NX server authenticity at first connection

Forum / NoMachine for Linux / NX server authenticity at first connection

Viewing 2 posts - 1 through 2 (of 2 total)
  • Author
    Posts
  • #50306
    Steve92
    Participant

    Hello,

    With “!M Enterprise Desktop”, at first NX connection to a new server, the following warning is displayed (like a first SSH connection) :

    “The authenticity of the host w.x.y.z cannot be established. The fingerprint of the certificate is: SHA256 5B E5 47 99 C5 21 ….. A6 85 96 22 . Are you sure you want to continue the connection?”

    Q1- Where can I find the fingerprint on the server to check it ?

    NB: this warning is important to avoid MITM, I don’t want to disable it and accept blindly the verification of the server key !

    If I click [Ok], the NX server public key is copied from

    /usr/NX/etc/keys/host/nx_host_rsa_key.crt

    and added, on the client, to this file:

     /home/my_user/.nx/config/hosts.crt

    If I do that manually, I avoid the warning and I’m sure to connect to the authentic server.

    Q2- Could you confirm all is OK with this manual procedure ?

    Thanks,

    Regards,

    Steve.

    #50691
    Britgirl
    Keymaster

    Q1- Where can I find the fingerprint on the server to check it ?

    openssl x509 -noout -sha256 -inform pem -fingerprint -in /usr/NX/etc/keys/host/nx_host_rsa_key.crt

    Q2- Could you confirm all is OK with this manual procedure ?

    Yes, it is a standard procedure to pre-configure client’s hosts.

Viewing 2 posts - 1 through 2 (of 2 total)

You must be logged in to reply to this topic. Please login .