Hi All,
Would appreciate some help if possible, ive spent two days trying to figure
this one out.
Currently we have a 1.2.0 instance. Remote Mysql DB (Cluster). LDAP & TOTP
working perfectly.
Im wanting to move the Guacamole components to a new server (Leaving the DB
alone). Both Servers are Ubuntu 20.04.1.
So, ive created a new server. Installed all the same 1.2.0 components.
Pointed it at my DB. User login's work as expected, all connections work
fine.
However, TOTP refuses to work. get nothing but the infamous "Verification
Failed" response.
So, heres what ive tried so far on the new Server:
- Cleared TOTP Key/Secret for several users, tested all = Same Error;
- Created a new DB on the Cluster & Tested = Same Error.
- Downgraded to 1.1.0 & tested with 1.2.0 DB = Same Error
- Downgraded to 1.1.0 and tested new 1.1.0 DB = Same Error.
- Tested different mysql connectors, old server has 8.0.20, tried several
vesions on new server, All = Same Error.
- Built a brand new Ubuntu 20.04 Server, installed 1.2.0 following all the
normal documentation, created a brand new 1.2.0 Mysql DB, run .sql scripts,
connected to LDAP, = Works, until i add TOTP, then = Same Error
- Installed SAML & configured with Azure - Works, however cant connect to
any Windows based servers using ${GUAC_USERNAME} & {GUAC_PASSWORD}
variables, no matter what my claims are. Figure the SAML & LDAP modules dont
like each other or the SAML claims arent getting passed through correctly
despite confiming the correct user values are being supplied in the Response
XML. Our Servers are NOT Azure joined yet.
Before anyone suggests, I clear browser cache/cookies between all tests,
have tested every browser known to man and incognito modes to no avail. Ive
test 7 different MFA Apps, all produce the same error.
Tested all different versions of SHA modes, all = Same Error.
DB User is the same on all DB's, Has been granted full permissions on each
DB.
Why was I able to get TOTP working (with mysql & LDAP) previously, but not
now?
What am I missing? Is there some dependency that ive missed somewhere??
Any help would be appreciated,
--
Sent from:
http://apache-guacamole-general-user-mailing-list.2363388.n4.nabble.com/
---------------------------------------------------------------------
To unsubscribe, e-mail: [email protected]
For additional commands, e-mail: [email protected]
