Comments (7)
[2023-10-04 12:36:44] [info] Starting service [Catalina]
[2023-10-04 12:36:44] [info] Starting Servlet engine: [Apache Tomcat/9.0.70 (Debian)]
[2023-10-04 12:36:44] [info] Deploying web application archive [/var/lib/tomcat9/webapps/guacamole.war]
[2023-10-04 12:36:49] [info] At least one JAR was scanned for TLDs yet contained no TLDs. Enable debug logging for this logger for a complete list of JARs that were scanned but no TLDs were found in them. Skipping unneeded JARs during scanning can improve startup time and JSP compilation time.
[2023-10-04 12:36:50] [info] 12:36:50.178 [main] INFO o.a.g.environment.LocalEnvironment - GUACAMOLE_HOME is "/etc/guacamole".
[2023-10-04 12:36:50] [info] 12:36:50.320 [main] INFO o.a.g.GuacamoleServletContextListener - Read configuration parameters from "/etc/guacamole/guacamole.properties".
[2023-10-04 12:36:50] [info] 12:36:50.322 [main] INFO o.a.g.rest.auth.HashTokenSessionMap - Sessions will expire after 60 minutes of inactivity.
[2023-10-04 12:36:51] [info] 12:36:51.314 [main] INFO o.a.g.extension.ExtensionModule - Multiple extensions are installed and will be loaded in order of decreasing priority:
[2023-10-04 12:36:51] [info] 12:36:51.314 [main] INFO o.a.g.extension.ExtensionModule - - [custom-namespace] "Custom Guacamole Theme" (/etc/guacamole/extensions/branding.jar)
[2023-10-04 12:36:51] [info] 12:36:51.314 [main] INFO o.a.g.extension.ExtensionModule - - [mysql] "MySQL Authentication" (/etc/guacamole/extensions/guacamole-auth-jdbc-mysql-1.5.3.jar)
[2023-10-04 12:36:51] [info] 12:36:51.314 [main] INFO o.a.g.extension.ExtensionModule - - [uds] "UDS Integration Extension for Apache Guacamole" (/etc/guacamole/extensions/guacamole-auth-uds-2.5.0.jar)
[2023-10-04 12:36:51] [info] 12:36:51.314 [main] INFO o.a.g.extension.ExtensionModule - To change this order, set the "extension-priority" property or rename the extension files. The default priority of extensions is dictated by the sort order of their filenames.
[2023-10-04 12:36:51] [info] 12:36:51.397 [main] INFO o.a.g.extension.ExtensionModule - Extension "Custom Guacamole Theme" (custom-namespace) loaded.
[2023-10-04 12:36:51] [info] 12:36:51.467 [main] INFO o.a.g.a.mysql.conf.MySQLEnvironment - Installed JDBC driver for MySQL/MariaDB detected as "MySQL Connector/J".
[2023-10-04 12:36:52] [info] 12:36:52.762 [main] INFO o.a.g.extension.ExtensionModule - Extension "MySQL Authentication" (mysql) loaded.
[2023-10-04 12:36:52] [info] 12:36:52.767 [main] INFO o.a.g.environment.LocalEnvironment - GUACAMOLE_HOME is "/etc/guacamole".
[2023-10-04 12:36:52] [info] 12:36:52.940 [main] INFO o.a.g.extension.ExtensionModule - Extension "UDS Integration Extension for Apache Guacamole" (uds) loaded.
[2023-10-04 12:36:53] [info] 12:36:53.040 [main] INFO o.a.g.t.w.WebSocketTunnelModule - Loading JSR-356 WebSocket support...
[2023-10-04 12:36:53] [info] 12:36:53.708 [main] WARN o.g.jersey.server.wadl.WadlFeature - JAXBContext implementation could not be found. WADL feature is disabled.
[2023-10-04 12:36:54] [info] Deployment of web application archive [/var/lib/tomcat9/webapps/guacamole.war] has finished in [9 445] ms
[2023-10-04 12:36:54] [info] Установка веб приложения в папку [/var/lib/tomcat9/webapps/ROOT]
[2023-10-04 12:36:54] [info] At least one JAR was scanned for TLDs yet contained no TLDs. Enable debug logging for this logger for a complete list of JARs that were scanned but no TLDs were found in them. Skipping unneeded JARs during scanning can improve startup time and JSP compilation time.
[2023-10-04 12:36:54] [info] Deployment of web application directory [/var/lib/tomcat9/webapps/ROOT] has finished in [729] ms
[2023-10-04 12:36:54] [info] Starting ProtocolHandler ["http-nio-8080"]
[2023-10-04 12:36:54] [info] Starting ProtocolHandler ["https-openssl-apr-8443"]
[2023-10-04 12:36:54] [info] Server startup in [10462] milliseconds
from openuds.
2023-10-04T12:43:33.934571+03:00 uds-tunnel guacd[566]: Creating new client for protocol "rdp"
2023-10-04T12:43:33.934927+03:00 uds-tunnel guacd[566]: guacd[566]: INFO:#011Creating new client for protocol "rdp"
2023-10-04T12:43:33.935753+03:00 uds-tunnel guacd[566]: Connection ID is "$8a515f75-bc36-408f-8d44-1c7b9fa6b676"
2023-10-04T12:43:33.935878+03:00 uds-tunnel guacd[566]: guacd[566]: INFO:#011Connection ID is "$8a515f75-bc36-408f-8d44-1c7b9fa6b676"
2023-10-04T12:43:33.995054+03:00 uds-tunnel guacd[1523]: Security mode: Negotiate (ANY)
2023-10-04T12:43:33.995712+03:00 uds-tunnel guacd[1523]: guacd[1523]: INFO:#011Security mode: Negotiate (ANY)
2023-10-04T12:43:33.995877+03:00 uds-tunnel guacd[1523]: Resize method: display-update
2023-10-04T12:43:33.995999+03:00 uds-tunnel guacd[1523]: guacd[1523]: INFO:#011Resize method: display-update
2023-10-04T12:43:33.996096+03:00 uds-tunnel guacd[1523]: No clipboard line-ending normalization specified. Defaulting to preserving the format of all line endings.
2023-10-04T12:43:33.996206+03:00 uds-tunnel guacd[1523]: guacd[1523]: INFO:#011No clipboard line-ending normalization specified. Defaulting to preserving the format of all line endings.
2023-10-04T12:43:33.996356+03:00 uds-tunnel guacd[1523]: User "@513dc934-a6df-45a6-bbae-2bd20eb065ef" joined connection "$8a515f75-bc36-408f-8d44-1c7b9fa6b676" (1 users now present)
2023-10-04T12:43:33.996461+03:00 uds-tunnel guacd[1523]: guacd[1523]: INFO:#011User "@513dc934-a6df-45a6-bbae-2bd20eb065ef" joined connection "$8a515f75-bc36-408f-8d44-1c7b9fa6b676" (1 users now present)
2023-10-04T12:43:34.000936+03:00 uds-tunnel guacd[1523]: Loading keymap "base"
2023-10-04T12:43:34.001149+03:00 uds-tunnel guacd[1523]: guacd[1523]: INFO:#011Loading keymap "base"
2023-10-04T12:43:34.001282+03:00 uds-tunnel guacd[1523]: Loading keymap "en-us-qwerty"
2023-10-04T12:43:34.001375+03:00 uds-tunnel guacd[1523]: guacd[1523]: INFO:#011Loading keymap "en-us-qwerty"
2023-10-04T12:43:37.534205+03:00 uds-tunnel guacd[1523]: User "@513dc934-a6df-45a6-bbae-2bd20eb065ef" disconnected (0 users remain)
2023-10-04T12:43:37.534523+03:00 uds-tunnel guacd[1523]: guacd[1523]: INFO:#011User "@513dc934-a6df-45a6-bbae-2bd20eb065ef" disconnected (0 users remain)
2023-10-04T12:43:37.534619+03:00 uds-tunnel guacd[1523]: guacd[1523]: INFO:#011Last user of connection "$8a515f75-bc36-408f-8d44-1c7b9fa6b676" disconnected
2023-10-04T12:43:37.534692+03:00 uds-tunnel guacd[1523]: Last user of connection "$8a515f75-bc36-408f-8d44-1c7b9fa6b676" disconnected
2023-10-04T12:43:37.567906+03:00 uds-tunnel guacd[1523]: Internal RDP client disconnected
2023-10-04T12:43:37.568158+03:00 uds-tunnel guacd[1523]: guacd[1523]: INFO:#011Internal RDP client disconnected
2023-10-04T12:43:37.576364+03:00 uds-tunnel guacd[566]: Connection "$8a515f75-bc36-408f-8d44-1c7b9fa6b676" removed.
2023-10-04T12:43:37.576689+03:00 uds-tunnel guacd[566]: guacd[566]: INFO:#011Connection "$8a515f75-bc36-408f-8d44-1c7b9fa6b676" removed.
from openuds.
guacd version 1.5.3
tomcat 9
openuds v3.6
from openuds.
Sorry for the delay on the response.
Yes, probably you have had issues using tunnels with 3.6 version.
From 3.6 onwards, the server has to be registered with UDS before it is allowed to request for anything on UDS. The problem: I forgot to document this :(
This is the procedure to obtain the valid url for 3.6 onwards:
Using this script:
https://raw.githubusercontent.com/VirtualCable/openuds/master/server/samples/reg_tunnel.py
Yo have to register the tunnel with UDS Server.
The use is fair easy:
usage: reg_tunnel.py [-h] [--auth-uuid AUTH_UUID] --username USERNAME --password PASSWORD --broker-host BROKER_HOST [--broker-port BROKER_PORT] --tunnel-ip TUNNEL_IP
[--tunnel-hostname TUNNEL_HOSTNAME] [--no-ssl] [--no-verify]
Register a tunnel with UDS Broker
options:
-h, --help show this help message and exit
--auth-uuid AUTH_UUID
UUID of authenticator to use
--username USERNAME Username to use (must have administator privileges)
--password PASSWORD Password to use
--broker-host BROKER_HOST
Broker host to connect to
--broker-port BROKER_PORT
Broker port to connect to
--tunnel-ip TUNNEL_IP
IP of tunnel server
--tunnel-hostname TUNNEL_HOSTNAME
Hostname of tunnel server (defaults to juliet)
--no-ssl Disable SSL in connection to broker
--no-verify Disable SSL certificate verification
- Get an admin user of from uds. If you use the "root" uds user, then no auth-uuid is needed, if not, take the uuid of the authenticator from the database.
- Run the command with required parameters, and get the output:
./reg_tunnel.py --username root --password the_passwor --broker-host 192.168.1.10 --tunnel-ip 192.168.10.10 --no-verify - Get the output token:
Registered with token "eBCeFxTBw1IKXCqq-RlncshwWIfrrqxc8y5nehqiqMtRztwD" - Now, compose the url for guacamole as this:
uds-base-url=https://192.168.1.10/uds/guacamole/auth/eBCeFxTBw1IKXCqq-RlncshwWIfrrqxc8y5nehqiqMtRztwD/
(note the last part with the token and the trailing slash)
With this, your guacamole should work.
Note: Guacamole will ALWAYS try to check certificate validity, so, if you have a self-signed certificate, ensure to add it to local java ca repository, so guacamole does not fails.
Again, sorry for the lack of documentation and the delay, sometimes i don't have even time for sleeping, literally, due to work :)
Tell me please if this works for you,
from openuds.
#Hello. It's not helped me. I've already have tunnel token.
Certificate is a GlobalSign
curl -v https://example.com
- Trying 192.168.180.110:443...
- Connected to example.com (192.168.180.110) port 443 (#0)
- ALPN: offers h2,http/1.1
- TLSv1.3 (OUT), TLS handshake, Client hello (1):
- CAfile: /etc/ssl/certs/ca-certificates.crt
- CApath: /etc/ssl/certs
- TLSv1.3 (IN), TLS handshake, Server hello (2):
- TLSv1.3 (IN), TLS handshake, Encrypted Extensions (8):
- TLSv1.3 (IN), TLS handshake, Certificate (11):
- TLSv1.3 (IN), TLS handshake, CERT verify (15):
- TLSv1.3 (IN), TLS handshake, Finished (20):
- TLSv1.3 (OUT), TLS change cipher, Change cipher spec (1):
- TLSv1.3 (OUT), TLS handshake, Finished (20):
- SSL connection using TLSv1.3 / TLS_AES_256_GCM_SHA384
- ALPN: server accepted h2
- Server certificate:
- subject: CN=*.example.com;
- start date: Aug 29 13:16:29 2023 GMT
- expire date: Sep 29 13:16:28 2024 GMT
- subjectAltName: host "example.com" matched cert's "*.example.com"
- issuer: C=BE; O=GlobalSign nv-sa; CN=GlobalSign RSA OV SSL CA 2018
- SSL certificate verify ok.
- using HTTP/2
- h2h3 [:method: GET]
- h2h3 [:path: /]
- h2h3 [:scheme: https]
- h2h3 [:authority: example.com]
- h2h3 [user-agent: curl/7.88.1]
- h2h3 [accept: /]
- Using Stream ID: 1 (easy handle 0x558998a6ec70)
GET / HTTP/2
Host: example.com
user-agent: curl/7.88.1
accept: /
- TLSv1.3 (IN), TLS handshake, Newsession Ticket (4):
- TLSv1.3 (IN), TLS handshake, Newsession Ticket (4):
- old SSL session ID is stale, removing
< HTTP/2 302
< server: nginx/1.22.1
< date: Thu, 12 Oct 2023 07:05:38 GMT
< content-type: text/html; charset=utf-8
< content-length: 0
< location: /uds/page/services
< x-ua-compatible: IE=edge
< x-xss-protection: 1; mode=block
< content-security-policy: default-src 'self' 'unsafe-inline' 'unsafe-eval' uds: udss:; img-src 'self' https: data:;
< x-content-type-options: nosniff
< referrer-policy: same-origin
< x-frame-options: DENY
< vary: Accept-Language, Cookie
< content-language: ru
< set-cookie: sessionid=xtjpler2ioarbqx1ewguwf4ipqhrqjgp; Path=/; SameSite=Lax
< strict-transport-security: max-age=63072000; includeSubDomains; preload
< x-frame-options: DENY
< x-content-type-options: nosniff
< x-xss-protection: 1; mode=block
<- Connection #0 to host example.com left intact
окт 12 10:03:07 uds-tunnel tomcat9[24594]: 10:03:07.520 [https-openssl-apr-8443-exec-7] INFO o.a.g.tunnel.TunnelRequestService - User "" disconnected from connection "UDS". Duration: 3568 milliseconds
окт 12 10:03:07 uds-tunnel guacd[24782]: Guacamole connection failure: Error filling instruction buffer
окт 12 10:03:07 uds-tunnel guacd[24782]: guacd[24782]: WARNING: Guacamole connection failure: Error filling instruction buffer
окт 12 10:03:07 uds-tunnel guacd[24782]: guacd[24782]: INFO: User "@9f5e3493-e692-4d41-a15e-47c0f1b432ff" disconnected (0 users remain)
окт 12 10:03:07 uds-tunnel guacd[24782]: guacd[24782]: INFO: Last user of connection "$de909c75-b58c-4080-96da-f131b3445284" disconnected
окт 12 10:03:07 uds-tunnel guacd[24782]: User "@9f5e3493-e692-4d41-a15e-47c0f1b432ff" disconnected (0 users remain)
окт 12 10:03:07 uds-tunnel guacd[24782]: Last user of connection "$de909c75-b58c-4080-96da-f131b3445284" disconnected
окт 12 10:03:07 uds-tunnel guacd[24782]: Internal RDP client disconnected
окт 12 10:03:07 uds-tunnel guacd[24782]: guacd[24782]: INFO: Internal RDP client disconnected
окт 12 10:03:07 uds-tunnel guacd[24579]: Connection "$de909c75-b58c-4080-96da-f131b3445284" removed.
окт 12 10:03:07 uds-tunnel guacd[24579]: guacd[24579]: INFO: Connection "$de909c75-b58c-4080-96da-f131b3445284" removed.
окт 12 10:03:22 uds-tunnel guacd[24579]: Creating new client for protocol "rdp"
окт 12 10:03:22 uds-tunnel guacd[24579]: guacd[24579]: INFO: Creating new client for protocol "rdp"
окт 12 10:03:22 uds-tunnel guacd[24579]: Connection ID is "$9bb2eabb-7ffe-4831-bb3d-4c220a05d92c"
окт 12 10:03:22 uds-tunnel guacd[24579]: guacd[24579]: INFO: Connection ID is "$9bb2eabb-7ffe-4831-bb3d-4c220a05d92c"
окт 12 10:03:22 uds-tunnel tomcat9[24594]: 10:03:22.985 [https-openssl-apr-8443-exec-4] INFO o.a.g.tunnel.TunnelRequestService - User "null" connected to connection "UDS".
окт 12 10:03:22 uds-tunnel guacd[24803]: Security mode: Negotiate (ANY)
окт 12 10:03:22 uds-tunnel guacd[24803]: guacd[24803]: INFO: Security mode: Negotiate (ANY)
окт 12 10:03:22 uds-tunnel guacd[24803]: Resize method: display-update
окт 12 10:03:22 uds-tunnel guacd[24803]: guacd[24803]: INFO: Resize method: display-update
окт 12 10:03:22 uds-tunnel guacd[24803]: No clipboard line-ending normalization specified. Defaulting to preserving the format of all line endings.
окт 12 10:03:22 uds-tunnel guacd[24803]: guacd[24803]: INFO: No clipboard line-ending normalization specified. Defaulting to preserving the format of all line endings.
окт 12 10:03:22 uds-tunnel guacd[24803]: User "@b389e5ae-1359-4a5b-ac15-61ae6ac8d8d8" joined connection "$9bb2eabb-7ffe-4831-bb3d-4c220a05d92c" (1 users now present)
окт 12 10:03:22 uds-tunnel guacd[24803]: guacd[24803]: INFO: User "@b389e5ae-1359-4a5b-ac15-61ae6ac8d8d8" joined connection "$9bb2eabb-7ffe-4831-bb3d-4c220a05d92c" (1 users now present)
окт 12 10:03:22 uds-tunnel guacd[24803]: Loading keymap "base"
окт 12 10:03:22 uds-tunnel guacd[24803]: Loading keymap "en-us-qwerty"
окт 12 10:03:23 uds-tunnel guacd[24803]: guacd[24803]: INFO: Loading keymap "base"
окт 12 10:03:23 uds-tunnel guacd[24803]: guacd[24803]: INFO: Loading keymap "en-us-qwerty"
окт 12 10:03:26 uds-tunnel tomcat9[24594]: 10:03:26.507 [https-openssl-apr-8443-exec-3] INFO o.a.g.tunnel.TunnelRequestService - User "" disconnected from connection "UDS". Duration: 3522 milliseconds
окт 12 10:03:26 uds-tunnel guacd[24803]: User "@b389e5ae-1359-4a5b-ac15-61ae6ac8d8d8" disconnected (0 users remain)
окт 12 10:03:26 uds-tunnel guacd[24803]: guacd[24803]: INFO: User "@b389e5ae-1359-4a5b-ac15-61ae6ac8d8d8" disconnected (0 users remain)
окт 12 10:03:26 uds-tunnel guacd[24803]: guacd[24803]: INFO: Last user of connection "$9bb2eabb-7ffe-4831-bb3d-4c220a05d92c" disconnected
окт 12 10:03:26 uds-tunnel guacd[24803]: Last user of connection "$9bb2eabb-7ffe-4831-bb3d-4c220a05d92c" disconnected
окт 12 10:03:26 uds-tunnel guacd[24803]: Internal RDP client disconnected
окт 12 10:03:26 uds-tunnel guacd[24803]: guacd[24803]: INFO: Internal RDP client disconnected
окт 12 10:03:26 uds-tunnel guacd[24579]: Connection "$9bb2eabb-7ffe-4831-bb3d-4c220a05d92c" removed.
окт 12 10:03:26 uds-tunnel guacd[24579]: guacd[24579]: INFO: Connection "$9bb2eabb-7ffe-4831-bb3d-4c220a05d92c" removed.
from openuds.
guacd[25760]: WARNING: Guacamole connection failure: Error filling instruction buffer
guacd[25760]: INFO: User "@62da93df-3b11-465d-bd62-eff8b95b3337" disconnected (0 users remain)
from openuds.
I solved this error. It was Data Leak Prevention system lock RDP in browser
from openuds.
Related Issues (20)
- SPICE protocol and OpenStack HOT 1
- package actor and client HOT 2
- wrong key id HOT 1
- How to generate transport script .signature file ? HOT 1
- Dedicated IP(proxmox VM) doesn't work with Spice HOT 1
- Metapool v3.6 not working HOT 7
- Hello HOT 7
- Superuser password login fails in Access Denied HOT 1
- a weird behavior with client HOT 9
- Error 500: TypeInfo.as_dict() got an unexpected keyword argument 'search_users_supported' HOT 3
- High resolution display issue HOT 5
- Troubles with rdp on Linux client HOT 2
- ugettext* deprecated in Django 4.2.6 HOT 2
- "Invalid private key" running manage.py HOT 4
- Install from git manual proposal ( spanish ) HOT 1
- When pressing "UDS Client" Only Windows UDS Client is shown HOT 2
- Is it possible let the user choose one specific host from pool with PhysicalMachine Service? HOT 1
- Typos in Notes HOT 2
- exception when deserializeForm HOT 4
- AttributeError: 'tuple' object has no attribute 'model' HOT 8
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from openuds.