https://live.paloaltonetworks.com/t5/general-topics/clientless-vpn-and-bypassing-the-guacamole-admin-login-page/m-p/341619#M85682 <P>Hi ,</P><P>I am not sure about bypassing gucamole login page.</P><P>Suggesting an alternate ,</P><P>as this is POC you can try SAML authentication of&nbsp;<SPAN>SecurEnvoy for global protect client authentication . Configure the SAML in gucamole as well.</SPAN></P><P>&nbsp;</P><P><SPAN>Once the client enters the GP clienless VPN and click on the Gucamole link it tends to reuse the existing credentials of clientless VPN to gucamole , so you can bypass the procedure of reentering the credentials.</SPAN></P><P>&nbsp;</P><P><SPAN>Thanks,</SPAN></P><P><SPAN>Ram</SPAN></P> Fri, 31 Jul 2020 16:18:53 GMT RamprakashRT 2020-07-31T16:18:53Z https://live.paloaltonetworks.com/t5/general-topics/clientless-vpn-and-bypassing-the-guacamole-admin-login-page/m-p/338047#M85062 <P>Hi,</P><P>&nbsp;</P><P>In the middle of POC testing accessing internal servers via RDP, using Clientless VPN and Guacamole. The Clientless VPN and Guacamole side are already set up and working fine.</P><P>&nbsp;</P><P>This is how I would like to see the POC working:</P><P>1. External users connect to the Clientless VPN gateway.</P><P>2. Enter their 2-Factor-Authentication details (I will be using SecurEnvoy as the 2FA software).</P><P>3. Log into the Clientless VPN portal page.</P><P>4. Users click on the Guacamole RPD link within the Clientless VPN page and go straight to the list of RDP sessions within Guacamole, instead of logging into the Guacamole admin web page.</P><P>&nbsp;</P><P>Is it possible to bypass the Guacamole web page where you normally enter 'guacadmin', then the password? If not, this means a user will have to login three times ie. first into the 2FA software, then the Clientless VPN page and lastly the Guacamole web page.</P><P>&nbsp;</P><P>Many thanks.</P><P>Roberto</P> Mon, 13 Jul 2020 10:02:54 GMT https://live.paloaltonetworks.com/t5/general-topics/clientless-vpn-and-bypassing-the-guacamole-admin-login-page/m-p/338047#M85062 rchung54 2020-07-13T10:02:54Z https://live.paloaltonetworks.com/t5/general-topics/clientless-vpn-and-bypassing-the-guacamole-admin-login-page/m-p/341619#M85682 <P>Hi ,</P><P>I am not sure about bypassing gucamole login page.</P><P>Suggesting an alternate ,</P><P>as this is POC you can try SAML authentication of&nbsp;<SPAN>SecurEnvoy for global protect client authentication . Configure the SAML in gucamole as well.</SPAN></P><P>&nbsp;</P><P><SPAN>Once the client enters the GP clienless VPN and click on the Gucamole link it tends to reuse the existing credentials of clientless VPN to gucamole , so you can bypass the procedure of reentering the credentials.</SPAN></P><P>&nbsp;</P><P><SPAN>Thanks,</SPAN></P><P><SPAN>Ram</SPAN></P> Fri, 31 Jul 2020 16:18:53 GMT https://live.paloaltonetworks.com/t5/general-topics/clientless-vpn-and-bypassing-the-guacamole-admin-login-page/m-p/341619#M85682 RamprakashRT 2020-07-31T16:18:53Z https://live.paloaltonetworks.com/t5/general-topics/clientless-vpn-and-bypassing-the-guacamole-admin-login-page/m-p/343234#M85939 <P><a href="https://live.paloaltonetworks.com/t5/user/viewprofilepage/user-id/148784">@RamprakashRT</a>&nbsp;</P><P>&nbsp;</P><P>Thanks for your reply. I have lately been testing with Thinfinity RDP gateway and that works very well. I am curious about SAML on Guacamole so will configure and test that too at some point.</P> Tue, 11 Aug 2020 10:13:30 GMT https://live.paloaltonetworks.com/t5/general-topics/clientless-vpn-and-bypassing-the-guacamole-admin-login-page/m-p/343234#M85939 rchung54 2020-08-11T10:13:30Z