Hi Nick, Thanks for the fast response, i used a normal windows 10 computer and it dosent have domain. About the security i already try all settings and still didnt work with ou without security.
About the user with write access, i dont know, i follow this tutorial https://adamtheautomator.com/apache-guacamole/ and this are some of the commands i did to configure guacd echo GUACAMOLE_HOME=/etc/guacamole >> /etc/default/tomcat9 mkdir -p /etc/guacamole/{extensions,lib} touch /etc/guacamole/{guacamole.properties,guacd.conf} Are you saying i need to adduser guadcd_test and where i should put the home folder and witch file do i need to edit to configure freeRDP? Com os meus melhores cumprimentos, André Cruz ________________________________ De: Nick Couchman <[email protected]> Enviado: sábado, 8 de outubro de 2022 16:38 Para: [email protected] <[email protected]> Assunto: Re: Guacamole dosent connect rdp, only works ssh On Sat, Oct 8, 2022 at 11:24 AM André Cruz <[email protected]> wrote: > > Hi, when i create a rdp session and try to connect, it dosent work, i > configure windows pc to work, and try it with other computer ok. > But with guacamole fails rdp only ssh works, if anybody can help me i would > be happy and start writing arthicles on this website too. > rdp configuration: https://i.imgur.com/3Kk744s.png > error: https://i.imgur.com/JJhNlNM.png ||| https://i.imgur.com/qoVIoUq.png The "Security Negotiation Failed" error could indicate one of several possibilities: * Credentials are actually incorrect, since NLA uses credentials to negotiate the security. I notice you don't have a domain specified - if the machine is not domain-joined this is probably okay, but otherwise you will want to specify the domain. * Security level is actually incorrect, and NLA is not enabled on the server. I don't know what RDP server you're connecting to - Windows, xrdp, etc. - but make sure that NLA is actually enabled on the system, or change this to something else. * The user running guacd on the Linux system does not have write access to its home directory. This comes up periodically, particularly since "daemon" is the default user in the systemd template provided with the source code, and often the daemon user has a home directory of /sbin, which it cannot write to. FreeRDP requires a writable home directory so that it can write out the fingerprints of known RDP hosts (similar to SSH's known_hosts file), so you can either create a new user for guacd to run as and change the systemd file to use that account, or update the current user's home directory to a writable location. The user running guacd doesn't generally need any special privileges or anything like that, so I usually just create a guacd user with a standard home directory and use that to run guacd. -Nick --------------------------------------------------------------------- To unsubscribe, e-mail: [email protected] For additional commands, e-mail: [email protected]
