search

Ylianst / MeshCentral

A complete web-based remote monitoring and management web site. Once setup you can install agents and perform remote desktop session to devices on the local network or over the Internet.
https://meshcentral.com
Apache License 2.0
3.99k stars 537 forks source link

RDP Connect to GNOME Debian 12 doesn't work #6384

Open guerby opened 4 days ago

guerby commented 4 days ago

Hi,

When I try to RDP connect from meshcentral 1.1.29 to a debian 12 machine running GNOME 1:43+1 I'm asked for login/pass then the connection instantly fails.

When I try to RDP to the same linux machine from a windows machine it works.

I will provide in the next comment the syslog from gnome-remote-desktop-daemon showing an error.

guerby commented 4 days ago

/var/log/syslog on the debian GNOME machine:

2024-09-14T09:49:38.194069+02:00 debian12 gnome-remote-desktop-daemon[1917]: [09:49:38:270] [1917:1447904] [WARN][com.winpr.negotiate] - AcceptSecurityContext status SEC_I_CONTINUE_NEEDED [0x00090312]
2024-09-14T09:49:38.238769+02:00 debian12 gnome-remote-desktop-daemon[1917]: [09:49:38:315] [1917:1447904] [WARN][com.winpr.negotiate] - AcceptSecurityContext status SEC_I_COMPLETE_NEEDED [0x00090313]
2024-09-14T09:49:38.286735+02:00 debian12 gnome-remote-desktop-daemon[1917]: 917:1447255] [INFO][com.freerdp.core.connection] - Negotiated Security: NLA:1 TLS:0 RDP:0
2024-09-14T09:49:38.286824+02:00 debian12 gnome-remote-desktop-daemon[1917]: [09:37:47:935] [1917:1447255] [INFO][com.freerdp.core.connection] - Accepted client: lgdell
2024-09-14T09:49:38.286860+02:00 debian12 gnome-remote-desktop-daemon[1917]: [09:37:47:935] [1917:1447255] [INFO][com.freerdp.core.connection] - Accepted channels:
2024-09-14T09:49:38.286890+02:00 debian12 gnome-remote-desktop-daemon[1917]: [09:37:47:935] [1917:1447255] [INFO][com.freerdp.core.gcc] - Active rdp encryption level: NONE
2024-09-14T09:49:38.286920+02:00 debian12 gnome-remote-desktop-daemon[1917]: [09:37:47:935] [1917:1447255] [INFO][com.freerdp.core.gcc] - Selected rdp encryption method: NONE
2024-09-14T09:49:38.286949+02:00 debian12 gnome-remote-desktop-daemon[1917]: [09:40:17:019] [1917:1447403] [INFO][com.freerdp.core.connection] - Client Security: NLA:1 TLS:1 RDP:0
2024-09-14T09:49:38.286978+02:00 debian12 gnome-remote-desktop-daemon[1917]: [09:40:17:019] [1917:1447403] [INFO][com.freerdp.core.connection] - Server Security: NLA:1 TLS:0 RDP:0
2024-09-14T09:49:38.287007+02:00 debian12 gnome-remote-desktop-daemon[1917]: [09:40:17:019] [1917:1447403] [INFO][com.freerdp.core.connection] - Negotiated Security: NLA:1 TLS:0 RDP:0
2024-09-14T09:49:38.287039+02:00 debian12 gnome-remote-desktop-daemon[1917]: [09:41:20:066] [1917:1447480] [INFO][com.freerdp.core.connection] - Client Security: NLA:1 TLS:1 RDP:0
2024-09-14T09:49:38.287069+02:00 debian12 gnome-remote-desktop-daemon[1917]: [09:41:20:066] [1917:1447480] [INFO][com.freerdp.core.connection] - Server Security: NLA:1 TLS:0 RDP:0
2024-09-14T09:49:38.287108+02:00 debian12 gnome-remote-desktop-daemon[1917]: [09:41:20:066] [1917:1447480] [INFO][com.freerdp.core.connection] - Negotiated Security: NLA:1 TLS:0 RDP:0
2024-09-14T09:49:38.287137+02:00 debian12 gnome-remote-desktop-daemon[1917]: [09:41:21:084] [1917:1447480] [INFO][com.freerdp.core.connection] - Accepted client: TESTWIN01
2024-09-14T09:49:38.287171+02:00 debian12 gnome-remote-desktop-daemon[1917]: [09:41:21:084] [1917:1447480] [INFO][com.freerdp.core.connection] - Accepted channels:
2024-09-14T09:49:38.287200+02:00 debian12 gnome-remote-desktop-daemon[1917]: [09:41:21:084] [1917:1447480] [INFO][com.freerdp.core.connection] -  rdpdr
2024-09-14T09:49:38.287229+02:00 debian12 gnome-remote-desktop-daemon[1917]: [09:41:21:084] [1917:1447480] [INFO][com.freerdp.core.connection] -  rdpsnd
2024-09-14T09:49:38.287259+02:00 debian12 gnome-remote-desktop-daemon[1917]: [09:41:21:084] [1917:1447480] [INFO][com.freerdp.core.connection] -  cliprdr
2024-09-14T09:49:38.287288+02:00 debian12 gnome-remote-desktop-daemon[1917]: [09:41:21:084] [1917:1447480] [INFO][com.freerdp.core.connection] -  drdynvc
2024-09-14T09:49:38.287320+02:00 debian12 gnome-remote-desktop-daemon[1917]: [09:41:21:084] [1917:1447480] [INFO][com.freerdp.core.gcc] - Active rdp encryption level: NONE
2024-09-14T09:49:38.287354+02:00 debian12 gnome-remote-desktop-daemon[1917]: [09:41:21:084] [1917:1447480] [INFO][com.freerdp.core.gcc] - Selected rdp encryption method: NONE
2024-09-14T09:49:38.287383+02:00 debian12 gnome-remote-desktop-daemon[1917]: [09:42:28:390] [1917:1447556] [INFO][com.freerdp.core.connection] - Client Security: NLA:1 TLS:1 RDP:0
2024-09-14T09:49:38.287412+02:00 debian12 gnome-remote-desktop-daemon[1917]: [09:42:28:390] [1917:1447556] [INFO][com.freerdp.core.connection] - Server Security: NLA:1 TLS:0 RDP:0
2024-09-14T09:49:38.287453+02:00 debian12 gnome-remote-desktop-daemon[1917]: [09:42:28:390] [1917:1447556] [INFO][com.freerdp.core.connection] - Negotiated Security: NLA:1 TLS:0 RDP:0
2024-09-14T09:49:38.287485+02:00 debian12 gnome-remote-desktop-daemon[1917]: [09:42:28:517] [1917:1447556] [INFO][com.freerdp.core.connection] - Accepted client: node-rdpjs
2024-09-14T09:49:38.287514+02:00 debian12 gnome-remote-desktop-daemon[1917]: [09:42:28:517] [1917:1447556] [INFO][com.freerdp.core.connection] - Accepted channels:
2024-09-14T09:49:38.287542+02:00 debian12 gnome-remote-desktop-daemon[1917]: [09:42:28:517] [1917:1447556] [INFO][com.freerdp.core.connection] -  rdpdr
2024-09-14T09:49:38.287571+02:00 debian12 gnome-remote-desktop-daemon[1917]: [09:42:28:517] [1917:1447556] [INFO][com.freerdp.core.connection] -  cliprdr
2024-09-14T09:49:38.287600+02:00 debian12 gnome-remote-desktop-daemon[1917]: [09:42:28:517] [1917:1447556] [INFO][com.freerdp.core.connection] -  rdpsnd
2024-09-14T09:49:38.287629+02:00 debian12 gnome-remote-desktop-daemon[1917]: [09:42:28:517] [1917:1447556] [INFO][com.freerdp.core.gcc] - Active rdp encryption level: NONE
2024-09-14T09:49:38.287664+02:00 debian12 gnome-remote-desktop-daemon[1917]: [09:42:28:517] [1917:1447556] [INFO][com.freerdp.core.gcc] - Selected rdp encryption method: NONE
2024-09-14T09:49:38.287694+02:00 debian12 gnome-remote-desktop-daemon[1917]: [09:44:14:206] [1917:1447630] [INFO][com.freerdp.core.connection] - Client Security: NLA:1 TLS:1 RDP:0
2024-09-14T09:49:38.287723+02:00 debian12 gnome-remote-desktop-daemon[1917]: [09:44:14:206] [1917:1447630] [INFO][com.freerdp.core.connection] - Server Security: NLA:1 TLS:0 RDP:0
2024-09-14T09:49:38.287752+02:00 debian12 gnome-remote-desktop-daemon[1917]: [09:44:14:206] [1917:1447630] [INFO][com.freerdp.core.connection] - Negotiated Security: NLA:1 TLS:0 RDP:0
2024-09-14T09:49:38.287781+02:00 debian12 gnome-remote-desktop-daemon[1917]: [09:44:14:312] [1917:1447630] [INFO][com.freerdp.core.connection] - Accepted client: node-rdpjs
2024-09-14T09:49:38.287810+02:00 debian12 gnome-remote-desktop-daemon[1917]: [09:44:14:312] [1917:1447630] [INFO][com.freerdp.core.connection] - Accepted channels:
2024-09-14T09:49:38.287839+02:00 debian12 gnome-remote-desktop-daemon[1917]: [09:44:14:312] [1917:1447630] [INFO][com.freerdp.core.connection] -  rdpdr
2024-09-14T09:49:38.287868+02:00 debian12 gnome-remote-desktop-daemon[1917]: [09:44:14:312] [1917:1447630] [INFO][com.freerdp.core.connection] -  cliprdr
2024-09-14T09:49:38.287897+02:00 debian12 gnome-remote-desktop-daemon[1917]: [09:44:14:312] [1917:1447630] [INFO][com.freerdp.core.connection] -  rdpsnd
2024-09-14T09:49:38.287926+02:00 debian12 gnome-remote-desktop-daemon[1917]: [09:44:14:312] [1917:1447630] [INFO][com.freerdp.core.gcc] - Active rdp encryption level: NONE
2024-09-14T09:49:38.287954+02:00 debian12 gnome-remote-desktop-daemon[1917]: [09:44:14:312] [1917:1447630] [INFO][com.freerdp.core.gcc] - Selected rdp encryption method: NONE
2024-09-14T09:49:38.287983+02:00 debian12 gnome-remote-desktop-daemon[1917]: [09:49:38:255] [1917:1447904] [INFO][com.freerdp.core.connection] - Client Security: NLA:1 TLS:1 RDP:0
2024-09-14T09:49:38.288016+02:00 debian12 gnome-remote-desktop-daemon[1917]: [09:49:38:255] [1917:1447904] [INFO][com.freerdp.core.connection] - Server Security: NLA:1 TLS:0 RDP:0
2024-09-14T09:49:38.288045+02:00 debian12 gnome-remote-desktop-daemon[1917]: [09:49:38:255] [1917:1447904] [INFO][com.freerdp.core.connection] - Negotiated Security: NLA:1 TLS:0 RDP:0
2024-09-14T09:49:38.288074+02:00 debian12 gnome-remote-desktop-daemon[1917]: [09:49:38:363] [1917:1447904] [INFO][com.freerdp.core.connection] - Accepted client: node-rdpjs
2024-09-14T09:49:38.336404+02:00 debian12 gnome-remote-desktop-daemon[1917]: [09:49:38:363] [1917:1447904] [INFO][com.freerdp.core.connection] - Accepted channels[09:49:38:413] [1917:1447904] [ERROR][com.freerdp.core.peer] - peer_recv_callback: CONNECTION_STATE_MCS_ATTACH_USER - rdp_server_accept_mcs_channel_join_request() fail
2024-09-14T09:49:38.336515+02:00 debian12 gnome-remote-desktop-daemon[1917]: [09:49:38:413] [1917:1447904] [ERROR][com.freerdp.core.transport] - transport_check_fds: transport->ReceiveCallback() - -1
guerby commented 4 days ago

On the meshcentral server I don't see any specific log.

On the javascript console of the web browser nothing printed.

Let me know if you need more information.

guerby commented 4 days ago

Note : RDP from the GNOME Connections client also works without issue, only meshcentral RDP client so far doesn't work.

si458 commented 4 days ago

how did you setup the RDP on the linux machine?

edit: also are you using the web-rdp? and did you install the meshagent on the machine OR is it just a local group?

guerby commented 4 days ago

I'm adding the linux machine without an agent giving a name and an IP address to meshcentral.

Then I click on the machine, go to "Desktop" tab and then click on "RDP Connect" button, then fill the username and password as asked y meshcentral.

The same procedure works when the target machine is a windows machine with RDP service activated.

si458 commented 4 days ago

thats ok i just wanted to check, somebody else reported the rdp wasnt working with ubuntu 24 corrctly so it is indeed a linux issue as the rdp for windows works without issues

guerby commented 4 days ago

Note : I've seen many people mention "web-rdp" but I haven't seen any meshcentral button with "web-rdp" on it, out of curiosity how do I use "web-rdp"?

guerby commented 4 days ago

thats ok i just wanted to check, somebody else reported the rdp wasnt working with ubuntu 24 corrctly so it is indeed a linux issue as the rdp for windows works without issues

The last two lines of the syslog of the linux machine shows that some error is occuring after the initial RDP connection and after some exchanges from meshcentral to the target debian GNOME machine.

I have full control of both the meshcentral server and the target machine, let me know if I need to tweak or activate something to be able to provide more information

si458 commented 4 days ago

Note : I've seen many people mention "web-rdp" but I haven't seen any meshcentral button with "web-rdp" on it, out of curiosity how do I use "web-rdp"?

when you add the local only device, the should be other options underneath the users bit and one says Web-RDP if its not visible, you might need to set mstsc: true under your domains section, then restart meshcentral image

guerby commented 4 days ago

Ok thanks!

When I click on "Web-RDP" it asks for login/password in a blue themed tab then the tab is filled with black then it comes back to asked login/password.

In syslog on the target Debian 12 GNOME machine I get the same error as with "RDP Connect":

2024-09-14T17:21:49.769565+02:00 debian12 gnome-remote-desktop-daemon[1917]: [17:21:49:791] [1917:1468682] [WARN][com.winpr.negotiate] - AcceptSecurityContext status SEC_I_CONTINUE_NEEDED [0x00090312]
2024-09-14T17:21:49.814715+02:00 debian12 gnome-remote-desktop-daemon[1917]: [17:21:49:836] [1917:1468682] [WARN][com.winpr.negotiate] - AcceptSecurityContext status SEC_I_COMPLETE_NEEDED [0x00090313]
2024-09-14T17:21:49.919802+02:00 debian12 gnome-remote-desktop-daemon[1917]: [17:21:49:941] [1917:1468682] [ERROR][com.freerdp.core.peer] - peer_recv_callback: CONNECTION_STATE_MCS_ATTACH_USER - rdp_server_accept_mcs_channel_join_request() fail
2024-09-14T17:21:49.920056+02:00 debian12 gnome-remote-desktop-daemon[1917]: [17:21:49:941] [1917:1468682] [ERROR][com.freerdp.core.transport] - transport_check_fds: transport->ReceiveCallback() - -1
2024-09-14T17:21:49.921158+02:00 debian12 gnome-remote-de[1917]: Unable to check file descriptor, closing connection
si458 commented 4 days ago

thats ok, its a similar issue, the RDP-Connect is based off the Web-RDP but they are 2 seperate things and code so we just need to look into why its not working which will take time i will try have a look this week as i dont fully under the rdp protocols etc and i never wrote the code!

guerby commented 4 days ago

Ok no hurry and thanks again for your time on meshcentral :)

I will try to install debian 13 as it has a more recent version of gnome-remote-desktop (46 vs 43) and freerdp (3.6.3 vs 2.10.0) and check if it works there.

guerby commented 4 days ago

Debian 13 is currently too unstable, the system setting app froze when I clicked to enable remote desktop...

hobbes commented 1 day ago

Debian 13 is currently too unstable, the system setting app froze when I clicked to enable remote desktop...

I could enable rdp in debian sid, my system setting app didn't freeze, but I have the exact same behaviour as debian 12