On Wed, May 27, 2020 at 6:27 AM Tom Schoonjans <[email protected]> wrote:
> Hi Nick, > > > Unfortunately your approach doesn’t work: as soon as LDAP is the primary > authentication mechanism, OIDC is ignored: the login page switches back to > the default Guacamole page, and there is no way anymore for users to login > using their OpenID credentials. > > Yeah, I was afraid of something like that. So, I don't know that I have any good solutions, but I can offer one work-around - you could set up another instance of Guacamole Client, in a separate container, pointed at the same DB, that just uses LDAP (or even JDBC) authentication, and use the REST API to manage things that way. This is a hack/kludge, and not a great solution, but, it would probably work... -Nick
