guacamole-user mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Alberto Vivaldi <aviva...@noc.skylogicnet.com>
Subject LDAP + MYSQL help
Date Wed, 22 Jun 2016 10:48:16 GMT
Good morning everyone.

I made a fresh installation of guacamole 0.9.9 following the official 
documentation, with both LDAP and MYSQL extensions. When i made a login 
i saw on the ldap logs the connection incoming from the guacamole 
server, but not allways the systems allows me to login.

My configuration follows:

cat /etc/guacamole/guacamole.properties
guacd-hostname: localhost
guacd-port: 4822


# Ldap properties

ldap-hostname:           xxxxx
ldap-port:               636
ldap-user-base-dn:       cn=guacamole,ou=Groups,dc=sld,dc=tld
ldap-username-attribute: memberUid
#ldap-config-base-dn:     cn=guacamole,ou=Groups,dc=sld,dc=tld
ldap-encryption-method:    ssl


ldap search correctly give me the users:

ldapsearch -x -h server -LLL -b"cn=guacamole,ou=Groups,dc=sld,dc=tld" 
"memberUid"
dn: cn=guacamole,ou=Groups,dc=sld,dc=tld
memberUid: guacadmin
memberUid: avivaldi




# MySQL properties
mysql-hostname: localhost
mysql-port: 3306
mysql-database: guacamoleAuthDB
mysql-username: guacamoleuser
mysql-password: xxxxxxx

# Additional settings
mysql-default-max-connections-per-user: 0
mysql-default-max-group-connections-per-user: 0


my mysql query:


mysql -u guacamoleuser -p guacamoleAuthDB -e'select * from guacamole_user;'
Enter password:
+---------+-------------+----------------------------------+----------------------------------+----------+---------+---------------------+-------------------+------------+-------------+----------+
| user_id | username    | password_hash                    | 
password_salt                    | disabled | expired | 
access_window_start | access_window_end | valid_from | valid_until | 
timezone |
+---------+-------------+----------------------------------+----------------------------------+----------+---------+---------------------+-------------------+------------+-------------+----------+
|       1 | guacadmin   | 
�E�}IN;�$���u�Ul��,-}�c;�J)�A`             | 
�$���+%(���zy�B��`d�iųw��"d               |        0 |    
  0 | 
NULL                | NULL              | NULL       | NULL        | 
NULL     |
|       4 | avivaldi    | i�7����hgTU�Od�?G�p+�N
E0�y>\E           | )���E#�yz�Rk�� �Ke7��m��� |     
  0 |       0 
| NULL                | NULL              | NULL       | NULL        | 
NULL     |
+---------+-------------+----------------------------------+----------------------------------+----------+---------+---------------------+-------------------+------------+-------------+----------+


A tipical messages from my guacamole server is the following:


Jun 21 12:57:37 server: 12:57:37.243 [http-bio-8080-exec-10] WARN 
o.g.g.n.b.r.a.AuthenticationService - Authentication attempt from ip for 
user "avivaldi" failed.
Jun 21 12:58:04 server: 12:58:04.728 [http-bio-8080-exec-6] WARN 
o.g.g.n.b.r.a.AuthenticationService - Authentication attempt from ip for 
user "avivaldi" failed.
Jun 21 12:58:06 server: 12:58:06.707 [http-bio-8080-exec-6] WARN 
o.g.g.n.b.r.a.AuthenticationService - Authentication attempt from ip for 
user "avivaldi" failed.
Jun 21 12:58:12 server: 12:58:12.965 [http-bio-8080-exec-6] INFO 
o.g.g.n.b.r.a.AuthenticationService - User "avivaldi" successfully 
authenticated from ip.



with same username and same password, in some cases i obtain successful 
login and in other no clue.



Can someone help me to solve this issue?

Regards


-- 
Alberto Vivaldi


Mime
View raw message