Hi Nick! Thank you very much. That helped me out. Tomcat had no enough right to access my path. Freundliche Grüsse
Chris Burkart ICT Projects System Engineer Rittmeyer AG Business Segment Utilities Inwilerriedstrasse 57 Postfach 1660 CH-6341 Baar Tel: +41 41 767 13 67 www.rittmeyer.com Microsoft Teams <https://teams.microsoft.com/l/chat/0/[email protected]> [LinkedIn]<http://www.linkedin.com/company/rittmeyer-ag>[Xing]<https://www.xing.com/companies/rittmeyerag>[Facebook]<https://www.facebook.com/rittmeyergroup>[Instagramm]<https://www.instagram.com/rittmeyergruppe/>[Youtube]<https://www.youtube.com/channel/UCbQyP1FU36Q4gFpPpabCezg>[AppStore]<https://apps.apple.com/de/developer/rittmeyer-ag/id450459011> Important Note: This e-mail, including attachments, is intended for the person(s) or company named and may contain confidential and/or legally privileged information. Unauthorized disclosure, copying or use of this information may be unlawful and is prohibited. If you are not the intended recipient, please delete this message and notify the sender. Von: Nick Couchman <[email protected]> Gesendet: Samstag, 16. September 2023 16:02 An: [email protected] Betreff: Re: AW: AW: guacamole-history-recording-storage-1.5.3 / Problems CAUTION: External email On Fri, Sep 15, 2023 at 4:17 PM Holderby, Brandon <[email protected]<mailto:[email protected]>> wrote: I believe recordings are going (seen in his screenshot) I want to say the “owner” of the recording path needs to be “tomcat”, maybe someone can correct me if I am wrong. No, the owner does not need to be tomcat, but the following two things must be true: * The user account under which guacd is running must have read/write/execute access to the folder where the recordings are stored. Since guacd does the actual recording of the session, it needs to be able to write the files. This also means it will need the appropriate access to the folders above where the recording folder is located - at least execute, to be able to traverse the folder structure. * The user account under which Tomcat (or JBoss, etc.) is running must have read access to the folder and files where the recordings are stored, as the extension that enumerates those recordings is part of the web application. This means that the folder access must be appropriate, but also that the recording files created by guacd must be created with a mode that allows the Tomcat user to read them. At least one way to accomplish this, assuming that guacd and Tomcat are running on the same system, is to: * Create a UNIX group ("guacamole", for example). * Add the user running guacd to the "guacamole" group. * Add the user running Tomcat to the "guacamole" group. * Make sure ownership of the recording folder is set to the guacd user and "guacamole" group. * Make sure the mode of the recording folder is set to at least 0750 (read/write/execute for guacd user, read/execute for "guacamole" group). * Make sure that the mode of the recording files is at least 0640 (read/write for user guacd user, read for "guacamole" group). -Nick
