Thanks for the answers, they actually proved effective. Seems like `FreeRDP` needs 100% to have WRITE access to the defined $HOME directory of the user running the `guacd` process in order to connect via RDP.
The logging for some reason only puts it as WARNING, and as such i did not really try to debug in that way. I will try raising an Jira issue, in order to have this verbosity improved. --- GEORGI YANKOV _Junior_ _System Administrator_ 135, Tsarigradsko Shose Blvd., Floor 3, 1784, Sofia, Bulgaria Nicht ein schlacht, ein rettungsaktion. > guacd is probably not running as the "tomcat' user, so you need to make sure > that whatever user is running guacd also has write access to its own home > directory. > > -Nick > Hey Georgi, > > What are the permissions (rwx) on /var/lib/tomcat9? I'm not sure if it's > causing the problem but it's possible that it needs to write temporary files > there and the 'tomcat' user doesn't have the required permissions. > > Kind Regards, > Luke > > -- > Luke Tainton > Computer Networks Graduate | Birmingham City University > Incoming Graduate Network Engineer I Cisco Systems > Website: luke.tainton.uk [1] > Email: [email protected] > Phone: +44 (0)7443 436721 > >> On 20 Jul 2020, at 19:06, Georgi Yankov <[email protected]> wrote: >> >> Hey folks. >> >> I got guacamole-server 1.2 and guacamole-client 1.2 with PSQL on a Ubunt >> 20.04 VM. >> >> guacamole-server is compiled on the same machine, on which it is running. >> >> The guacamole-client is running on a Tomcat9, installed via the package >> manager, in `/var/lib/tomcat9` >> Configurations are in `/etc/guacamole`. The .WAR file is symlinked from >> `webapps` to `/etc/guacamole`. >> `guacd.conf` contains only `server-bind`. >> >> The guacamole-server is running as a service, under USER1. >> The Tomcat9 is running as a user TOMCAT. >> The `/etc/guacamole` is `tomcat:tomcat` recursive. >> The `/var/lib/tomcat9` is `tomcat:tomcat` recursive. >> I also have added the USER1 to the TOMCAT group. >> >> I have set up a test user via the WebUI, and assigned it the RDP connection. >> >> When i try to run RDP session to a Windows Server 2012 R2 VM, i get an >> error, and cant connect. >> >> Logs below: >> >> ``` >> guacd[84606]: WARNING: FreeRDP initialization may fail: The current >> user's home directory ("/var/lib/tomcat9") is not writable, but FreeRDP >> generally requires a writable home directory for storage of configuration >> files and certificates. >> guacd[84606]: INFO: Security mode: TLS >> guacd[84606]: INFO: Resize method: none >> guacd[84606]: INFO: User "@8ab006d0-68cc-4f64-abfa-cd4abea5efed" joined >> connection "$e8f17800-585c-4af4-8840-37284d09d691" (1 users now present) >> guacd[84606]: INFO: Loading keymap "base" >> guacd[84606]: INFO: Loading keymap "en-us-qwerty" >> guacd[84606]: ERROR: Error connecting to RDP server >> guacd[84606]: INFO: User "@8ab006d0-68cc-4f64-abfa-cd4abea5efed" >> disconnected (0 users remain) >> guacd[84606]: INFO: Last user of connection >> "$e8f17800-585c-4af4-8840-37284d09d691" disconnected >> guacd[73882]: INFO: Connection "$e8f17800-585c-4af4-8840-37284d09d691" >> removed. >> >> ``` >> >> I did try both TLS and NLA, but no difference. >> Ignore Certificates is enabled. >> >> Guacamole Proxy Parameters are set as the VM running the guacd (tried both >> FQDN and IP) and the default port of 4822. >> >> Parameters - Network: the IP and default RDP port of 3389 of the targeted >> Windows Server VM. >> >> Credentials and connectivity are working, because i can connect just fine >> with Remmina to the same server. I can telnet into the server RDP. >> >> No other settings are set. >> >> I also did try SSH connection, and it works just fine... >> >> -- >> GEORGI YANKOV >> _Junior_ _System Administrator_ >> >> <8bf4ddab.jpeg> >> >> 135, Tsarigradsko Shose Blvd., Floor 3, >> 1784, Sofia, Bulgaria >> >> Nicht ein schlacht, ein rettungsaktion. Links: ------ [1] http://luke.tainton.uk
