Re: ISSUES with Japanese Keys from Japanese Keyboard in Japanese OS

[Amarjeet Singh]

Japanese keyboard is set locally as It is japanese O.S. I have set it to
Japanese.

I have  set remote server layout to japanese.

Other characters are printing in Japanese language.

On Wed, Mar 7, 2018 at 12:17 AM, Mike Jumper 
wrote:

> On Tue, Mar 6, 2018 at 10:41 AM, Amarjeet Singh 
> wrote:
>
>> Hi Team,
>>
>>
>> I have taken RDP of Japanese Windows 10 [ remote O.S. ] from Japanese
>> Windows 10 [ local O.S. ] .
>>
>> Guacamole Client Version : [ Compiled from fresh code  ]
>> Guacamole Server Version   : [ Compiled from fresh code  ]
>>
>> I an facing issues with many keys.
>>
>> *server-layout* is :   ja-jp-qwerty
>>
>>
> What keyboard layout is set locally?
>
> Can you confirm that the keyboard layout of the remote server is the
> Japanese layout?
>
> - Mike
>
>

Re: ISSUES with Japanese Keys from Japanese Keyboard in Japanese OS

[Amarjeet Singh]

if I type following keys I can see the japanese characters in hiragana

 biyoin

this means I am able to pass japanese keyboard layout to Guacamole and able
to type most of the keys.

but when I press the \ key (as per my hardware japanese keyboard), it does
not type anything. The key @ types some other character. similarly there
are more keys which are either not typing anything or typing incorrecct
characters

I am using a Japanese hardware keyboard with 106/109 layout.

I had this same problem with MSTSC also. I checked in control panel ->
language options that the keyboard layout was set to "English keyboard
101/102".  I changed the hardware keyboard layout to  "Japanese  106/109
key" , then the problem stopped and all keys started functioning correctly
using mstsc.

So I think the problem I am having when using Guacamole has to do with
keyboard layout.

Can you tell me what am I missing ?

I have passed the below parameter as well.

*server-layout* is :   ja-jp-qwerty

Regards,
Amarjeet Singh



On Wed, Mar 7, 2018 at 12:38 AM, Mike Jumper 
wrote:

> On Tue, Mar 6, 2018 at 10:51 AM, Amarjeet Singh 
> wrote:
>
>> Japanese keyboard is set locally as It is japanese O.S. I have set it to
>> Japanese.
>>
>>
> OK.
>
> I have  set remote server layout to japanese.
>>
>>
> OK.
>
> Other characters are printing in Japanese language.
>>
>>
> What does this mean?
>
> - Mike
>
>

Re: ISSUES with Japanese Keys from Japanese Keyboard in Japanese OS

[Mike Jumper]

On Tue, Mar 6, 2018 at 10:41 AM, Amarjeet Singh 
wrote:

> Hi Team,
>
>
> I have taken RDP of Japanese Windows 10 [ remote O.S. ] from Japanese
> Windows 10 [ local O.S. ] .
>
> Guacamole Client Version : [ Compiled from fresh code  ]
> Guacamole Server Version   : [ Compiled from fresh code  ]
>
> I an facing issues with many keys.
>
> *server-layout* is :   ja-jp-qwerty
>
>
What keyboard layout is set locally?

Can you confirm that the keyboard layout of the remote server is the
Japanese layout?

- Mike

Re: ISSUES with Japanese Keys from Japanese Keyboard in Japanese OS

[Mike Jumper]

On Tue, Mar 6, 2018 at 11:49 AM, Amarjeet Singh 
wrote:

>
> if I type following keys I can see the japanese characters in hiragana
>
>  biyoin
>
> this means I am able to pass japanese keyboard layout to Guacamole and
> able to type most of the keys.
>
> but when I press the \ key (as per my hardware japanese keyboard), it does
> not type anything. The key @ types some other character. similarly there
> are more keys which are either not typing anything or typing incorrecct
> characters
>
>
Can you run guacd with debug logging turned on, and see whether there are
log messages referring to unmapped keys / keysyms?

I am using a Japanese hardware keyboard with 106/109 layout.
>
>
What matters is what keyboard layout the OS is set to use, not the apparent
layout of the hardware keyboard (which is purely cosmetic). The difference
between a hardware keyboard with layout X and a hardware keyboard with
layout Y is paint.

- Mike

Re: ISSUES with Japanese Keys from Japanese Keyboard in Japanese OS

[Aaron Newsome]

I had a problem with Guacamole not sending the RIGHT CTL key to my RDP
session. It sent only CTL, whether I pressed the right or left ctl  key.

I found this great website:

http://keycode.info/

It helped me figure out which keys the browser is sending. As it turns out,
my right CTL key problem was not a Guacamole issue at all.

--Aaron


On Tue, Mar 6, 2018 at 10:41 AM, Amarjeet Singh 
wrote:

> Hi Team,
>
>
> I have taken RDP of Japanese Windows 10 [ remote O.S. ] from Japanese
> Windows 10 [ local O.S. ] .
>
> Guacamole Client Version : [ Compiled from fresh code  ]
> Guacamole Server Version   : [ Compiled from fresh code  ]
>
> I an facing issues with many keys.
>
> *server-layout* is :   ja-jp-qwerty
>
> *ISSUE 1 :  Refer the Screenshot 1  *
>
> *while pressing  the  backslash ( IntlYen , keyCode = 255 )  key from the
> japanese keyboard It is not printing anything.*
>
> * Screenshot 2  Link :  
> **https://www.dropbox.com/s/c8xz2kvotthnrgf/backslash_key.jpg?dl=0
> *
>
> *ISSUE 2 : Refer the Screenshot 2*
>
> *while pressing the @ key from the japanese key it is printing ] which is
> incorrect.*
>
> *Screenshot 2  Link : ** 
> https://www.dropbox.com/s/bgk86yabqmtnan3/%40key.jpg?dl=0
> *
>
>
> * ISSUE 3 :  Refer the Screenshot 3*
>
>
> * while pressing the [ key from the japanese key it is printing backslash
> ( **IntlYen , keyCode = 255 **) which is incorrect.*
>
> * Screenshot 3  Link :  
> **https://www.dropbox.com/s/fy90dudb4hgecaf/%5Bkey.jpg?dl=0
> *
>
>
> *ISSUE 4 :  Refer the Screenshot 4 *
>
>
> * while pressing the ] key from the japanese key It is not printing
> anything.*
>
> *Screenshot 4  Link : 
> **https://www.dropbox.com/s/5wgi8jvirh65fqt/%5Dkey.jpg?dl=0
> *
>
>
> * ISSUE 5 :  Refer the Screenshot 5 *
>
> *while pressing the : key from the japanese key **It is printing **& **which
> is incorrect*
>
>
> * Screenshot 5  Link :
> https://www.dropbox.com/s/1epyti1yf3wxec6/key_colon.jpg?dl=0
> *
>
> *ISSUE 6 :  Refer the Screenshot 6 *
>
> *while pressing the \ key from the japanese key **It is not printing
> anything.*
>
> *Screenshot 6  Link : * 
> *https://www.dropbox.com/s/wukejg1abren085/key_back_slash.jpg?dl=0
> *
>
> Please find the attachments.
>
>
> Thanks and Regards,
> Amarjeet Singh
>

Re: Override logout button?

[Nick Couchman]

On Tue, Mar 6, 2018 at 17:05 kevinmsrs  wrote:

> If you setup Guacamole with OpenID and the user clicks the logout button,
> it
> will just reauthorized with user via the IdP and log them back in.
>
> Is there a way to override the logout button and redirect them to another
> site? Would like to redirect them back to the user portal and fully log out
> of SSO.
>
>
Probably so, it just hasn't been implemented, yet.  There's a shutdown
method in the authentication module that can be implemented to accomplish
tasks when the module is exiting, so it just needs to be implemented.

-Nick

Re: ISSUES with Japanese Keys from Japanese Keyboard in Japanese OS

[Amarjeet Singh]

Hi Mike,

I looked into the code and got the following :-

 *Keycode of backslash is 220 and char code is 92 or 0x5C *

My Analyzations are as follows :-

File : *src/protocols/rdp/keymaps/ja_jp_qwerty.keymap*


> *map -shift  0x02..0x0D 0x7D ~ "1234567890-^\"*
> *map -shift  0x10..0x1B  ~ "qwertyuiop@["*
> *map -shift  0x1E..0x28 0x2B ~ "asdfghjkl;:]"**map -shift
> 0x2C..0x35 0x73 ~ "zxcvbnm,./\"*



>
>
> *map +shift  0x02..0x0A 0x0C 0x0D 0x7D ~ "!"#$%&'()=~|"*
> *map +shift  0x10..0x1B  ~ "QWERTYUIOP`{"*
> *map +shift  0x1E..0x28 0x2B ~ "ASDFGHJKL+*}"**map +shift
> 0x2C..0x35 0x73 ~ "ZXCVBNM<>?_"*


I have printed the logs as well and got to know that  *Japanese Backslash*
is mapping with *0x73 *scancode but it should map with 0x75.

which is mapped  in the following :-

*map -shift  0x02..0x0D 0x7D ~ "1234567890-^\"*


but it is not mapping with this instead with the following :-

*map -shift  0x2C..0x35 0x73 ~ "zxcvbnm,./\"*   and sending 0x73
scancode.


Correct me if I am wrong or there is something I am missing ?

Regards,
Amarjeet Singh


On Wed, Mar 7, 2018 at 1:50 AM, Amarjeet Singh  wrote:

> There are no logs in guacd.
>
> Below are the logs :-
>
>>
>> ar  6 15:18:06  guacd[31839]: Loading keymap "base"
>> Mar  6 15:18:06 guacd[31839]: Loading keymap "ja-jp-qwerty"
>> Mar  6 15:18:16 guacd[31839]: guacsnd connected.
>> Mar  6 15:18:16 guacd[31839]: guacdr connected.
>> Mar  6 15:18:16 guacd[31839]: Connected to RDPDR 1.13 as client 0x0006
>> Mar  6 15:18:16 guacd[31839]: Ignoring server capability set type=0x0001,
>> length=44
>> Mar  6 15:18:16 guacd[31839]: Ignoring server capability set type=0x0002,
>> length=8
>> Mar  6 15:18:16 guacd[31839]: Ignoring server capability set type=0x0003,
>> length=8
>> Mar  6 15:18:16 guacd[31839]: Ignoring server capability set type=0x0004,
>> length=8
>> Mar  6 15:18:16 guacd[31839]: Ignoring server capability set type=0x0005,
>> length=8
>> Mar  6 15:18:16 guacd[31839]: Sending capabilities...
>> Mar  6 15:18:16 guacd[31839]: Capabilities sent.
>> Mar  6 15:18:16 guacd[31839]: Client ID confirmed
>> Mar  6 15:18:17 guacd[31839]: Connected to RDPDR 1.13 as client 0x0004
>> Mar  6 15:18:17 guacd[31839]: Ignoring server capability set type=0x0001,
>> length=44
>> Mar  6 15:18:17 guacd[31839]: Ignoring server capability set type=0x0002,
>> length=8
>> Mar  6 15:18:17 guacd[31839]: Ignoring server capability set type=0x0003,
>> length=8
>> Mar  6 15:18:17 guacd[31839]: Ignoring server capability set type=0x0004,
>> length=8
>> Mar  6 15:18:17 guacd[31839]: Ignoring server capability set type=0x0005,
>> length=8
>> Mar  6 15:18:17 guacd[31839]: Sending capabilities...
>> Mar  6 15:18:17 guacd[31839]: Capabilities sent.
>> Mar  6 15:18:17 guacd[31839]: Client ID confirmed
>> Mar  6 15:18:17 guacd[31839]: User logged on
>> Mar  6 15:18:17 guacd[31839]: Sending printer
>> Mar  6 15:18:17 guacd[31839]: Registered device 0 (Guacamole Printer)
>> Mar  6 15:18:17 guacd[31839]: Sending filesystem
>> Mar  6 15:18:17 guacd[31839]: Registered device 1 (Guacamole Filesystem)
>> Mar  6 15:18:17 guacd[31839]: All supported devices sent.
>> Mar  6 15:18:17 guacd[31839]: Device 0 (Guacamole Printer) connected
>> successfully
>> Mar  6 15:18:17 guacd[31839]: Device 1 (Guacamole Filesystem) connected
>> successfully
>
>
> I found that if I change *server-layout to failsafe* then it is printing
> those keys but It is not printing Japanese characters ex : biyoin.
>
> Regards,
> Amarjeet Singh
>
> On Wed, Mar 7, 2018 at 1:27 AM, Mike Jumper 
> wrote:
>
>> On Tue, Mar 6, 2018 at 11:49 AM, Amarjeet Singh 
>> wrote:
>>
>>>
>>> if I type following keys I can see the japanese characters in hiragana
>>>
>>>  biyoin
>>>
>>> this means I am able to pass japanese keyboard layout to Guacamole and
>>> able to type most of the keys.
>>>
>>> but when I press the \ key (as per my hardware japanese keyboard), it
>>> does not type anything. The key @ types some other character. similarly
>>> there are more keys which are either not typing anything or typing
>>> incorrecct characters
>>>
>>>
>> Can you run guacd with debug logging turned on, and see whether there are
>> log messages referring to unmapped keys / keysyms?
>>
>> I am using a Japanese hardware keyboard with 106/109 layout.
>>>
>>>
>> What matters is what keyboard layout the OS is set to use, not the
>> apparent layout of the hardware keyboard (which is purely cosmetic). The
>> difference between a hardware keyboard with layout X and a hardware
>> keyboard with layout Y is paint.
>>
>> - Mike
>>
>>
>

RE: Azure AD and Guacamole

[James Fraser]

Hi Nick and Peter

Thanks for the reply.

I have tried username@domain and 
usern...@domain.com and still do not have any luck 
with NLA enabled.
All the servers are using NLA and all on prem domain joined machines are using 
NLA.

I have set NLA + Ignore certificate and still no luck.

I will continue to play around and see if I can find a working solution, I 
understand it is an oddball case for you guys.


Cheers

From: Nick Couchman 
Sent: Wednesday, 7 March 2018 1:06 AM
To: user@guacamole.apache.org
Subject: Re: Azure AD and Guacamole

On Mon, Mar 5, 2018 at 11:40 PM, James Fraser 
> wrote:
Ok

A bit of a status update on this

I have managed to get remote desktop working for Azure AD users.

This is on windows 10 desktops, I have had to disable Windows NLA on RDP and 
resort to using TLS in guacamole.


Yeah, the fact that you don't get any sort of error except RDP server could not 
reached is very much either a network issue or a NLA issue.  As far as NLA 
goes, have you tried making sure it is enabled in Guacamole (set to NLA) and 
then check the box marked "Ignore Server Certificates" to see if that works?  I 
suspect that you're correct, that there is something about the format of the 
credentials with NLA that it isn't liking and is refusing the connection, but 
best to eliminate certificate issues, as well.

For the credentials, as Peter suggests, you might try leaving the domain blank 
and use various forms of @ or @ and see 
if something works for that.  We use NLA where I work, and I just have to make 
sure all of the credentials are filled out, but we're mostly doing on-premise 
stuff and not Azure.

-Nick

Override logout button?

[kevinmsrs]

If you setup Guacamole with OpenID and the user clicks the logout button, it
will just reauthorized with user via the IdP and log them back in.

Is there a way to override the logout button and redirect them to another
site? Would like to redirect them back to the user portal and fully log out
of SSO.



--
Sent from: 
http://apache-guacamole-general-user-mailing-list.2363388.n4.nabble.com/

Re: Performance testing of Guacamole

[Mike Jumper]

On Tue, Mar 6, 2018 at 8:55 PM, Amarjeet Singh  wrote:

> Hi Mike,
>
>
When creating a new thread, please address the list as a whole. The idea
behind the mailing lists is to facilitate help/discussion within the entire
community. Calling out an individual at the beginning defeats that.

Now most of my feature related issues are known and most of them are fix, I
> moved to performance testing.
> ...
> When I run a single session with Guacamole and open MSN and leave it open,
> I can see that the CPU utilization on my server fluctuates between 3% to
> 30%. Average is 5-6%, but sometimes it would hit 30% also.
>
>
Instantaneous sampling of CPU usage is an extremely poor metric for gauging
overall scalability, particularly for something as subjective as remote
desktop performance. Load average is a better metric, but still not as good
as an actual load test. To perform such a load test, you would need to
actually connect multiple, independent machines (each with their own
browser instance) and use those machines to interact with separately-hosted
remote desktops, gauging subjective performance as load increases.

I actually have done exactly the above by:

1) Creating simulated but realistic load by scripting a remote desktop
session using image recognition software (Sikuli - http://www.sikuli.org/)
2) Automating the deployment of such simulated users by creating an image
in EC2
3) Gradually increasing the size of the simulated load from tens to hundreds
4) As load increases, relying on actual humans (who are connected to the
same guac server) to continuously use their remote desktops and report when
performance appears degraded

Based on these tests, we found that a typical server should be fine so long
as roughly 1 CPU core and 2 GB of memory are available for every 25
concurrent users at peak. Subjective performance of any particular
individual's remote desktop should not degrade until that level of overall
load is exceeded, and even then such degradation is gradual.

You should also be sure to modify Tomcat's server.xml to specify the "NIO"
connector. Some configurations use the blocking I/O connector by default,
which works fine but has issues scaling for large numbers of long-lived
connections like those typical of a Guacamole deployment.


> I have to test this server to supprot around 50 simultaneous users.
>

Based on the above load tests, you would need roughly 2 CPU cores and 4 GB
of memory to support that load at peak for normal remote desktop use. If
you are virtualizing things, this will also depend on how well-allocated
your server resources are.

Although users are not going to do Youtube but with 5% of average CPU
> consumption for MSN.com for a single user, I dont see I could support more
> than 20 sessions.
>
>
This is not how things work in practice. The CPU consumption of guacd is
very bursty, its built-in optimizer continuously tracks and adjusts for
response/processing times, and the OS kernel does a very good job of
scheduling tasks given load. Even assuming that 5% CPU usage were required
on average, the question is not "what is 100% divided by 5%" but "how much
less than 5% produces a subjective difference".

- Mike

new user help please

[mbarber]

Hi people.
I seem to have fallen at the final hurdle, and despite two days of searching
cannot find an answer.
All has gone well with the build on vmware player/ubuntu 16.04lts have set
up a couple of other VMs and have a laptop on the home network as well, all
connections are configured in guac and show up in tomcat, login at that
point is all ok (only going for rdp at the moment) but.. clicking on any of
the connections throws up this 

"An internal error has occurred within the Guacamole server, and the
connection has been terminated. If the problem persists, please notify your
system administrator, or check your system logs"

only mention in logs is in catalina.out 
15:58:54.876 [http-nio-8080-exec-8] WARN 
o.a.g.a.f.FileAuthenticationProvider - The "basic-user-mapping" property is
deprecated. Please use the "GUACAMOLE_HOME/user-mapping.xml$
15:58:58.240 [http-nio-8080-exec-3] ERROR
o.a.g.w.GuacamoleWebSocketTunnelEndpoint - Creation of WebSocket tunnel to
guacd failed: java.net.UnknownHostException: localhost guacd$
15:58:58.344 [http-nio-8080-exec-2] ERROR o.a.g.s.GuacamoleHTTPTunnelServlet
- HTTP tunnel request failed: java.net.UnknownHostException: localhost
guacd-port: 4822

i have created the user-mapping.xml as the 3 connections and login to the
guac page are all ok am assuming no probs there, the guacd is reporting it
is starting ok and is listening on the localhost correct port (4822)
pinging local host goes ok so loopback is intact
I have disabled the firewall just to keep it out of the way until everything
checks out.
I should mention i plumped for latest 9.05 tomcat, seemed a good idea at the
time :)

am able to rdp using windows util to target win10VM, so it seems the problem
is either between tomcat and guacapp or between guacapp and guacd, anyone
any ideas on narrowing issue further?
TIA
mdb




--
Sent from: 
http://apache-guacamole-general-user-mailing-list.2363388.n4.nabble.com/

Re: CAPS lock is not working in XRDP version 0.9.5 with Ubuntu 16.0.4 [ Guacamole RDP ]

[Nick Couchman]

On Mon, Mar 5, 2018 at 12:57 PM, Amarjeet Singh 
wrote:

> Hi Nick,
>
>
> I tried the above and took the fresh code using git clone
> https://github.com/apache/guacamole-client to a fresh directory and BUILD
> was success without any errors.
>
> git fetch upstream might have caused something which I need to figure out.
> There are no merge conflicts though.
>
> *The above issue still persists.   Caps lock is not working as expected in
> XRDP version 0.9.5 with Ubuntu.*
>
>
Can you confirm that Caps Lock works as expected with XRDP and other RDP
clients - xfreerdp, Microsoft RDP Client, etc.?

-Nick

AW: Authentication mechanism.. Was: New user questions...

[Joachim Lindenberg]

Hello Mike,

my authentication extension now listens for TunnelEvents, and I figured out 
that the tunnel referenced in the events is using a ConfiguredGuacamoleSocket, 
which allows me to obtain the relevant configuration.

I am now wondering how safe the assumption is that my RDP tunnel connections 
are always using ConfiguredGuacamoleSocket?

Or any other suggestion?

Thanks, Joachim

 

Von: Joachim Lindenberg [mailto:joac...@lindenberg.one] 
Gesendet: Montag, 5. März 2018 16:07
An: user@guacamole.apache.org
Betreff: RE: Authentication mechanism.. Was: New user questions...

 

Hello Mike,

I appreciate your feedback and advice.

*  I strongly caution against starting a new project by intentionally following 
bad practice.

I do understand that point, but being new to the topic I prefer getting my 
hands dirty over endless analysis. At least I learn something and as long as I 
am clear about what parts are dirty, I feel ok. And as I learn how to do 
better, I am frequently updating my code.

*  Everything is in the JavaDocs:

Right, but it was not linked and in a different component. That´s why I didn´t 
find it. Thanks for the url…

*  Detecting disconnect is normally implemented by overriding the close() 
function of the returned GuacamoleTunnel

How can I tell Guacamole to use my own subclass for tunnel? And which super 
class? From my extension? And how do I get to the configuration? Essentially 
same question as with listener – how can I identify the configuration (or name 
of it)?

Thanks & Best Regards,

Joachim

 

 

 

 

From: Mike Jumper [mailto:mike.jum...@guac-dev.org] 
Sent: Montag, 5. März 2018 08:32
To: user@guacamole.apache.org  
Subject: Re: Authentication mechanism.. Was: New user questions...

 

On Sun, Mar 4, 2018 at 10:53 PM, Joachim Lindenberg < 
 joac...@lindenberg.one> wrote:

Hello Mike,

thanks for the pointer to Connectable interface. However I also don´t want to 
re-implement a lot that is already working, and connections work. And in fact I 
did that experiment with abusing a property getter and it works – quick and 
dirty.

 

I strongly caution against starting a new project by intentionally following 
bad practice.

 

After doing that my biggest issue is, that I cannot detect disconnects of 
specific connections which lets me really consider better approaches.

 

Detecting disconnect is normally implemented by overriding the close() function 
of the returned GuacamoleTunnel or its underlying GuacamoleSocket. This is how 
the more complex authentication extensions track connection status, like the 
database auth extensions.

 

(I would probably not suspend immediately on tunnel close on the server part 
but give a grace period for reconnections).

Now I am wondering whether Connectable is the right pointer or whether  

 
http://guacamole.apache.org/doc/guacamole-ext/org/apache/guacamole/net/event/listener/Listener.html
 (listening for  

 
http://guacamole.apache.org/doc/guacamole-ext/org/apache/guacamole/net/event/TunnelEvent.html)
 would be a better alternative.

 

Event listeners are indeed an alternative, and may be simpler in your case.

 

There is a getTunnel() method, but class   
org.apache.guacamole.net.GuacamoleTunnel is not in the Javadocs

 

Everything is in the JavaDocs:

 

 

 
http://guacamole.apache.org/doc/guacamole-common/org/apache/guacamole/net/GuacamoleTunnel.html

 

and in fact I would need the configuration or at least the connection name.

 

Only through implementing the necessary interfaces at higher levels can you 
ensure that any necessary data specific to your implementation is made 
available at lower levels. If you need to take distinct action specific to a 
connection when that connection is (1) established and (2) disconnected, the 
best route really would be implementing a Connection which does exactly that.

 

I assume the same extension can implement authentication and listener?

 

Yes.

 

- Mike

 

Re: Azure AD and Guacamole

[Nick Couchman]

On Mon, Mar 5, 2018 at 11:40 PM, James Fraser 
wrote:

> Ok
>
>
> A bit of a status update on this
>
> I have managed to get remote desktop working for Azure AD users.
>
>
> This is on windows 10 desktops, I have had to disable Windows NLA on RDP
> and resort to using TLS in guacamole.
>
>
>
Yeah, the fact that you don't get any sort of error except RDP server could
not reached is very much either a network issue or a NLA issue.  As far as
NLA goes, have you tried making sure it is enabled in Guacamole (set to
NLA) and then check the box marked "Ignore Server Certificates" to see if
that works?  I suspect that you're correct, that there is something about
the format of the credentials with NLA that it isn't liking and is refusing
the connection, but best to eliminate certificate issues, as well.

For the credentials, as Peter suggests, you might try leaving the domain
blank and use various forms of @ or
@ and see if something works for that.  We use NLA
where I work, and I just have to make sure all of the credentials are
filled out, but we're mostly doing on-premise stuff and not Azure.

-Nick

NLA popup window - GUAC-1535

[Yuval Mishan]

Hi all,

Guacamole supports security type of NLA, this means that the user needs to 
enter his credentials.
Currently the only way to do so, is to add them to the configuration 
(hard-coded).
I saw there’s an open bug on it:  https://glyptodon.org/jira/browse/GUAC-1535 

Where instead of saving the credentials somewhere we can show a popup window 
and user can add them ad-hoc

Is there a way to push forward with this bug? Or maybe an ETA for it?


Thank you,
Yuval Mishan

Re: OpenID module does not detect email claim

[kevinmsrs]

Mike,

Thanks, I understand that I can select other options. It looks like my IdP
only provides sub,aud,iss,exp. Can Guacamole client display the "given_name"
from the userinfo details? I think users would find it odd to look at the
"sub" claim as their name at the top right of the Guacamole interface.



--
Sent from: 
http://apache-guacamole-general-user-mailing-list.2363388.n4.nabble.com/