Cato

Forum Replies Created

Viewing 15 posts - 1 through 15 (of 154 total)
  • Author
    Posts
  • in reply to: SSH key auth and google MFA #44896
    Cato
    Participant

    Hello mcxmar,

    With NX protocol it’s only possible to perform PAM-based two-factor authentication. This means that you can only combine authentication methods supported by PAM modules, usually password + authentication code. Here is an article providing examples of two-factor configuration for NX protocol: https://kb.nomachine.com/AR12L00828

    in reply to: Authentication failed ”Wrong password or login’ #44839
    Cato
    Participant

    Hi,

    Please uncomment and set the following key in <NoMachine_install_dir>/etc/server.cfg file on your server host:
    #AuthorizationTimeout 30

    Value represents authentication timeout in seconds. Increase this value to 200 and see if this allows you to start NoMachine session. Sadly, this won’t fix the large delay itself.

    in reply to: Authentication failed ”Wrong password or login’ #44833
    Cato
    Participant

    Hello jason.rieg,

    Start terminal as user your want to authenticate on your server host, cd to <nomachine_install_dir>/bin and run ./nxexec –auth.
    Provide username and password as asked for. What’s the command’s output? Does execution take more than 30 seconds?

    in reply to: Can’t start service on reset laptop #41760
    Cato
    Participant

    Logs indicate that nxlsa module was already installed when you attempted to install NoMachine 8.2.3. Please, perform full reinstallation of NoMachine with all necessary reboots. One reboot after uninstallation and one reboot after fresh installation. Does it help?

    in reply to: Can’t start service on reset laptop #41744
    Cato
    Participant

    To investigate further we need logs, please follow these instructions explaining logs gathering procedure:

    Collect server side logs automatically
    https://kb.nomachine.com/DT07S00243

    Send logs to forum[at]nomachine[dot]com, referencing the topic in the email subject.

    in reply to: Can’t start service on reset laptop #41719
    Cato
    Participant

    Hi,

    What’s the output of ‘net user nx’ ran from cmd started as Administrator?

    in reply to: Can’t start service on reset laptop #41684
    Cato
    Participant

    Hello Will,

    Does rebooting the system help? What’s the output of <NoMachine>/bin/nxserver.exe –status ran from cmd? Does ProgramData/NoMachine/var/log/nxtrace.log exist, if so, what’s the content of this file?

    in reply to: NX Linux-SSSD-AD Issues with NFS4-Kerberos Home Dir #41529
    Cato
    Participant

    Hi,

    Yes, ‘no_root_squash’ is an export option. What I meant is to mount directory exported with ‘no_root_squash’. It seems that you figured that out for yourself 🙂 Did it help?

    in reply to: Username and password question #41419
    Cato
    Participant

    Hello RSeJU17Cc4ch,

    If your email address is a Microsoft account name NoMachine should work fine with it. The problem might be 2FA. How exactly is this implemented? Is this Microsoft’s 2FA or some third party extension to Windows’ authentication? Can you create local account on your host and see if it’s possible to authenticate with just password?

    in reply to: NX Linux-SSSD-AD Issues with NFS4-Kerberos Home Dir #41005
    Cato
    Participant

    Hello,

    Sorry for late reply. Can you check if mounting user’s home directory with no_root_squash option helps?

    in reply to: Installation for Active Directory/work-managed machines #40947
    Cato
    Participant

    Hi,

    Logs show that ‘nx’ account creation succeeds, but it’s not possible to correctly load user’s profile. It might be due to the aforementioned system administrator restrictions. Other possible cause is corruption of default user profile on your host.You can try to create a few user accounts and check if it’s possible to login on their desktops. If you experience any problems, please refer to this Stack Overflow thread:

    https://superuser.com/questions/947398/cant-login-with-new-local-users-in-windows-10

    in reply to: Installation for Active Directory/work-managed machines #40863
    Cato
    Participant

    Hello andowt,

    You mentioned Active Directory SSO, do you mean Azure AD SSO? Error message ‘cannot create home directory of nx user’ suggests that something went wrong during nx account setup. Perhaps the system administrator imposed restrictions preventing normal user from new account creations. To investigate further we need logs, please follow these instructions explaining logs gathering procedure:

    Collect server side logs automatically
    https://kb.nomachine.com/DT07S00243

    Send logs to forum[at]nomachine[dot]com, referencing the topic in the email subject.

    in reply to: NX Linux-SSSD-AD Issues with NFS4-Kerberos Home Dir #40556
    Cato
    Participant

    Setting EnableNXKerberosAuthentication to 1 should suffice.

    in reply to: NX Linux-SSSD-AD Issues with NFS4-Kerberos Home Dir #40284
    Cato
    Participant

    Hello fractal-admin,

    When krb5 option is used, process accessing mounted directories need to have valid Kerberos credentials. This means that you either need to connect using Kerberos authentication with ‘Forward authentication’ enabled or password authentication with PAM stack for NX procotol configured so that it correctly obtains Kerberos ticket during authentication. The second option only works with virtual desktops.

    Cato
    Participant

    NoMachine allows administrative operations to be performed on Linux only by root account or by demonstrating administrative privileges by being able to ‘sudo su’.

Viewing 15 posts - 1 through 15 (of 154 total)