On Wed, Sep 25, 2019 at 1:06 AM Elroy DSilva <[email protected]> wrote:
> I'm testing the use of Guacamole for commercial use as part of our > software to enable users to remotely login to private networks from the > browser. > I have Guacamole containers running on an AWS EC2 VM. The RDP connection > is made to a localhost port which is forwarded through a reverse tunnel > originating from the private network. > I'm able to connect to Win7/Win10 systems hosted on AWS, but when I try > connecting to the Win10 systems in the corporate network, guacd gives me > the following error: > > > connected to localhost:5000 > creating directory /root/.config/freerdp > creating directory /root/.config/freerdp/certs > creating directory /root/.config/freerdp/server > certificate_store_open: error opening [/root/.config/freerdp/known_hosts] > for writing > unexpected pubKeyAuth buffer size:0 > Could not verify public key echo! > Authentication failure, check credentials. > If credentials are valid, the NTLMSSP implementation may be to blame. > Error: protocol security negotiation or connection failure > guacd[58]: ERROR: Error connecting to RDP server > > The most likely cause is that guacd cannot verify the certificate used by the RDP server. You should make sure that your guacd server is set up to trust the certificate(s) of the RDP server(s), or set the "ignore-cert" parameter on the RDP connection: http://guacamole.apache.org/doc/gug/configuring-guacamole.html#rdp -NIck >
