OK. It's working now. Turns out the problem relates to a subtle weirdness in
the gid that was assigned to the group 'tsusers' that sesman uses for group
level permissions (see sesman.ini).
Apparently (at least in redhat and derivatives) the gid of the tsusers group
has got to be number that's not in the block reserved for system gids.
Here's the details:
For a completely unrelated reason I did an 'id' on my login, and just happened
to notice that the lists of groups did -not - include 'tsusers'.
$ grep tsusers /etc/group was 491. Ok, so what? well, I noticed that all the
other groups I was a member of had gid's above 1000. So I changed the gid of
tsusers to 1315 using vigr (1315 was a random pick, nothing special about it
other than it was above 1000 and wasn't being used).
Rebooted, just because.
Logged back in, lo and behold 'id' shows 'tsusers' in the list of groups I'm a
member of. Woohoo.
Went to an XP Pro machine and was able to rdp back into the xrdp host box using
mstsc. No muss, no fuss. Also tried rdp'ing into the xrdp host from other
clients. All worked.
More to the point, I was able to concurrently log in as different users from
different machines (at least three different users on three different
machines). Way cool. Maybe now I can finally start to make my linux BigBox a
real multi-user box!
So, bottom line, make sure that the gid that's assigned to group tsusers is not
in the block of numbers reserved for system gid's. I think (but haven't
confirmed) that most systems regard this block as gid < 500.
Just for completeness sake, I should say that I'm using sesman-X11rdp, not any
of the vnc entries. (In fact, I've removed the vnc entries from the list in
xrdp.ini).
Also, I don't know how tsusers got assigned 491 in the first place. Any
assignments I do are generally > 1000.
I hope this makes sense and is helpful to others. It's late, I'm done, good
luck, good night.
------------------------------------------------------------------------------
RSA(R) Conference 2012
Save $700 by Nov 18
Register now
http://p.sf.net/sfu/rsa-sfdev2dev1
_______________________________________________
xrdp-devel mailing list
xrdp-devel@lists.sourceforge.net
https://lists.sourceforge.net/lists/listinfo/xrdp-devel
