Guacamole Configuration
-
@fbartels Ah of course,
. I think yours might be a better option.@mpeterson0418 You can configure Cloudron to integrate with your existing LDAP server and that way all the app will automatically integrate. For this, configure external LDAP directory in Cloudron -> Users and then you have to choose "Cloudron user management" when installing the app.
So it will in fact pass through the authentication to all the other installed apps on my profile if I setup the External Directory? That's good to know. How exactly will Apache guacamole pick that up though? My concern is that both use different URLs for access, and I think anyone browsing the web could easily just connect to Guacamole without needing to access the cloudron app could they not?
-
So it will in fact pass through the authentication to all the other installed apps on my profile if I setup the External Directory? That's good to know. How exactly will Apache guacamole pick that up though? My concern is that both use different URLs for access, and I think anyone browsing the web could easily just connect to Guacamole without needing to access the cloudron app could they not?
@mpeterson0418 even if its using different urls Guacamole is configured under the hood to use Cloudron for authentication (no one first needs to head to their Cloudron dashboard, but can directly log into Guac).
And once you have enabled the external ldap integration for your Cloudron all members on your ldap can log into Cloudron and therefore apps that use the Cloudron user management.
-
@mpeterson0418 even if its using different urls Guacamole is configured under the hood to use Cloudron for authentication (no one first needs to head to their Cloudron dashboard, but can directly log into Guac).
And once you have enabled the external ldap integration for your Cloudron all members on your ldap can log into Cloudron and therefore apps that use the Cloudron user management.
@fbartels I am definitely going to try that
Maybe you can help me with something within the guacamole config...... for sake or argument I tried building a user account and added my domain NetBIOS name to the front of it <AD><username>.
Now when I try to edit the account in the guacamole interface, I get the following error:
ERROR - An error has occurred and this action cannot be completed. If the problem persists, please notify your system administrator or check your system logs.
It seems like the account is being stored within the mysql database. Any thoughts on how to manually clean it up?
-
@fbartels I am definitely going to try that
Maybe you can help me with something within the guacamole config...... for sake or argument I tried building a user account and added my domain NetBIOS name to the front of it <AD><username>.
Now when I try to edit the account in the guacamole interface, I get the following error:
ERROR - An error has occurred and this action cannot be completed. If the problem persists, please notify your system administrator or check your system logs.
It seems like the account is being stored within the mysql database. Any thoughts on how to manually clean it up?
-
@fbartels I am definitely going to try that
Maybe you can help me with something within the guacamole config...... for sake or argument I tried building a user account and added my domain NetBIOS name to the front of it <AD><username>.
Now when I try to edit the account in the guacamole interface, I get the following error:
ERROR - An error has occurred and this action cannot be completed. If the problem persists, please notify your system administrator or check your system logs.
It seems like the account is being stored within the mysql database. Any thoughts on how to manually clean it up?
I got the external authentication working. Thanks a bunch!
Any thoughts on the lingering user account that I can't remove from Apache Guacamole? Is it stored somewhere within mysql and perhaps something I can edit manually to remove? The user interface keeps giving me the error I referenced earlier:
ERROR - An error has occurred and this action cannot be completed. If the problem persists, please notify your system administrator or check your system logs.
-
I got the external authentication working. Thanks a bunch!
Any thoughts on the lingering user account that I can't remove from Apache Guacamole? Is it stored somewhere within mysql and perhaps something I can edit manually to remove? The user interface keeps giving me the error I referenced earlier:
ERROR - An error has occurred and this action cannot be completed. If the problem persists, please notify your system administrator or check your system logs.
@mpeterson0418 Did you succeed via Cloudron external directory or directly from guacamole to your LDAP ?
As for the lingering user, maybe trying delete from MySQL. If you open web terminal, there is a button on the top for MySQL access. Click that button and press enter. Might want to take an app backup before tinkering with db directly...
-
@mpeterson0418 Did you succeed via Cloudron external directory or directly from guacamole to your LDAP ?
As for the lingering user, maybe trying delete from MySQL. If you open web terminal, there is a button on the top for MySQL access. Click that button and press enter. Might want to take an app backup before tinkering with db directly...
Yes I got the external directory setup and it is pulling in my AD user accounts so we are good there
As for MySQL..... is there a specific location/table on where I can access the database user accounts? Or is everything entered via UserMappings.xml?
-
Yes I got the external directory setup and it is pulling in my AD user accounts so we are good there
As for MySQL..... is there a specific location/table on where I can access the database user accounts? Or is everything entered via UserMappings.xml?
-
Yes I got the external directory setup and it is pulling in my AD user accounts so we are good there
As for MySQL..... is there a specific location/table on where I can access the database user accounts? Or is everything entered via UserMappings.xml?
Hey sorry.... just a quick update I found the MySQL table and was able to edit it as needed. Issue got cleared up after running a couple queries. Thanks for your help!
-
Hey guys,
Was wondering if we could potentially revisit this topic? I'm having a weird problem where my guacamole server is defaulting to mysql authentication even after getting my LDAP config setup and syncing
I've been able to successfully test a login using an AD account from my environment.... however when trying to authenticate with guacamole, it keeps failing and showing a denial from mysql authentication
Can anyone help?
-
Hello @mpeterson0418
You will need to provide more details.From the moment you are trying to log in with LDAP gather the following:
- guacamole configuration
- Cloudron App Logs
- Web browser console logs
- Web browser network logs
Also, did you follow the documentation https://guacamole.apache.org/doc/gug/ldap-auth.html ?
With this information it might be possible to provide assistance.
Hello! It looks like you're interested in this conversation, but you don't have an account yet.
Getting fed up of having to scroll through the same posts each visit? When you register for an account, you'll always come back to exactly where you were before, and choose to be notified of new replies (either via email, or push notification). You'll also be able to save bookmarks and upvote posts to show your appreciation to other community members.
With your input, this post could be even better 💗
Register Login