Thanks for this, I will try with the server name vs IP. The logs tell me that
authenticating is fine with AD account credentials, so that's what's
puzzling.
I did use another "admin" based AD account that has full privileges to read
the AD users and groups, and it behaved the same way (able to
O just noticed you have IP in hostname for guac.properties.
That may work, but I was under the impression it had to be FQDN of the AD
server, ex:
myserver.company.com
--
Sent from:
http://apache-guacamole-general-user-mailing-list.2363388.n4.nabble.com/
A few things I found to help set this up.
First, the user you use for ldap-search-bind-dn MUST have the ability to
read other AD users and groups.
Next, I log in using the default/local Guacamole admin and create a new
user. This will be the first AD/LDAP user you want to have admin rights over
Hi Nick
this is what I get in catalina.out (changing user names to generic)
INFO: Deployment of web application directory /var/lib/tomcat7/webapps/ROOT
has finished in 185 ms
Apr 05, 2019 9:38:21 AM org.apache.coyote.AbstractProtocol start
INFO: Starting ProtocolHandler ["http-bio-8080"]
Apr 05,
Yes they will be run from the same system for all my cases.
Thanks for the feedback.
--
Sent from:
http://apache-guacamole-general-user-mailing-list.2363388.n4.nabble.com/
>
> Is there anything else I'm missing here? It's an Active Directory setup.
> I've tried entering an LDAP user name and invalid password and immediately
> get Invalid Login. When I get the proper password, it stalls for a bit then
> it throws the error unable to query list. I don't believe I
Maybe I'm not fully understanding how the OpenID extension should work, but
I believe instead of logging in with the standard Guacamole client login
screen the user should be forwarded to the OpenID Connect IdP (in this case
Google) to authenticate and then be sent back to the Guacamole client. In
Thanks Mike.
This is what I have under LDAP section in guacamole.properties
(provided generic info, the proper info validates connection)
# LDAP properties
ldap-hostname: 10.0.0.1
ldap-port: 389
ldap-encryption-method: none
ldap-user-base-dn: DC=company,DC=com
ldap-username-attribute: uid
Hi,
I'm generating Guac auth tokens for different users using API and using
these tokens redirecting to Guacamole application. But every 2nd time the
previous session is automatically getting logged out in the same browser.
Only one session is working at a time on the same browser even if the
