Hi, I have guacamole working with an Apache reverse proxy which does kerberos authentication and guacamole using HTTP header auth and mysql (mariaDB on CentOS 7). I'd like to have the user auth with apache and then have that accepted by guacamole but when I attempt connect in the logs I get:
server: 15:27:03.592 [http-apr-8080-exec-3] WARN o.a.g.r.auth.AuthenticationService - Authentication attempt from [10.210.255.254, ::1] for user "griznog" failed. server: 15:27:09.804 [http-apr-8080-exec-7] WARN o.a.g.r.auth.AuthenticationService - Authentication attempt from [10.210.255.254, ::1] for user "griznog" failed. I then get the guacamole login screen and can log in with the password set in the users entry in the database. I've tried with an empty password in the database entry for the user, but that fails as well, however with only one warning in the logs. What I would like to do is to have the database just used to store user/connection info and let the web proxy handle all the authentication. Is that possible and if so, how do I configure that? Thanks, jbh
