I got it.because the guacamole_user privilegees is not enough.
mysql> CREATE DATABASE guacamole_db; Query OK, 1 row affected (0.00 sec) mysql> CREATE USER 'guacamole_user'@'localhost' IDENTIFIED BY 'some_password'; Query OK, 0 rows affected (0.00 sec) mysql> GRANT SELECT,INSERT,UPDATE,DELETE ON guacamole_db.* TO 'guacamole_user'@'localhost'; Query OK, 0 rows affected (0.00 sec) mysql> FLUSH PRIVILEGES; Query OK, 0 rows affected (0.02 sec) 发件人: Mike Jumper [mailto:[email protected]] 发送时间: 2019年4月1日 21:25 收件人: [email protected] 主题: Re: POST /guacamole/api/tokens HTTP/1.1" 500 On Mon, Apr 1, 2019, 06:13 Oliver.Zhang <[email protected]<mailto:[email protected]>> wrote: my guacamole server deploy in the vm the ip is 10.66.204.10, I cloned a vm from 10.66.204.10 and set the ip is 10.66.204.13 for the new cloned vm i stop the mysql in the new cloned vm, and modify mysql-hostname: to 10.66.204.10 in the guacamole.properties, the start the guacamole guacd and tomcat why it still access to mysql 10.66.204.13 and not the 10.66.204.10? If the logs show that access is being denied to the MySQL user at 10.66.204.13, it is because that is the IP address of the Guacamole server relative to the MySQL server. If you are expecting otherwise, I suggest rechecking the configuration of your VM and network settings. According to your logs, reality doesn't agree with that expectation. - Mike ________________________________ CONFIDENTIALITY NOTICE: This electronic message is intended to be viewed only by the individual or entity to whom it is addressed. It may contain information that is privileged, confidential and exempt from disclosure under applicable law. Any dissemination, distribution or copying of this communication is strictly prohibited without our prior permission. If the reader of this message is not the intended recipient, or the employee or agent responsible for delivering the message to the intended recipient, or if you have received this communication in error, please notify us immediately by return e-mail and delete the original message and any copies of it from your computer system. For further information about Hikvision company. please see our website at www.hikvision.com<http://www.hikvision.com>
