[
https://issues.apache.org/jira/browse/GUACAMOLE-2057?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=17950530#comment-17950530
]
Axel D'Olislager edited comment on GUACAMOLE-2057 at 5/9/25 2:12 PM:
---------------------------------------------------------------------
[~vnick] upon configuring your build I can only see guacamole trying to use
freerdp2 instead of freerdp3, which does not support the kerberos
authentication yet. I believe you have forked the 1.5.5 version instead of the
1.6 branch version, is that correct?
!image-2025-05-09-15-15-00-772.png!
for the client side I am unable to build the package because of issues in the
POM files:
{code:java}
mvn package
[INFO] Scanning for projects...
[ERROR] [ERROR] Some problems were encountered while processing the POMs:
[FATAL] Non-resolvable parent POM for
org.apache.guacamole:guacamole-auth-ban:1.5.4: The following artifacts could
not be resolved: org.apache.guacamole:extensions:pom:1.5.4 (absent):
org.apache.guacamole:extensions:pom:1.5.4 was not found in
https://repo.maven.apache.org/maven2 during a previous attempt. This failure
was cached in the local repository and resolution is not reattempted until the
update interval of central has elapsed or updates are forced and
'parent.relativePath' points at wrong local POM @ line 33, column 13
[FATAL] Non-resolvable parent POM for
org.apache.guacamole:guacamole-auth-sso-ssl:1.5.4: The following artifacts
could not be resolved: org.apache.guacamole:guacamole-auth-sso:pom:1.5.4
(absent): org.apache.guacamole:guacamole-auth-sso:pom:1.5.4 was not found in
https://repo.maven.apache.org/maven2 during a previous attempt. This failure
was cached in the local repository and resolution is not reattempted until the
update interval of central has elapsed or updates are forced and
'parent.relativePath' points at wrong local POM @ line 33, column 13
[FATAL] Non-resolvable parent POM for
org.apache.guacamole:guacamole-display-statistics:1.5.4: The following
artifacts could not be resolved: org.apache.guacamole:extensions:pom:1.5.4
(absent): org.apache.guacamole:extensions:pom:1.5.4 was not found in
https://repo.maven.apache.org/maven2 during a previous attempt. This failure
was cached in the local repository and resolution is not reattempted until the
update interval of central has elapsed or updates are forced and
'parent.relativePath' points at wrong local POM @ line 33, column 13
@
[ERROR] The build could not read 3 projects -> [Help 1]
[ERROR]
[ERROR] The project org.apache.guacamole:guacamole-auth-ban:1.5.4
(/home/axeldolislager/guacamole-kerberos/guacamole-client/extensions/guacamole-auth-ban/pom.xml)
has 1 error
[ERROR] Non-resolvable parent POM for
org.apache.guacamole:guacamole-auth-ban:1.5.4: The following artifacts could
not be resolved: org.apache.guacamole:extensions:pom:1.5.4 (absent):
org.apache.guacamole:extensions:pom:1.5.4 was not found in
https://repo.maven.apache.org/maven2 during a previous attempt. This failure
was cached in the local repository and resolution is not reattempted until the
update interval of central has elapsed or updates are forced and
'parent.relativePath' points at wrong local POM @ line 33, column 13 -> [Help 2]
[ERROR]
[ERROR] The project org.apache.guacamole:guacamole-auth-sso-ssl:1.5.4
(/home/axeldolislager/guacamole-kerberos/guacamole-client/extensions/guacamole-auth-sso/modules/guacamole-auth-sso-ssl/pom.xml)
has 1 error
[ERROR] Non-resolvable parent POM for
org.apache.guacamole:guacamole-auth-sso-ssl:1.5.4: The following artifacts
could not be resolved: org.apache.guacamole:guacamole-auth-sso:pom:1.5.4
(absent): org.apache.guacamole:guacamole-auth-sso:pom:1.5.4 was not found in
https://repo.maven.apache.org/maven2 during a previous attempt. This failure
was cached in the local repository and resolution is not reattempted until the
update interval of central has elapsed or updates are forced and
'parent.relativePath' points at wrong local POM @ line 33, column 13 -> [Help 2]
[ERROR]
[ERROR] The project org.apache.guacamole:guacamole-display-statistics:1.5.4
(/home/axeldolislager/guacamole-kerberos/guacamole-client/extensions/guacamole-display-statistics/pom.xml)
has 1 error
[ERROR] Non-resolvable parent POM for
org.apache.guacamole:guacamole-display-statistics:1.5.4: The following
artifacts could not be resolved: org.apache.guacamole:extensions:pom:1.5.4
(absent): org.apache.guacamole:extensions:pom:1.5.4 was not found in
https://repo.maven.apache.org/maven2 during a previous attempt. This failure
was cached in the local repository and resolution is not reattempted until the
update interval of central has elapsed or updates are forced and
'parent.relativePath' points at wrong local POM @ line 33, column 13 -> [Help 2]
[ERROR]
[ERROR] To see the full stack trace of the errors, re-run Maven with the -e
switch.
[ERROR] Re-run Maven using the -X switch to enable full debug logging.
[ERROR]
[ERROR] For more information about the errors and possible solutions, please
read the following articles:
[ERROR] [Help 1]
http://cwiki.apache.org/confluence/display/MAVEN/ProjectBuildingException
[ERROR] [Help 2]
http://cwiki.apache.org/confluence/display/MAVEN/UnresolvableModelException
[axeldolislager@besnlexdoc01 guacamole-client]${code}{code}
was (Author: JIRAUSER309459):
[~vnick] upon configuring your build I can only see guacamole trying to use
freerdp2 instead of freerdp3, which does not support the kerberos
authentication yet. I believe you have forked the 1.5.5 version instead of the
1.6 branch version, is that correct?
!image-2025-05-09-15-15-00-772.png!
for the client side I am unable to build the package because of issues in the
POM files:
{code:java}
mvn package
[INFO] Scanning for projects...
[ERROR] [ERROR] Some problems were encountered while processing the POMs:
[FATAL] Non-resolvable parent POM for
org.apache.guacamole:guacamole-auth-ban:1.5.4: The following artifacts could
not be resolved: org.apache.guacamole:extensions:pom:1.5.4 (absent):
org.apache.guacamole:extensions:pom:1.5.4 was not found in
https://repo.maven.apache.org/maven2 during a previous attempt. This failure
was cached in the local repository and resolution is not reattempted until the
update interval of central has elapsed or updates are forced and
'parent.relativePath' points at wrong local POM @ line 33, column 13
[FATAL] Non-resolvable parent POM for
org.apache.guacamole:guacamole-auth-sso-ssl:1.5.4: The following artifacts
could not be resolved: org.apache.guacamole:guacamole-auth-sso:pom:1.5.4
(absent): org.apache.guacamole:guacamole-auth-sso:pom:1.5.4 was not found in
https://repo.maven.apache.org/maven2 during a previous attempt. This failure
was cached in the local repository and resolution is not reattempted until the
update interval of central has elapsed or updates are forced and
'parent.relativePath' points at wrong local POM @ line 33, column 13
[FATAL] Non-resolvable parent POM for
org.apache.guacamole:guacamole-display-statistics:1.5.4: The following
artifacts could not be resolved: org.apache.guacamole:extensions:pom:1.5.4
(absent): org.apache.guacamole:extensions:pom:1.5.4 was not found in
https://repo.maven.apache.org/maven2 during a previous attempt. This failure
was cached in the local repository and resolution is not reattempted until the
update interval of central has elapsed or updates are forced and
'parent.relativePath' points at wrong local POM @ line 33, column 13
@
[ERROR] The build could not read 3 projects -> [Help 1]
[ERROR]
[ERROR] The project org.apache.guacamole:guacamole-auth-ban:1.5.4
(/home/axeldolislager/guacamole-kerberos/guacamole-client/extensions/guacamole-auth-ban/pom.xml)
has 1 error
[ERROR] Non-resolvable parent POM for
org.apache.guacamole:guacamole-auth-ban:1.5.4: The following artifacts could
not be resolved: org.apache.guacamole:extensions:pom:1.5.4 (absent):
org.apache.guacamole:extensions:pom:1.5.4 was not found in
https://repo.maven.apache.org/maven2 during a previous attempt. This failure
was cached in the local repository and resolution is not reattempted until the
update interval of central has elapsed or updates are forced and
'parent.relativePath' points at wrong local POM @ line 33, column 13 -> [Help 2]
[ERROR]
[ERROR] The project org.apache.guacamole:guacamole-auth-sso-ssl:1.5.4
(/home/axeldolislager/guacamole-kerberos/guacamole-client/extensions/guacamole-auth-sso/modules/guacamole-auth-sso-ssl/pom.xml)
has 1 error
[ERROR] Non-resolvable parent POM for
org.apache.guacamole:guacamole-auth-sso-ssl:1.5.4: The following artifacts
could not be resolved: org.apache.guacamole:guacamole-auth-sso:pom:1.5.4
(absent): org.apache.guacamole:guacamole-auth-sso:pom:1.5.4 was not found in
https://repo.maven.apache.org/maven2 during a previous attempt. This failure
was cached in the local repository and resolution is not reattempted until the
update interval of central has elapsed or updates are forced and
'parent.relativePath' points at wrong local POM @ line 33, column 13 -> [Help 2]
[ERROR]
[ERROR] The project org.apache.guacamole:guacamole-display-statistics:1.5.4
(/home/axeldolislager/guacamole-kerberos/guacamole-client/extensions/guacamole-display-statistics/pom.xml)
has 1 error
[ERROR] Non-resolvable parent POM for
org.apache.guacamole:guacamole-display-statistics:1.5.4: The following
artifacts could not be resolved: org.apache.guacamole:extensions:pom:1.5.4
(absent): org.apache.guacamole:extensions:pom:1.5.4 was not found in
https://repo.maven.apache.org/maven2 during a previous attempt. This failure
was cached in the local repository and resolution is not reattempted until the
update interval of central has elapsed or updates are forced and
'parent.relativePath' points at wrong local POM @ line 33, column 13 -> [Help 2]
[ERROR]
[ERROR] To see the full stack trace of the errors, re-run Maven with the -e
switch.
[ERROR] Re-run Maven using the -X switch to enable full debug logging.
[ERROR]
[ERROR] For more information about the errors and possible solutions, please
read the following articles:
[ERROR] [Help 1]
http://cwiki.apache.org/confluence/display/MAVEN/ProjectBuildingException
[ERROR] [Help 2]
http://cwiki.apache.org/confluence/display/MAVEN/UnresolvableModelException
[axeldolislager@besnlexdoc01 guacamole-client]${code}
> Allow RDP connections to leverage FreeRDP3 Kerberos Security
> ------------------------------------------------------------
>
> Key: GUACAMOLE-2057
> URL: https://issues.apache.org/jira/browse/GUACAMOLE-2057
> Project: Guacamole
> Issue Type: New Feature
> Components: RDP
> Reporter: Axel D'Olislager
> Assignee: Nick Couchman
> Priority: Major
> Labels: security
> Attachments: image-2025-05-09-15-15-00-772.png
>
>
> Since in Guacamole 1.6.0 there will be support for FreeRDP3.0, there is
> currently no way to make use of the new kerberos authentication functionality
> within FreeRDP.
>
> As per deprication of NTLM and security issues the demand for it is becoming
> reasonably high, as in a Active Directory domain, your users cannot be part
> of the Protected Users security group which blocks legacy protocols.
> [https://www.reddit.com/r/sysadmin/comments/1b5o6kx/apache_guacamole_kerberos_support_or_roadmap_for/]
>
> I've personally been playing around with this.
> Manually I am able to create a connection using the FreeRDP package using the
> following command and modifying my krb5.conf file:
> {code:java}
> xfreerdp /auth-pkg-list:'!ntlm,kerberos' /u:<username> /v:<host_ip>
> /d:<domainname> /cert:ignore{code}
>
> krb5.conf:
> {code:java}
> includedir /etc/krb5.conf.d/
> [logging]
> default = FILE:/var/log/krb5libs.log
> kdc = FILE:/var/log/krb5kdc.log
> admin_server = FILE:/var/log/kadmind.log
> [libdefaults]
> default_realm = LEXAPHIX.LAB
> dns_lookup_realm = false
> dns_lookup_kdc = true
> ticket_lifetime = 24h
> renew_lifetime = 7d
> forwardable = true
> rdns = false
> [realms]
> LEXAPHIX.LAB = {
> kdc = besnlexdc03.lexaphix.lab
> admin_server = besnlexdc03.lexaphix.lab
> }[domain_realm]
> .lexaphix.lab = LEXAPHIX.LAB
> lexaphix.lab = LEXAPHIX.LAB{code}
>
>
> I've been trying to get this to work, but because I do not have the knowledge
> of this code base, I'm unable to add these things.
--
This message was sent by Atlassian Jira
(v8.20.10#820010)
