Hi, I try to connect to my 2025 windows server using an RDP app with security mode NLA-EXT. NLA is enforced by the RDP server, and I provide the user’s credentials in the app settings. Yet - I fail to connect to the app, I keep getting errors from freeRDP.
I use guacd version 1.5.5, but in version 1.6.0 it doesn’t work as well. This is the error I get from guacd that runs on a docker: guacd[1]: INFO: Creating new client for protocol "rdp" guacd[1]: INFO: Connection ID is "$98e01ed8-42bd-4bd8-8463-dfaeab849bc3" guacd[14]: DEBUG: Processing instruction: size guacd[14]: DEBUG: Processing instruction: audio guacd[14]: DEBUG: Processing instruction: video guacd[14]: DEBUG: Processing instruction: image guacd[14]: DEBUG: Parameter "console" omitted. Using default value of 0. guacd[14]: DEBUG: Parameter "console-audio" omitted. Using default value of 0. guacd[14]: DEBUG: Parameter "disable-auth" omitted. Using default value of 0. guacd[14]: INFO: Security mode: Extended NLA guacd[14]: DEBUG: User resolution is 1720x1203 at 96 DPI guacd[14]: DEBUG: Parameter "dpi" omitted. Using default value of 96. guacd[14]: DEBUG: Using resolution of 1720x1203 at 96 DPI guacd[14]: DEBUG: Parameter "force-lossless" omitted. Using default value of 0. guacd[14]: DEBUG: Parameter "read-only" omitted. Using default value of 0. guacd[14]: DEBUG: Parameter "client-name" omitted. Using default value of "Guacamole RDP". guacd[14]: DEBUG: Parameter "enable-wallpaper" omitted. Using default value of 0. guacd[14]: DEBUG: Parameter "enable-theming" omitted. Using default value of 0. guacd[14]: DEBUG: Parameter "enable-font-smoothing" omitted. Using default value of 0. guacd[14]: DEBUG: Parameter "enable-full-window-drag" omitted. Using default value of 0. guacd[14]: DEBUG: Parameter "enable-desktop-composition" omitted. Using default value of 0. guacd[14]: DEBUG: Parameter "enable-menu-animations" omitted. Using default value of 0. guacd[14]: DEBUG: Parameter "disable-bitmap-caching" omitted. Using default value of 0. guacd[14]: DEBUG: Parameter "disable-offscreen-caching" omitted. Using default value of 0. guacd[14]: DEBUG: Parameter "color-depth" omitted. Using default value of 16. guacd[14]: DEBUG: Parameter "disable-audio" omitted. Using default value of 0. guacd[14]: DEBUG: Parameter "enable-drive" omitted. Using default value of 0. guacd[14]: DEBUG: Parameter "drive-name" omitted. Using default value of "Guacamole Filesystem". guacd[14]: DEBUG: Parameter "drive-path" omitted. Using default value of "". guacd[14]: DEBUG: Parameter "create-drive-path" omitted. Using default value of 0. guacd[14]: DEBUG: Parameter "disable-download" omitted. Using default value of 0. guacd[14]: DEBUG: Parameter "disable-upload" omitted. Using default value of 0. guacd[14]: DEBUG: Parameter "enable-sftp" omitted. Using default value of 0. guacd[14]: DEBUG: Parameter "sftp-hostname" omitted. Using default value of "3.236.14.26". guacd[14]: DEBUG: Parameter "sftp-port" omitted. Using default value of "22". guacd[14]: DEBUG: Parameter "sftp-username" omitted. Using default value of "Administrator". guacd[14]: DEBUG: Parameter "sftp-password" omitted. Using default value of "". guacd[14]: DEBUG: Parameter "sftp-passphrase" omitted. Using default value of "". guacd[14]: DEBUG: Parameter "sftp-root-directory" omitted. Using default value of "/". guacd[14]: DEBUG: Parameter "sftp-server-alive-interval" omitted. Using default value of 0. guacd[14]: DEBUG: Parameter "sftp-disable-download" omitted. Using default value of 0. guacd[14]: DEBUG: Parameter "sftp-disable-upload" omitted. Using default value of 0. guacd[14]: DEBUG: Parameter "recording-name" omitted. Using default value of "recording". guacd[14]: DEBUG: Parameter "recording-exclude-output" omitted. Using default value of 0. guacd[14]: DEBUG: Parameter "recording-exclude-mouse" omitted. Using default value of 0. guacd[14]: DEBUG: Parameter "recording-exclude-touch" omitted. Using default value of 0. guacd[14]: DEBUG: Parameter "recording-include-keys" omitted. Using default value of 0. guacd[14]: DEBUG: Parameter "create-recording-path" omitted. Using default value of 0. guacd[14]: INFO: Resize method: display-update guacd[14]: DEBUG: Parameter "enable-touch" omitted. Using default value of 0. guacd[14]: DEBUG: Parameter "gateway-port" omitted. Using default value of 443. guacd[14]: DEBUG: Parameter "disable-copy" omitted. Using default value of 0. guacd[14]: DEBUG: Parameter "disable-paste" omitted. Using default value of 0. guacd[14]: INFO: No clipboard line-ending normalization specified. Defaulting to preserving the format of all line endings. guacd[14]: DEBUG: Parameter "wol-send-packet" omitted. Using default value of 0. guacd[14]: INFO: User "@c2712bda-96a8-411f-9d21-4dff63650307" joined connection "$98e01ed8-42bd-4bd8-8463-dfaeab849bc3" (1 users now present) guacd[14]: DEBUG: Client has not defined its protocol version. guacd[14]: INFO: Loading keymap "base" guacd[14]: INFO: Loading keymap "en-us-qwerty" guacd[14]: DEBUG: Support for CLIPRDR (clipboard redirection) registered. Awaiting channel connection. guacd[14]: DEBUG: Support for static channel "rdpdr" loaded. guacd[14]: DEBUG: Support for static channel "rdpsnd" loaded. guacd[14]: DEBUG: Local framebuffer format PIXEL_FORMAT_BGRX32 guacd[14]: DEBUG: Remote framebuffer format PIXEL_FORMAT_RGB16 guacd[14]: DEBUG: cannot connect security layer because no protocol has been selected yet. guacd[14]: DEBUG: rdp_client_connect:freerdp_set_last_error_ex ERRCONNECT_SECURITY_NEGO_CONNECT_FAILED [0x0002000C] guacd[14]: DEBUG: Error: protocol security negotiation or connection failure guacd[14]: DEBUG: SVC "rdpdr" disconnected. guacd[14]: DEBUG: SVC "rdpsnd" disconnected. guacd[14]: INFO: RDP server closed/refused connection: Security negotiation failed (wrong security type?) guacd[14]: INFO: User "@c2712bda-96a8-411f-9d21-4dff63650307" disconnected (0 users remain) guacd[14]: INFO: Last user of connection "$98e01ed8-42bd-4bd8-8463-dfaeab849bc3" disconnected guacd[14]: DEBUG: Requesting termination of client... guacd[14]: DEBUG: Client terminated successfully. guacd[1]: INFO: Connection "$98e01ed8-42bd-4bd8-8463-dfaeab849bc3" removed. guacd[1]: DEBUG: Unable to request termination of client process: No such process guacd[1]: DEBUG: All child processes for connection "$98e01ed8-42bd-4bd8-8463-dfaeab849bc3" have been terminated. Does anyone have this issue? How should I support NLA-EXT? Get Outlook for Mac <https://aka.ms/GetOutlookForMac>
