Nothing worked ☹ Neither TLS nor NLA The ignore_cert=true is set on the connection
Now not even provide errors on daemon.log… The strange is that my version 0.8 works like a charm… Why not the 1.5.5? Are there any log files that I could send you? GONÇALO COELHO ROSA [cid:[email protected]] V2S Corporation [cid:[email protected]] Delaware, US [cid:[email protected]] +351 919 937 124<https://wa.me/+351919937124> [email protected]<mailto:[email protected]> [cid:[email protected]] www.v2s.us<http://www.v2s.us> |F<https://www.facebook.com/v2scorporation>|in<https://www.linkedin.com/company/v2s-corporation/>| [cid:[email protected]]<https://www.v2s.us/>[cid:[email protected]]<https://www.linkedin.com/company/v2s-corporation/>[cid:[email protected]]<https://www.facebook.com/v2scorporation>[cid:[email protected]] From: Nick Couchman <[email protected]> Sent: Friday, July 19, 2024 13:59 To: [email protected] Subject: Re: Guacamole 1.5.5 RDP connection refused Goncalo, Please make sure that you start a new thread for a new topic, and don't just reply to an existing message. On Fri, Jul 19, 2024 at 6:14 AM Goncalo Rosa <[email protected]<mailto:[email protected]>> wrote: BTW: ignore_cert=true already set on the connection I'm doubtful about this - the message clearly indicates that the connection is being rejected because the certificate is unknown or self-signed. Please verify that this is actually set for the connection that you're attempting to open. Also, the actual connection parameter within Guacamole Client should be "ignore-cert" (- vs. _). GONÇALO COELHO ROSA [cid:[email protected]] V2S Corporation [cid:[email protected]] Delaware, US [cid:[email protected]] +351 919 937 124<https://wa.me/+351919937124> [email protected]<mailto:[email protected]> [cid:[email protected]] www.v2s.us<http://www.v2s.us> |F<https://www.facebook.com/v2scorporation>|in<https://www.linkedin.com/company/v2s-corporation/>| [cid:[email protected]]<https://www.v2s.us/>[cid:[email protected]]<https://www.linkedin.com/company/v2s-corporation/>[cid:[email protected]]<https://www.facebook.com/v2scorporation>[cid:[email protected]] From: Goncalo Rosa <[email protected]<mailto:[email protected]>> Sent: Friday, July 19, 2024 11:11 To: [email protected]<mailto:[email protected]> Subject: Guacamole 1.5.5 RDP connection refused Hello, We have been using Guacamole 0.8 and works very well for years now. We decided to deploy our environment on last version 1.5.5 ad move into it, since upgrade from 0.8 on a centos 7 to 1.5.5 it seemed crasy. Wow, that's quite a leap :-). We deployed a guacamole 1.5.5 on Debian 12 with Database mariadb and active directory integration, using tomcat apache 9. When I am testing the recreated RDP connections I get the following on daemon.log (this connection is against an old windows 2008 R2 Terminal server that I can access pretty fine from guacamole 0.8): Jul 19 10:56:44 srvv2shqpgua02 guacd[2417]: Security mode: Negotiate (ANY) Jul 19 10:56:44 srvv2shqpgua02 guacd[2417]: Resize method: none Jul 19 10:56:44 srvv2shqpgua02 guacd[2417]: No clipboard line-ending normalization specified. Defaulting to preserving the format of all line endings. Jul 19 10:56:44 srvv2shqpgua02 guacd[2417]: User "@943afc59-77be-4057-955e-5f7a39ae62ef" joined connection "$a9b353b7-fcd3-4896-a810-15b506ccdc58" (1 users now present) Jul 19 10:56:44 srvv2shqpgua02 guacd[2417]: Loading keymap "base" Jul 19 10:56:44 srvv2shqpgua02 guacd[2417]: Loading keymap "en-us-qwerty" Jul 19 10:56:44 srvv2shqpgua02 guacd[2417]: RDP server closed/refused connection: SSL/TLS connection failed (untrusted/self-signed certificate?) Jul 19 10:56:44 srvv2shqpgua02 guacd[2417]: User "@943afc59-77be-4057-955e-5f7a39ae62ef" disconnected (0 users remain) Jul 19 10:56:44 srvv2shqpgua02 guacd[2417]: Last user of connection "$a9b353b7-fcd3-4896-a810-15b506ccdc58" disconnected This indicates the certificate is not trusted and Guacamole is closing the connection due to that, so double-check issues related to that - correct connection parameters, home directory configuration, etc. Also, you can try switching the security mode to "NLA" or "TLS" and see if that helps. -Nick
