Apache Guacamole: Can users store their own SSH Private Keys in preconfigured connections?
Posted by Independent_Ad_7238@reddit | sysadmin | View on Reddit | 11 comments
Hi everyone,
I'm setting up Apache Guacamole and I want to preconfigure multiple SSH and RDP connections and assign them to specific groups. However, I want each user to be able to set and store their own SSH private key or credentials without affecting others.
My setup goals:
- Preconfigure SSH connections and assign them to users/groups.
- Users should not modify the shared connection settings.
- Users should be able to store their own private key or credentials for authentication.
What I found so far:
- The Guacamole GUI does not seem to allow per-user credential storage.
- Connection credentials are stored globally, meaning all users share the same settings if stored.
- Users can manually enter credentials when connecting, but they have to do it every time.
Question:
Is there any way to preconfigure SSH connections, assign them to users, and let each user store their own private key or password for authentication?
Thanks and regards,
Dibe
geektogether@reddit
Users have to be admin to make changes to connections. Attached are permissions in guacamole by default
Hoosier_Farmer_@reddit
probably, it looks pretty feature rich -
https://guacamole.apache.org/doc/gug/
Independent_Ad_7238@reddit (OP)
If I understood correctly rtfm meaning, I would say: genius, if you have nothing useful to say, just don’t reply.
lighthawk16@reddit
The answer is literally RTFM, he even linked you to it. Your answer is in that link, genius.
Independent_Ad_7238@reddit (OP)
No, the answer is not in the link. Of course I can duplicate connections by assigning them to each user, but that's not what I asked.
JeanneD4Rk@reddit
Just automate the config file creation and you're done
lighthawk16@reddit
Btw, rtfm is a frequently used term between sysadmin, it's not meant to be derogatory but as soon as someone takes it as such you can see they're not meant for this.
Independent_Ad_7238@reddit (OP)
I had to look up the meaning of the term rtfm and I interpreted it as offensive. I don't like to waste anyone's time, and before posting it is clear that I read the manual
lighthawk16@reddit
Again, in that link look for user-mapping.xml and how you can use it to do what you want in multiple ways even.
lighthawk16@reddit
No one said that's what you asked. Your users can store ssh keys and passwords in preconfigured connections. The answer to the question in your title is at that link.
DazzlingYoghurt8920@reddit
I like to know what you find too.