Hi Nick! Thanks for the information;
To confirm, auto-create-users is working perfectly. I've just tried to run the DB query to set a user as an admin however, I keep getting the following error; guacamole_db=# INSERT INTO guacamole_system_permission(permission,entity_id) VALUES(ADMINISTER,2); ERROR: column "administer" does not exist LINE 1: ...le_system_permission(permission,entity_id) VALUES(ADMINISTER... I confirmed using TABLE guacamole_system_permission; that ADMINISTER does exist, so I'm not sure what is missing. The reason for doing it this way is if I remove the OIDC authentication mechanism I get no login prompt so I'm trying to set the administrator role directly in the DB so I can do the rest. Thank you On Fri, Jul 30, 2021 at 1:45 PM Nick Couchman <[email protected]> wrote: > On Fri, Jul 30, 2021 at 8:34 AM Daniel Harris > <[email protected]> wrote: > >> I think I've managed to list the contents of the user table and I can see >> two users, which is positive. I have a couple of other queries; >> >> > Does this mean you're seeing users get auto-created, or that you've > created them manually? If auto-create is not working, then you need to > verify that: > 1) You're using a version of Guacamole that supports auto-creation > 2) You've configured the option correctly in guacamole.properties > 3) The user that Guacamole is using to access the database has the proper > permissions. > > I've used auto-create with Postgresql and not had any issues, so it should > be working. > > >> - How do I set an OIDC authenticated user as an administrator? I assume I >> have to do this manually in PostgreSQL, however I'm not sure what to update. >> > > You can do this either in the database directly, or by using the Guacamole > admin interface to make that user an admin. If you're doing this in the > database you need the entity_id of the user (or group) that you want to > grant administrator access to, and then you can do: > > INSERT INTO guacamole_system_permission(permission,entity_id) > VALUES(ADMINISTER,<ENTITY_ID>); > > where <ENTITY_ID> is the user's database ID. > > >> - How do I add OIDC authenticated users to a single group? >> > > Once you have a user with administrator privileges, log in to Guacamole > Client with the admin user and go to the Settings page, where you can > manage users, groups, connections, etc. > > >> - How do I assign connections to the above group? >> >> > In the Settings interface. > > -Nick >
