDAP user, the LDAP user works 
but not guacadmin (I redacted the LDAP server name and internal IPs):

Jan 11 15:06:53 guac-test server[242104]: 15:06:53.904 [http-nio-8080-exec-3] 
WARN  o.a.g.e.AuthenticationProviderFacade - Authentication attempt ignored 
because the relevant authentication provider could not be loaded. Please check 
for errors earlier in the logs.
Jan 11 15:06:53 guac-test server[242104]: 15:06:53.904 [http-nio-8080-exec-3] 
WARN  o.a.g.e.AuthenticationProviderFacade - Authentication attempt ignored 
because the relevant authentication provider could not be loaded. Please check 
for errors earlier in the logs.
Jan 11 15:06:58 guac-test server[242104]: 15:06:58.885 [http-nio-8080-exec-2] 
WARN  o.a.g.e.AuthenticationProviderFacade - Authentication attempt ignored 
because the relevant authentication provider could not be loaded. Please check 
for errors earlier in the logs.
Jan 11 15:06:58 guac-test server[242104]: 15:06:58.892 [http-nio-8080-exec-2] 
INFO  o.a.g.a.l.AuthenticationProviderService - Unable to determine DN of user 
"guacadmin" using LDAP server "ldap1". Proceeding with next server...
Jan 11 15:06:58 guac-test server[242104]: 15:06:58.892 [http-nio-8080-exec-2] 
INFO  o.a.g.a.l.AuthenticationProviderService - User "guacadmin" did not 
successfully authenticate against any LDAP server.
Jan 11 15:06:58 guac-test server[242104]: 15:06:58.892 [http-nio-8080-exec-2] 
WARN  o.a.g.r.auth.AuthenticationService - Authentication attempt from 
[xxx.xxx.xxx.xxx, 127.0.0.1] for user "guacadmin" failed.

Any thoughts on what I could have misconfigured?

Thanks,
Harry

Harry Devine
Secure-OSE System Administrator
Red Hat Certified System Administrator (RHCSA)
Work: (609) 485-4218
FAA Cell:  (609) 612-7274
Home Office/Telework: (609) 547-3579

RE: Issue logging in locally as guacadmin on new install

Re: Issue logging in locally as guacadmin on new install

RE: Issue logging in locally as guacadmin on new install

RE: Issue logging in locally as guacadmin on new install

Re: Issue logging in locally as guacadmin on new install

Re: Issue logging in locally as guacadmin on new install

RE: Issue logging in locally as guacadmin on new install

RE: Issue logging in locally as guacadmin on new install

8 matches

Site Navigation

Mail list logo

Footer information