We have the username and password for the Windows side in the RDP connection in
Guac, and it still fails. I can connect to a Server 2016 server and a Windows
10 box on our same subnet, but the 2012 Server we are trying to connect to is
on another subnet.
We can connect to that Server 2012 box using RDP from one of our local Windows
boxes that can see the other subnet, as well as MobaXterm using a Jump-Host
(that can access the other subnet). Guacamole always fails, and there is
nothing in the logs. The Tomcat catalina.out log doesn’t even have any
information in it whatsoever. And /var/log/messages shows “Server refused
connection (wrong security type?)” no matter what permutation of parameters we
try.
Thanks,
Harry
From: Hankins, Jonathan <jhank...@homewood.k12.al.us>
Sent: Friday, February 18, 2022 12:23 PM
To: user@guacamole.apache.org
Subject: Re: Issues with RDP connections
FWIW, I get the same error "RDP server closed/refused connection: Server
refused connection (wrong security type?)" if I try to connect with a username
passed through that does not exist on the Windows side.
For reference, in my connection, I have the domain set, the login set to
"${GUAC_USERNAME}", security mode set to NLA in guac (also required on the
Windows side). If I login as "guacadmin" to guac and launch that connection, it
fails with the message you are receiving, as there is no "guacadmin" user in my
Windows domain.
On Fri, Feb 18, 2022 at 6:47 AM Devine, Harry (FAA)
<harry.dev...@faa.gov.invalid<mailto:harry.dev...@faa.gov.invalid>> wrote:
It doesn’t look like guacd.conf is being used in our installation. I tried
“/etc/init.d/guacd restart –L”, but /var/log/messages doesn’t look any
different in what its logging. Where else should I be adding/looking for the
debug messages? Perhaps guacamole.properties?
Thanks,
Harry
From: Nick Couchman
<nick.e.couch...@gmail.com<mailto:nick.e.couch...@gmail.com>>
Sent: Thursday, February 17, 2022 9:26 PM
To: user@guacamole.apache.org<mailto:user@guacamole.apache.org>
Subject: Re: Issues with RDP connections
On Thu, Feb 17, 2022 at 8:34 PM Devine, Harry (FAA)
<harry.dev...@faa.gov.invalid<mailto:harry.dev...@faa.gov.invalid>> wrote:
On the Windows side or the guacamole side? If the user couldn’t write there,
why did the windows 10 rdp work? One of out admins said they can rdp to the
windows 2013 server using MobaXterm and they see the TLS is 1.2. Does guacamole
expect v2? If so, does the 2012 need to update to TLS2?
This would be on the Guacamole side. No, I do not expect that Guacamole would
require a TLS version that Windows doesn't support- I use 1.4.0 to connect to
Server 2003, 2008/r2, 2012/r2, 2016, and 2019, along with Windows 10.
Also, might want to start guacd with debug logging (-L debug on the command
line, or log_level = debug in guacd.conf) to see if you get any more useful
messages.
-Nick
--
Jonathan Hankins
Homewood City Schools
W: 205-877-4548
This e-mail is intended only for the recipient and may contain confidential or
proprietary information. If you are not the intended recipient, the review,
distribution, duplication or retention of this message and its attachments are
prohibited. Please notify the sender of this error immediately by reply e-mail,
and permanently delete this message and its attachments in any form in which
they may have been preserved.
