- This topic has 2 replies, 2 voices, and was last updated 1 week ago by
.
-
Posts
-
Greetings,
I’m doing a demo on NoMachine Enterprise Desktop 9.3.7-1 server on Ubuntu 20. My client is the same version on Windows 11. I’m successfully able to connect client to server and can login with password using SSH with pubkey. However, in my network we’re required to use smartcard to login to desktop. I’ve configured USB and SmartCard to connect on attachment, but it only actually connects after I successfully authenticate to gdm. What I need is for either/or both USB and SmartCard to connect as soon as the display is open so that I can authenticate using SmartCard on gdm.
I’ve enabled all the USB and smartcard values I can find in server.cfg and node.cfg without success. I see this in my logs:
EXECVE argc=3 a0=”/usr/NX/bin/nxexec” a1=”–adminauth” a2=”foo”
This could be a red herring. Is what I want to do possible? If someone has solved this I’d be happy if you pointed me to the solution.Thanks
-Bob
Hi Bob,
there is a known issue with forwarding USB device when the user is not logged on to the desktop on the server side. You can use the following link to track its status: https://kb.nomachine.com/TR05U10850. The current workaround, which I understand can be awkward, is to make sure that the user has not been logged out.
Unfortunately leaving them logged in is not a good solution. When I was able to authenticate with SSH and pubkeys to open a connection to nomachine server I had hope, but then it asked me to logon at the DT. Once I’m in on the DT the USB mounts just fine, but the idea is that a user can export their yubikey to nomachine and then login with MFA. I do know this sort of works, when I’m logged into the DT and my yubikey is remotely mounted, I can lock the DT and log back in again with my PIN.
The ticket you provided doesn’t look like it’s to provide this feature, it looks like there may be a bug, which I haven’t encountered yet.
Regards
-Bob
You must be logged in to reply to this topic. Please login here.