Cleared out calalina.out ready to test, clicked and 403
I saw hundreds of trace messages, before I cleared it. But these only ones shown before 403 . V 0.9.14. No Trace only debug JDBC Connection [com.mysql.jdbc.JDBC4Connection@1e709431] 20:06:57.106 [http-nio-8080-exec-1] DEBUG o.a.i.d.pooled.PooledDataSource - Testing connection 510694449 ... 20:06:57.106 [http-nio-8080-exec-1] DEBUG o.a.i.d.pooled.PooledDataSource - Connection 510694449 is GOOD! 20:06:57.106 [http-nio-8080-exec-1] DEBUG o.a.i.d.pooled.PooledDataSource - Returned connection 510694449 to pool. 20:06:57.129 [http-nio-8080-exec-1] DEBUG o.g.g.a.j.RequestValidationService - Authentication request from "127.0.0.1" is ALLOWED (no restrictions). 20:06:57.191 [http-nio-8080-exec-1] DEBUG o.a.g.r.auth.AuthenticationService - Anonymous authentication attempt from [10.10.220.74, 127.0.0.1] failed. From: Nick Couchman [mailto:[email protected]] Sent: 26 April 2020 14:01 To: [email protected] Subject: Re: VNC 403 JSON API On Sun, Apr 26, 2020 at 7:43 AM Adrian Owen <[email protected]<mailto:[email protected]>> wrote: I set logback to trace VNC connection *** event handler 1 20:06:57.191 [http-nio-8080-exec-1] DEBUG o.a.g.r.auth.AuthenticationService - Anonymous authentication attempt from [10.10.220.74, 127.0.0.1] failed. RDP Connection 20:14:53.521 [http-nio-8080-exec-7] DEBUG o.a.g.r.auth.AuthenticationService - Login was successful for user "". On another Guacamole Server VNC connected. Same credentials. How can I get more detail of the failure? Well, that's a little hard to say, because of all the log messages that you should have (trace should give you hundreds or thousands of them), you've posted two or three entries. There's no possible way for us to help with this little information. In would be good to know: - What version of Guacamole are you running? - What authentication modules are you using, and in what order are they being evaluated? - If you can post the rest of the log messages to some place like PasteBin and link, here, that would help. If you do this don't forget to sanitize them before posting them so that they don't contain any information that would present a security risk to your environment. -Nick
