Hi Nick,
My testing was done with "Ignore Certificates" enabled. It still doesn't
work.
With NLA disabled on the remote host, guacd logs show:
guacd[6]: INFO: Creating new client for protocol "rdp"
guacd[6]: INFO: Connection ID is "$c1fea415-633a-40cc-af2a-0f7e74c7e37c"
guacd[16104]: INFO: No security mode specified. Defaulting to RDP.
guacd[16104]: INFO: Resize method: none
guacd[16104]: INFO: User "@b5e437c1-72bd-4ee5-aa4f-882f7ce725b4"
joined connection "$c1fea415-633a-40cc-af2a-0f7e74c7e37c" (1 users
now present)
guacd[16104]: INFO: Loading keymap "base"
guacd[16104]: INFO: Loading keymap "en-us-qwerty"
connected to wserver:3389
recv: Connection reset by peer
Error: protocol security negotiation or connection failure
guacd[16104]: ERROR: Error connecting to RDP server
guacd[16104]: INFO: User "@b5e437c1-72bd-4ee5-aa4f-882f7ce725b4"
disconnected (0 users remain)
guacd[16104]: INFO: Last user of connection
"$c1fea415-633a-40cc-af2a-0f7e74c7e37c" disconnected
guacd[6]: INFO: Connection "$c1fea415-633a-40cc-af2a-0f7e74c7e37c"
removed.
Of all the tweaking I've tried, only changing the registry setting in
Windows makes this problem go away.
Aram
On 6/26/2019 3:26 PM, Nick Couchman wrote:
On Wed, Jun 26, 2019 at 2:21 AM Aram Akhavan <[email protected]
<mailto:[email protected]>> wrote:
The provided Docker image not working out of the box is a problem
nonetheless. I have tested with Win10 Pro, and its the same deal. I'm
not sure how Docker would cause such a problem; if you have an
idea do
let me know.
Aram,
Most likely you need to enable the Ignore Certificates option when
configuring the connection, or import the public certificate used by
the RDP target into the know good certifications location for guacd.
Certificate checking is done by default for RDP, and, since most
people don't bother to create custom/official certificates for RDP
connections, this is a reasonably common cause for failure in the
connection.
Aram
> Guacamole works just fine with those operating systems out the
gate. Windows
> 10 will need to be at lease Pro edition. I am not a fan of
Docker because of
> the security issues, which i am betting its a docker issue not a
guacamole
> issue.
>
There can be security issues with Docker or Guacamole running in
Docker if things are not configured properly, but this statement is an
over-generalization that gives a misleading impression of Docker.
Docker can be either very secure or very insecure, depending on how
you configure it - which is true of pretty much any technology product.
-Nick
