On Sat, Jan 2, 2021 at 1:11 PM Antony Awaida <[email protected]> wrote:
> Hi Mike: > > Thank you for your email and BTW, happy new year. > > Wondering what is the difference between having Guac prompting for > credentials and the "old" approach of having RDS prompt for credentials? > > It would seem that the second approach is more secure. > (Going forward, please start a separate thread if you have a question, and please do not reply-all to a release announcement that goes across multiple lists. Please instead start a new thread on a single list, presumably user@ .) No, as far as Guacamole is concerned, neither approach is more secure than the other. They are two ways of accomplishing the same thing: Guacamole passing credentials to the remote desktop. On the remote desktop side, there are advantages to not using the "old" approach and instead using something like NLA, as it avoids devoting remote desktop resources for just a login screen. The new functionality fills a gap in the remote desktop feature set provided by the web application, and is the equivalent to the expected behavior when you connect with a native client to a remote desktop requiring NLA and you see a local prompt for credentials. - Mike
