opoplawski

Forum Replies Created

Viewing 9 posts - 1 through 9 (of 9 total)
  • Author
    Posts
  • in reply to: List session details – idle time #47973
    opoplawski
    Participant

    Thank you for the links, we will likely use the DisconnectedSessionExpiry option for now. However, the nice thing about being able to query the idle time with [removed] is that it allows us to send an email to the user some time in advance (currently 24 hours I think) to warn them that the session will be terminated soon.

    in reply to: List session details – idle time #47925
    opoplawski
    Participant

    I define idle time as the time since the user last disconnected from the session.  For comparison  (removed)
    contains a field that is the time of the last disconnect (really I think the time of the last status changed – e.g. connected -> disconnected, disconnected -> connected). This allows us to terminate sessions that have been disconnected for a period of time. I’m not interested in the time from the start of the session.

    opoplawski
    Participant

    This is a YubiKey – so yes a USB device. Generally manually sharing the smartcard reader works just fine, though a current test of reconnecting to an old session with a rebooted client fails. PKCS11 operations seem to hang. I see the following repeated in the strace of p11tool –list-token-urls:

    sendto(6, “NXCLIENT-4.0.0 cookie=AD2186647C3824FF8D0ACD921D66B992,command=set,target=local,option=smartcard,value=:1004:3319770 “, 117, 0, NULL, 0) = 117
    recvfrom(6, “NXAGENT-8.11.3 “, 10240, 0, NULL, NULL) = 15
    recvfrom(6, “error=0,value=retry “, 10225, 0, NULL, NULL) = 20

    The YK device is not listed in the “Connect a USB device” menu, probably because it is already in use by the client machine. Unless the USB device could be used simultaneously by both machines (which seems doubtful), this would no be helpful to us because both the client and the remote session would need access to the smart card.

    in reply to: List session details – idle time #47908
    opoplawski
    Participant

    It doesn’t seem to:

    /usr/NX/bin/nxserver --history E59DF9025B6873A04F627F5845A4E155 --verbose

    Display Type Session ID Services Depth Screensize Status Session name Username Platform Users Date

    The date seems to just be the date started, but it doesn’t seem to show the date/time of the last disconnect or an idle counter.

    in reply to: How to disable password storing in the client? #47796
    opoplawski
    Participant

    Ah, I guess in the future I will have to pay very close attention to what version of NoMachine the documentation is for. Looks like that name changed between 7 and 8. Thanks.

    in reply to: How to disable password storing in the client? #47778
    opoplawski
    Participant

    Your responses make me think that my issue is not being understood. I never mentioned nor modified player.cfg. I have restarted nxserver. I want the client to always request the credentials, I don’t want the client to offer to save the credentials. Client and server is AlmaLinux 8.9. I’ll send the config files.

    opoplawski
    Participant

    Actually, looks like you should use the systemd interface:

    systemd_unit_file(nx_unit_file_t)

    in reply to: How to disable password storing in the client? #47739
    opoplawski
    Participant

    I’m using nomachine 8.11.3-4 on the client and server.
    When I say client I’m referring to the device I’m connecting from. I really don’t see how the server (remote side) is in play here as the prompt to store the password comes before I’m connected. In any chase I’ve added EnableCredentialsStoring none to both machines with no change in the ability to save passwords.

    in reply to: How to disable password storing in the client? #47726
    opoplawski
    Participant

    That key didn’t exist in /usr/NX/etc/server.cfg on my client, so I added it.  Restart nxserver.  But when I launch nxplayer I can still have it save my password for a connection to a remote host:

    and it is saved and I’m not prompted for it anymore.

Viewing 9 posts - 1 through 9 (of 9 total)