In the middle of POC testing accessing internal servers via RDP, using Clientless VPN and Guacamole. The Clientless VPN and Guacamole side are already set up and working fine.
This is how I would like to see the POC working:
1. External users connect to the Clientless VPN gateway.
2. Enter their 2-Factor-Authentication details (I will be using SecurEnvoy as the 2FA software).
3. Log into the Clientless VPN portal page.
4. Users click on the Guacamole RPD link within the Clientless VPN page and go straight to the list of RDP sessions within Guacamole, instead of logging into the Guacamole admin web page.
Is it possible to bypass the Guacamole web page where you normally enter 'guacadmin', then the password? If not, this means a user will have to login three times ie. first into the 2FA software, then the Clientless VPN page and lastly the Guacamole web page.
I am not sure about bypassing gucamole login page.
Suggesting an alternate ,
as this is POC you can try SAML authentication of SecurEnvoy for global protect client authentication . Configure the SAML in gucamole as well.
Once the client enters the GP clienless VPN and click on the Gucamole link it tends to reuse the existing credentials of clientless VPN to gucamole , so you can bypass the procedure of reentering the credentials.
Thanks for your reply. I have lately been testing with Thinfinity RDP gateway and that works very well. I am curious about SAML on Guacamole so will configure and test that too at some point.
Click Accept as Solution to acknowledge that the answer to your question has been provided.
The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!
These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!
The LIVEcommunity thanks you for your participation!