On Fri, Oct 27, 2017 at 10:43 AM, Nick Couchman <[email protected]> wrote:
> On Thu, Oct 26, 2017 at 5:40 PM, Anthony Moon < > [email protected]> wrote: > >> We’d like to eliminate the potential for administrators to have access to >> this feature (if at all possible). >> > > I do not know of a way to do this at the Guacamole level at this point. > On the server-side you could disable it in the SSH server config > (sshd_config) if you have control over those servers and don't want it > available at all, or disable it for certain groups of users, etc. But I > don't know of a way in the Guacamole configuration to prevent it. > > There really isn't a way to disable this access via configuration alone. It would be possible to write an extension which does not use the corresponding connection parameters, but if the use case here is specialized enough, it may be better to look into leveraging the Guacamole API to build a webapp specific to that case, rather than stripping out parts of the mainline webapp. - Mike
