Dear all Whatever that random internet link says, I have quite literally set up a Guacamole connection to a Windows 2022 server ... today.
Please don't fiddle with your registry unless you now what you are doing - you will probably end up less secure and without a solution. If I had to guess, it will be DNS. You must create the right environment for this sort of stuff and not subscribe to magic thinking. If you want a hand with that, we will need details (but no usernames or passwords - those are yours alone) of your network and what runs it. That regedit looks like it turns off authentication in some way which is a bad idea Cheers Jon On Thu, 2024-04-04 at 16:46 -0300, Juan Pablo Largente wrote: Some time ago, I dealt with the same issue. I had to change some Register values in order to be able to connect to Win 10 terminals. This link says which keys to change https://mangolassi.it/topic/17846/make-windows-10-server-2016-rdp-work-with-guacamole On Thu, Apr 4, 2024 at 4:42 PM Devine, Harry (FAA) <[email protected]> wrote: I have “Any” now, but NLA didn’t work either. No matter what I choose, I get that “RDP server closed/refused connection: Server refused connection (wrong security type?)” error. Thanks, Harry From: Horváth Csaba <[email protected]<mailto:[email protected]>> Sent: Thursday, April 4, 2024 3:31 PM To: [email protected]<mailto:[email protected]> Subject: Re: Issue with Windows 10 RDP CAUTION: This email originated from outside of the Federal Aviation Administration (FAA). Do not click on links or open attachments unless you recognize the sender and know the content is safe. Hi, Which security mode you have chosen? NLA is required for newer Windows versions. Cs. Devine, Harry (FAA) <[email protected]<mailto:[email protected]>> ezt írta (időpont: 2024. ápr. 4., Cs, 21:18): I am having an issue connecting to a new Windows 10 machine we stood up. I’ve had this issue before, but everything that was suggested for that issue doesn’t work here. I have enabled Remote Desktop on the server, added the local accounts needed, and added them to the Remote Desktop Users group. The Windows Firewall also is allowing RDP over 3389. On the Guac server, I set the connection security to Any, and I’m logged into Guac with my account that has a matching account on the Windows machine. When I log in, the windows says “The remote server is unavailable”, and /var/log/messages on the server (running Guac 1.5.4), shows: Apr 4 15:12:50 access guacd[2286]: Creating new client for protocol "rdp" Apr 4 15:12:50 access guacd[2286]: Connection ID is "$58d124a2-4e95-492d-8276-8ea335d08dc4" Apr 4 15:12:50 access guacd[1475582]: Security mode: Negotiate (ANY) Apr 4 15:12:50 access guacd[1475582]: Resize method: none Apr 4 15:12:50 access server[1652]: 15:12:50.415 [http-nio-8080-exec-1] INFO o.a.g.tunnel.TunnelRequestService - User "harry.devine" connected to connection "816". Apr 4 15:12:50 access guacd[1475582]: No clipboard line-ending normalization specified. Defaulting to preserving the format of all line endings. Apr 4 15:12:50 access server[1652]: 15:12:50.416 [http-nio-8080-exec-1] INFO o.a.g.t.h.RestrictedGuacamoleHTTPTunnelServlet - Using HTTP tunnel (not WebSocket). Performance may be sub-optimal. Apr 4 15:12:50 access guacd[1475582]: User "@b5fa063a-d482-4150-9d76-398043991dfd" joined connection "$58d124a2-4e95-492d-8276-8ea335d08dc4" (1 users now present) Apr 4 15:12:50 access guacd[1475582]: Loading keymap "base" Apr 4 15:12:50 access guacd[1475582]: Loading keymap "en-us-qwerty" Apr 4 15:12:50 access guacd[1475582]: FIPS mode is enabled. Excluding NLA security mode from security negotiation (see:https://github.com/FreeRDP/FreeRDP/issues/3412). Apr 4 15:12:50 access guacd[1475582]: RDP server closed/refused connection: Server refused connection (wrong security type?) Apr 4 15:12:50 access guacd[1475582]: User "@b5fa063a-d482-4150-9d76-398043991dfd" disconnected (0 users remain) Apr 4 15:12:50 access guacd[1475582]: Last user of connection "$58d124a2-4e95-492d-8276-8ea335d08dc4" disconnected Apr 4 15:12:50 access guacd[2286]: Connection "$58d124a2-4e95-492d-8276-8ea335d08dc4" removed. Any ideas? I can’t seem to find any usable solutions when I research this online. Thanks, Harry [cid:ii_18eaaa585224cff311] Harry Devine Secure-OSE System Administrator Red Hat Certified System Administrator (RHCSA) Office: (609) 485-4218 Personal Cell: (609) 276-0555 FAA Cell: (609) 612-7274 Home Office/Telework: (609) 547-3579 Email :[email protected]<mailto:[email protected]> William J Hughes Technical Center Building 300 3rd Floor Column L20 Atlantic City, NJ 08405 -- JUAN PABLO LARGENTE GERENTE OPERATIVO [http://www.maersoft.com.ar/firmasMail/logo-maer-firmas.png]<http://www.maersoft.com.ar/> Av. Rivadavia 2358 3º Izq. CP 1034ACP -CABA, Argentina T. 50313969<tel:+541150313969> maersoft.com.ar<http://maersoft.com.ar/>
