I’m trying to leverage the RemoteControl Toolkit to provide the capability to
use alias tokens concurrent access to a session. I have modified the
remoteagent script to launch vncviewer if it finds a
/tmp/RemoteControl/user-name.agent.settings.vnc file (instead of rm’ing the
file). I’ve also tweaked the script to store a copy of the vnc full-control
password similar to what the Control script does, which it will use in
launching vncviewer.
This all seems after-the-fact, however, as it seems utauthd will not allow two
concurrent connections.
May 18 10:21:08 sradm04c utauthd: Worker0 NOTICE: DISCONNECT
IEEE802.00144fc8779c, user.1230313521-0059 old session
May 18 10:21:08 sradm04c utauthd: Worker0 NOTICE: DESTROY user.1230313521-0059
lifetime=1168
May 18 10:21:08 sradm04c utauthd: Worker0 NOTICE: createClient: Pre-existing
session disconnected by token: user.1230313521-0059 (Payflex.500cbcd500130100),
on terminal: IEEE802.00144fc8789c from terminal: IEEE802.00144fc8779c
May 18 10:21:08 sradm04c utdtsession: Hotdesk (14,user.1230313521-0059,default)
May 18 10:21:08 sradm04c utauthd: Worker0 NOTICE: SESSION_OK
user.1230313521-0059
May 18 10:21:09 sradm04c utauthd: Worker5 NOTICE: whichServer
user.1230313521-0059:
May 18 10:21:09 sradm04c utauthd: Worker5 NOTICE: CLAIMED by StartSession.m4
NAME: user.1230313521-0059 PARAMETERS: {terminalIPA=10.30.98.81, type=user,
fw=GUI4.1_50_2008.09.25.12.37, state=disconnected, cause=insert, doamgh=true,
barrierLevel=325, rawId=011727400130100, terminalCID=IEEE802.00144fc8779c,
MTU=1500, tokenSeq=16, firstServer=0a070421, atr.hist_len=09,
namespace=IEEE802, ddcconfig=1:1, id=1230313521-0059,
clientRand=coi6yr4v3NjlY/jykf91xDL2pvTftRQFuRz666UZyLK, realIP=0a1e6251,
startRes=2560x1024:1280x1024:1280x1024, useReal=true,
atr=3b6900002494010201000101a9, event=insert, pn=58489, atr.hs=04,
sn=00144fc8779c, rawType=Payflex, hw=SunRayP8-FS, initState=0, _=1}
May 18 10:21:09 sradm04c utauthd: Worker5 NOTICE: CONNECT IEEE802.00144fc8779c,
user.1230313521-0059, all connections allowed
May 18 10:21:09 sradm04c utauthd: Worker3 NOTICE: MTU = 1500
May 18 10:21:09 sradm04c utauthd: Worker3 NOTICE: DISCONNECT
IEEE802.00144fc8789c, user.1230313521-0059 old session
May 18 10:21:09 sradm04c utauthd: Worker3 NOTICE: DESTROY user.1230313521-0059
lifetime=1167
May 18 10:21:09 sradm04c utauthd: Worker3 NOTICE: createClient: Pre-existing
session disconnected by token: user.1230313521-0059 (Payflex.5011727400130100),
on terminal: IEEE802.00144fc8779c from terminal: IEEE802.00144fc8789c
May 18 10:21:09 sradm04c utdtsession: Hotdesk (14,user.1230313521-0059,default)
May 18 10:21:09 sradm04c utauthd: Worker3 NOTICE: SESSION_OK
user.1230313521-0059
May 18 10:21:10 sradm04c utauthd: Worker1 NOTICE: whichServer
user.1230313521-0059:
May 18 10:21:10 sradm04c utauthd: Worker1 NOTICE: CLAIMED by StartSession.m4
NAME: user.1230313521-0059 PARAMETERS: {terminalIPA=10.30.98.131, type=user,
fw=GUI4.1_50_2008.09.25.12.37, state=disconnected, cause=insert, doamgh=true,
barrierLevel=325, rawId=500cbcd500130100, terminalCID=IEEE802.00144fc8789c,
MTU=1500, tokenSeq=62, firstServer=0a070426, atr.hist_len=09,
namespace=IEEE802, ddcconfig=1:1, id=1230313521-0059,
clientRand=VWZRSfd68zSMsz16xklGwc2DBZmozc9txULQqpTAz6a, realIP=0a1e6283,
startRes=2560x1024:1280x1024:1280x1024, useReal=true,
atr=3b6900002494010201000101a9, event=insert, pn=42957, atr.hs=04,
sn=00144fc8789c, rawType=Payflex, hw=SunRayP8-FS, initState=0, _=1}
May 18 10:21:10 sradm04c utauthd: Worker1 NOTICE: CONNECT IEEE802.00144fc8789c,
user.1230313521-0059, all connections allowed
May 18 10:21:10 sradm04c utauthd: Worker4 NOTICE: MTU = 1500
May 18 10:21:10 sradm04c utauthd: Worker4 NOTICE: DISCONNECT
IEEE802.00144fc8779c, user.1230313521-0059 old session
.
.
.
Is there any way to tell utauthd to change this – to allow the second
connection and not do the DISCONNECT & DESTROY?
If I am correct - that this change would make this work - but would require a
code change to utauthd, I will submit this as an enhancement request. It seems
this would work quite well for classroom situations, as well as providing a
seamless disaster recovery mechanism using the Sun Ray technology. I imagine
this would not be the default behavior, but would be selectable via an
auth.props parameter (as I originally stated) allowing alias tokens access to
existing sessions.
Thanks very much, and sorry to keep pestering on this.
-Bill
From: [email protected]
[mailto:[email protected]] On Behalf Of Quayle, Bill
Sent: Tuesday, May 12, 2009 8:47 AM
To: SunRay-Users mailing list
Subject: Re: [SunRay-Users] session access from two locations?
I’ll follow-up my own question ☺
Has anyone leveraged Xephyr to provide this kind of functionality? I’d even
settle for hacking something together using kiosk mode, though having
out-of-the-box functionality like this would be just fantastic. (e.g. Tweak
this auth.props value to enable shared desktop mode…)
Thanks again,
Bill
From: [email protected]
[mailto:[email protected]] On Behalf Of Quayle, Bill
Sent: Monday, May 11, 2009 12:21 PM
To: SunRay-Users mailing list
Subject: [SunRay-Users] session access from two locations?
I have a session open at location A using a smartcard token.
I have created an alias token, which I plug in at location B.
I would like to be able to use or at least see the same session at loc B
(without disconnecting or “losing” the session at loc A.)
What happens now is a ping-pong match. The screen at loc A disconnects. Loc B
connects to the session and presents me with a password prompt. It then
disconnects, and loc A re-attaches with the password prompt. A second later,
loc B takes the connection back. This back-and-forth continues indefinitely.
RHEL 5.2
SRSS 4.1
utpolicy -a -m -D -r card -s card -z pseudo -k card -g
I am aware of, and have implemented, the VNC RemoteDesktop add-on, but this
doesn’t provide the same simple functionality I am looking for. I realize I
might script a kiosk application to attach to the VNC session, but this is much
more complicated than just cloning tokens (for a variety of reasons specific to
our configuration).
Is there any way anyone knows of that will allow simultaneous access to an X
session via Sun Ray?
Thanks,
-Bill
_______________________________________________
SunRay-Users mailing list
[email protected]
http://www.filibeto.org/mailman/listinfo/sunray-users
