XRDP not working with fedora 35 and gnome for ad users

[ElioLopez]

Hello, I'm trying to make xrdp availabe for normal users in fedora 35 with gnome, connecting from windows rdp 10.8 It works for local users, but when trying to use it for ad authenticated users I just get a weird message: from within gnome saying that something has gone wrong". I have the following logs available:

[root@VM admin]# tail /var/log/xrdp.log
[20220322-12:14:53] [DEBUG] Server layout is the same as the client layout
[20220322-12:14:53] [DEBUG] xrdp_wm_login_mode_changed: login_mode is 4
[20220322-12:14:53] [DEBUG] Login state change request WMLS_CLEANUP -> WMLS_INACTIVE
[20220322-12:14:53] [DEBUG] xrdp_wm_login_mode_changed: login_mode is 5
[20220322-12:14:53] [DEBUG] VNC got clip data
[20220322-12:14:53] [DEBUG] Skipping 27 clip bytes from RFB
[20220322-12:14:55] [DEBUG] Closed socket 12 (AF_INET6 ::ffff:172.16.10.68 port 3389)
[20220322-12:14:55] [DEBUG] xrdp_mm_module_cleanup
[20220322-12:14:55] [DEBUG] Closed socket 19 (AF_INET6 ::ffff:127.0.0.1 port 59342)
[20220322-12:14:55] [DEBUG] Closed socket 20 (AF_UNIX)

[root@VM admin]# tail /var/log/xrdp-sesman.log
[20220322-12:14:52] [INFO ] Starting the xrdp channel server for display 11
[20220322-12:14:52] [INFO ] Session in progress on display 11, waiting until the window manager (pid 3095) exits to end the session
[20220322-12:14:55] [WARN ] Window manager (pid 3095, display 11) exited quickly (3 secs). This could indicate a window manager config problem
[20220322-12:14:55] [INFO ] Calling auth_stop_session and auth_end from pid 3094
[20220322-12:14:55] [INFO ] Terminating X server (pid 3096) on display 11
[20220322-12:14:55] [INFO ] Terminating the xrdp channel server (pid 3099) on display 11
[20220322-12:14:55] [INFO ] X server on display 11 (pid 3096) returned exit code 0 and signal number 0
[20220322-12:14:55] [INFO ] xrdp channel server for display 11 (pid 3099) exit code 0 and signal number 0
[20220322-12:14:55] [INFO ] cleanup_sockets:
[20220322-12:14:55] [INFO ] ++ terminated session:  username elio.lopez.admin@av360.org, display :11.0, session_pid 3094, ip ::ffff:10.22.59.8:51286 - socket: 12

sudo journalctl -S 12:14:52 --no-pager > logs
Mar 22 12:14:52 xrdp[3088]: [INFO ] connecting to sesman on 127.0.0.1:3350
Mar 22 12:14:52 xrdp-sesman[938]: [INFO ] Socket 10: AF_INET6 connection received from ::1 port 45950
Mar 22 12:14:52 xrdp[3088]: [INFO ] xrdp_wm_log_msg: sesman connect ok
Mar 22 12:14:52 xrdp[3088]: [INFO ] sesman connect ok
Mar 22 12:14:52 xrdp[3088]: [20220322-12:14:47] [DEBUG] Enabling channel 1007 (drdynvc)
Mar 22 12:14:52 xrdp[3088]: [20220322-12:14:47] [DEBUG]    xrdp_wm_init: no autologin / auto run detected, draw login window
Mar 22 12:14:52 xrdp[3088]: [20220322-12:14:47] [DEBUG] Login state change request WMLS_USER_PROMPT -> WMLS_USER_PROMPT
Mar 22 12:14:52 xrdp[3088]: [20220322-12:14:47] [DEBUG] out xrdp_wm_init:
Mar 22 12:14:52 xrdp[3088]: [20220322-12:14:47] [DEBUG] xrdp_wm_login_mode_changed: login_mode is 1
Mar 22 12:14:52 xrdp[3088]: [20220322-12:14:52] [DEBUG] Login state change request WMLS_USER_PROMPT -> WMLS_START_CONNECT
Mar 22 12:14:52 xrdp[3088]: [20220322-12:14:52] [DEBUG] xrdp_wm_login_mode_changed: login_mode is 2
Mar 22 12:14:52 xrdp[3088]: [20220322-12:14:52] [DEBUG] Login state change request WMLS_START_CONNECT -> WMLS_CONNECT_IN_PROGRESS
Mar 22 12:14:52 xrdp[3088]: [20220322-12:14:52] [DEBUG] xrdp_wm_log_msg: connecting to sesman on 127.0.0.1:3350
Mar 22 12:14:52 xrdp[3088]: [20220322-12:14:52] [INFO ] connecting to sesman on 127.0.0.1:3350
Mar 22 12:14:52 xrdp[3088]: [20220322-12:14:52] [INFO ] xrdp_wm_log_msg: sesman connect ok
Mar 22 12:14:52 xrdp[3088]: [INFO ] sending login info to session manager. Please wait...
Mar 22 12:14:52 xrdp-sesman[938]: pam_sss(xrdp-sesman:auth): authentication success; logname= uid=0 euid=0 tty=xrdp-sesman ruser= rhost= user=elio.lopez@domain.org
Mar 22 12:14:52 audit[938]: USER_AUTH pid=938 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:unconfined_service_t:s0 msg='op=PAM:authentication grantors=pam_usertype,pam_usertype,pam_sss acct="elio.lopez@domain.org" exe="/usr/sbin/xrdp-sesman" hostname=? addr=? terminal=xrdp-sesman res=success'
Mar 22 12:14:52 audit[938]: USER_ACCT pid=938 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:unconfined_service_t:s0 msg='op=PAM:accounting grantors=pam_unix,pam_sss,pam_permit acct="elio.lopez@domain.org" exe="/usr/sbin/xrdp-sesman" hostname=? addr=? terminal=xrdp-sesman res=success'
Mar 22 12:14:52 xrdp-sesman[938]: [INFO ] Terminal Server Users group is disabled, allowing authentication
Mar 22 12:14:52 xrdp-sesman[938]: [INFO ] ++ created session (access granted): username elio.lopez@domain.org, ip ::ffff:10.22.59.8:51286 - socket: 12
Mar 22 12:14:52 xrdp-sesman[938]: [INFO ] starting Xvnc session...
Mar 22 12:14:52 xrdp-sesman[938]: [INFO ] Starting session: session_pid 3094, display :11.0, width 1920, height 1080, bpp 32, client ip ::ffff:10.22.59.8:51286 - socket: 12, user name elio.lopez@domain.org
Mar 22 12:14:52 xrdp-sesman[3094]: [INFO ] [session start] (display 11): calling auth_start_session from pid 3094
Mar 22 12:14:52 xrdp-sesman[938]: [ERROR] sesman_data_in: scp_process_msg failed
Mar 22 12:14:52 xrdp[3088]: [INFO ] xrdp_wm_log_msg: login successful for user elio.lopez@domain.org on display 11
Mar 22 12:14:52 xrdp[3088]: [INFO ] login successful for user elio.lopez@domain.org on disp
Mar 22 12:14:52 xrdp-sesman[938]: [ERROR] sesman_main_loop: trans_check_wait_objs failed, removing trans
Mar 22 12:14:52 xrdp[3088]: [INFO ] lay 11
Mar 22 12:14:52 audit[3094]: CRED_ACQ pid=3094 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:unconfined_service_t:s0 msg='op=PAM:setcred grantors=pam_localuser,pam_sss acct="elio.lopez@domain.org" exe="/usr/sbin/xrdp-sesman" hostname=? addr=? terminal=:11 res=success'
Mar 22 12:14:52 xrdp[3088]: [INFO ] loaded module 'libvnc.so' ok, interface size 4064, version 4
Mar 22 12:14:52 xrdp-sesman[3094]: pam_systemd(xrdp-sesman:session): Failed to get user record: No such process
Mar 22 12:14:52 xrdp-sesman[3094]: pam_unix(xrdp-sesman:session): session opened for user elio.lopez@domain.org(uid=1117201217) by (uid=0)
Mar 22 12:14:52 xrdp[3088]: [INFO ] VNC started connecting
Mar 22 12:14:52 audit[3094]: USER_START pid=3094 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:unconfined_service_t:s0 msg='op=PAM:session_open grantors=pam_keyinit,pam_limits,pam_unix,pam_sss acct="elio.lopez@domain.org" exe="/usr/sbin/xrdp-sesman" hostname=? addr=? terminal=:11 res=success'
Mar 22 12:14:52 xrdp[3088]: [INFO ] VNC connecting to 127.0.0.1 5911
Mar 22 12:14:52 xrdp-sesman[3096]: [INFO ] Starting X server on display 11: Xvnc :11 -auth .Xauthority -geometry 1920x1080 -depth 32 -rfbauth /home/elio.lopez/.vnc/sesman_passwd-elio.lopez@domain.org@VM.name.domain.org:11 -bs -nolisten tcp -localhost -dpi damin
Mar 22 12:14:52 xrdp-sesman[3096]: Xvnc TigerVNC 1.12.0 - built Feb 15 2022 00:00:00
Mar 22 12:14:52 xrdp-sesman[3096]: Copyright (C) 1999-2021 TigerVNC Team and many others (see README.rst)
Mar 22 12:14:52 xrdp-sesman[3096]: See https://www.tigervnc.org for information on TigerVNC.
Mar 22 12:14:52 xrdp-sesman[3096]: Underlying X server release 12014000, The X.Org Foundation
Mar 22 12:14:52 xrdp-sesman[3096]: Tue Mar 22 12:14:52 2022
Mar 22 12:14:52 xrdp-sesman[3096]:  vncext:      VNC extension running!
Mar 22 12:14:52 xrdp-sesman[3096]:  vncext:      Listening for VNC connections on local interface(s), port 5911
Mar 22 12:14:52 xrdp-sesman[3096]:  vncext:      created VNC server for screen 0
Mar 22 12:14:52 xrdp-sesman[3096]:  Connections: accepted: 127.0.0.1::59342
Mar 22 12:14:52 xrdp[3088]: [INFO ] VNC tcp connected
Mar 22 12:14:52 xrdp-sesman[3096]:  SConnection: Client needs protocol version 3.3
Mar 22 12:14:52 xrdp[3088]: [INFO ] VNC security level is 2 (1 = none, 2 = standard)
Mar 22 12:14:52 xrdp-sesman[3096]:  VNCSConnST:  Server default pixel format depth 32 (32bpp) little-endian rgb
Mar 22 12:14:52 xrdp-sesman[3096]:               max 255,255,255 shift 16,8,0
Mar 22 12:14:52 xrdp[3088]: [INFO ] VNC password ok
Mar 22 12:14:52 xrdp[3088]: [INFO ] VNC sending share flag
Mar 22 12:14:52 xrdp[3088]: [INFO ] VNC receiving server init
Mar 22 12:14:52 xrdp[3088]: [INFO ] VNC receiving pixel format
Mar 22 12:14:52 xrdp[3088]: [INFO ] VNC receiving name length
Mar 22 12:14:52 xrdp[3088]: [INFO ] VNC receiving name
Mar 22 12:14:52 xrdp[3088]: [INFO ] VNC sending pixel format
Mar 22 12:14:52 xrdp-sesman[3096]:  VNCSConnST:  Client pixel format depth 24 (32bpp) little-endian rgb888
Mar 22 12:14:52 xrdp[3088]: [INFO ] VNC sending cursor
Mar 22 12:14:52 xrdp-sesman[3095]: [INFO ] Found X server running at /tmp/.X11-unix/X11
Mar 22 12:14:52 xrdp-sesman[3094]: [INFO ] Found X server running at /tmp/.X11-unix/X11
Mar 22 12:14:52 xrdp-sesman[3095]: [INFO ] Found X server running at /tmp/.X11-unix/X11
Mar 22 12:14:52 xrdp[3088]: [INFO ] VNC connection complete, connected ok
Mar 22 12:14:52 xrdp-sesman[3094]: [INFO ] Session started successfully for user elio.lopez@domain.org on display 11
Mar 22 12:14:52 xrdp-sesman[3099]: [INFO ] Starting the xrdp channel server for display 11
Mar 22 12:14:52 xrdp[3088]: [INFO ] VNC: Clipboard (if available) is provided by chansrv facility
Mar 22 12:14:52 xrdp-sesman[3095]: [INFO ] Starting the default window manager on display 11: /usr/libexec/xrdp/startwm-bash.sh
Mar 22 12:14:52 xrdp[3088]: [INFO ] connected ok
Mar 22 12:14:52 xrdp-sesman[3094]: [INFO ] Session in progress on display 11, waiting until the window manager (pid 3095) exits to end the session
Mar 22 12:14:52 audit: BPF prog-id=60 op=LOAD
Mar 22 12:14:52 audit: BPF prog-id=61 op=LOAD
Mar 22 12:14:52 systemd[1]: Starting Hostname Service...
Mar 22 12:14:52 systemd[1]: Started Hostname Service.
Mar 22 12:14:52 audit[1]: SERVICE_START pid=1 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:init_t:s0 msg='unit=systemd-hostnamed comm="systemd" exe="/usr/lib/systemd/systemd" hostname=? addr=? terminal=? res=success'
Mar 22 12:14:52 xrdp-chansrv[3099]: [INFO ] Socket 12: AF_UNIX connection received
Mar 22 12:14:53 xrdp[3088]: [INFO ] Layout from OldLayout (geom=1920x1080 #screens=1) : 1804289383:(1920x1080+0+0)
Mar 22 12:14:53 dbus-daemon[3153]: [session uid=1117201217 pid=3151] Activating service name='org.freedesktop.systemd1' requested by ':1.0' (uid=1117201217 pid=3170 comm="systemctl --user import-environment DISPLAY XAUTHO" label="system_u:system_r:unconfined_service_t:s0")
Mar 22 12:14:53 dbus-daemon[3153]: [session uid=1117201217 pid=3151] Activated service 'org.freedesktop.systemd1' failed: Process org.freedesktop.systemd1 exited with status 1
Mar 22 12:14:53 dbus-daemon[3153]: [session uid=1117201217 pid=3151] Activating service name='org.a11y.Bus' requested by ':1.4' (uid=1117201217 pid=3204 comm="/usr/libexec/gnome-session-check-accelerated " label="system_u:system_r:unconfined_service_t:s0")
Mar 22 12:14:53 dbus-daemon[3153]: [session uid=1117201217 pid=3151] Successfully activated service 'org.a11y.Bus'
Mar 22 12:14:53 dbus-daemon[3153]: [session uid=1117201217 pid=3151] Activating service name='org.gtk.vfs.Daemon' requested by ':1.6' (uid=1117201217 pid=3204 comm="/usr/libexec/gnome-session-check-accelerated " label="system_u:system_r:unconfined_service_t:s0")
Mar 22 12:14:53 dbus-daemon[3153]: [session uid=1117201217 pid=3151] Successfully activated service 'org.gtk.vfs.Daemon'
Mar 22 12:14:53 gnome-session[3095]: gnome-session-binary[3095]: WARNING: Failed to upload environment to systemd: GDBus.Error:org.freedesktop.DBus.Error.NameHasNoOwner: Name "org.freedesktop.systemd1" does not exist
Mar 22 12:14:53 gnome-session-binary[3095]: WARNING: Failed to upload environment to systemd: GDBus.Error:org.freedesktop.DBus.Error.NameHasNoOwner: Name "org.freedesktop.systemd1" does not exist
Mar 22 12:14:53 gnome-session[3095]: gnome-session-binary[3095]: WARNING: Failed to reset failed state of units: GDBus.Error:org.freedesktop.DBus.Error.NameHasNoOwner: Name "org.freedesktop.systemd1" does not exist
Mar 22 12:14:53 gnome-session-binary[3095]: WARNING: Failed to reset failed state of units: GDBus.Error:org.freedesktop.DBus.Error.NameHasNoOwner: Name "org.freedesktop.systemd1" does not exist
Mar 22 12:14:53 gnome-session[3095]: gnome-session-binary[3095]: WARNING: Falling back to non-systemd startup procedure due to error: GDBus.Error:org.freedesktop.DBus.Error.NameHasNoOwner: Name "org.freedesktop.systemd1" does not exist
Mar 22 12:14:53 gnome-session-binary[3095]: WARNING: Falling back to non-systemd startup procedure due to error: GDBus.Error:org.freedesktop.DBus.Error.NameHasNoOwner: Name "org.freedesktop.systemd1" does not exist
Mar 22 12:14:53 gnome-session[3095]: gnome-session-binary[3095]: WARNING: Could not get session id for session. Check that logind is properly installed and pam_systemd is getting used at login.
Mar 22 12:14:53 gnome-session-binary[3095]: WARNING: Could not get session id for session. Check that logind is properly installed and pam_systemd is getting used at login.
Mar 22 12:14:53 gnome-keyring-pkcs11.desktop[3246]: GNOME_KEYRING_CONTROL=/home/elio.lopez/.cache/keyring-NJ4KJ1
Mar 22 12:14:53 gnome-keyring-secrets.desktop[3247]: GNOME_KEYRING_CONTROL=/home/elio.lopez/.cache/keyring-NJ4KJ1
Mar 22 12:14:53 gnome-keyring-ssh.desktop[3245]: GNOME_KEYRING_CONTROL=/home/elio.lopez/.cache/keyring-NJ4KJ1
Mar 22 12:14:53 gnome-keyring-ssh.desktop[3245]: SSH_AUTH_SOCK=/home/elio.lopez/.cache/keyring-NJ4KJ1/ssh
Mar 22 12:14:53 org.gnome.Shell.desktop[3255]: Failed to configure: Unsupported session type
Mar 22 12:14:53 gnome-session-binary[3095]: WARNING: App 'org.gnome.Shell.desktop' exited with code 1
Mar 22 12:14:53 gnome-session[3095]: gnome-session-binary[3095]: WARNING: App 'org.gnome.Shell.desktop' exited with code 1
Mar 22 12:14:53 org.gnome.Shell.desktop[3258]: Failed to configure: Unsupported session type
Mar 22 12:14:53 gnome-session-binary[3095]: WARNING: App 'org.gnome.Shell.desktop' exited with code 1
Mar 22 12:14:53 gnome-session[3095]: gnome-session-binary[3095]: WARNING: App 'org.gnome.Shell.desktop' exited with code 1
Mar 22 12:14:53 gnome-session[3095]: gnome-session-binary[3095]: WARNING: App 'org.gnome.Shell.desktop' respawning too quickly
Mar 22 12:14:53 gnome-session-binary[3095]: WARNING: App 'org.gnome.Shell.desktop' respawning too quickly
Mar 22 12:14:53 gnome-session-binary[3095]: Unrecoverable failure in required component org.gnome.Shell.desktop
Mar 22 12:14:53 dbus-daemon[3153]: [session uid=1117201217 pid=3151] Activating service name='ca.desrt.dconf' requested by ':1.11' (uid=1117201217 pid=3095 comm="/usr/libexec/gnome-session-binary " label="system_u:system_r:unconfined_service_t:s0")
Mar 22 12:14:53 dbus-daemon[3153]: [session uid=1117201217 pid=3151] Successfully activated service 'ca.desrt.dconf'
Mar 22 12:14:53 xrdp-chansrv[3099]: [INFO ] sound_process_training: round trip time 103
Mar 22 12:14:53 gsd-rfkill[3269]: Could not open rfkill device: Could not open RFKILL control device, please verify your installation
Mar 22 12:14:53 xrdp-chansrv[3099]: [INFO ] Detected remote printer 'PRN7' (not supported)
Mar 22 12:14:53 dbus-daemon[3153]: [session uid=1117201217 pid=3151] Activating service name='org.freedesktop.systemd1' requested by ':1.20' (uid=1117201217 pid=3289 comm="/usr/libexec/gsd-sharing " label="system_u:system_r:unconfined_service_t:s0")
Mar 22 12:14:53 xrdp-chansrv[3099]: [INFO ] Detected remote printer 'PRN8' (not supported)
Mar 22 12:14:53 xrdp-chansrv[3099]: [INFO ] Detected remote printer 'PRN6' (not supported)
Mar 22 12:14:53 dbus-daemon[3153]: [session uid=1117201217 pid=3151] Activated service 'org.freedesktop.systemd1' failed: Process org.freedesktop.systemd1 exited with status 1
Mar 22 12:14:53 gsd-sharing[3289]: Failed to StopUnit service: GDBus.Error:org.freedesktop.DBus.Error.Spawn.ChildExited: Process org.freedesktop.systemd1 exited with status 1
Mar 22 12:14:53 xrdp-chansrv[3099]: [INFO ] Detected remote printer 'PRN5' (not supported)
Mar 22 12:14:53 gsd-sharing[3289]: Failed to StopUnit service: GDBus.Error:org.freedesktop.DBus.Error.Spawn.ChildExited: Process org.freedesktop.systemd1 exited with status 1
Mar 22 12:14:53 gsd-sharing[3289]: Failed to StopUnit service: GDBus.Error:org.freedesktop.DBus.Error.Spawn.ChildExited: Process org.freedesktop.systemd1 exited with status 1
Mar 22 12:14:53 dbus-daemon[3153]: [session uid=1117201217 pid=3151] Activating service name='org.gnome.ScreenSaver' requested by ':1.24' (uid=1117201217 pid=3264 comm="/usr/libexec/gsd-usb-protection " label="system_u:system_r:unconfined_service_t:s0")
Mar 22 12:14:53 xrdp-chansrv[3099]: [INFO ] Detected remote printer 'PRN4' (not supported)
Mar 22 12:14:53 xrdp-chansrv[3099]: [INFO ] Detected remote printer 'PRN3' (not supported)
Mar 22 12:14:53 xrdp-chansrv[3099]: [INFO ] Detected remote printer 'PRN2' (not supported)
Mar 22 12:14:53 xrdp-chansrv[3099]: [INFO ] Detected remote printer 'PRN1' (not supported)
Mar 22 12:14:53 xrdp-chansrv[3099]: [INFO ] Detected remote smartcard 'SCARD'
Mar 22 12:14:53 org.a11y.Bus[3211]: dbus-daemon[3211]: Activating service name='org.a11y.atspi.Registry' requested by ':1.1' (uid=1117201217 pid=3262 comm="/usr/libexec/gnome-session-failed --allow-logout -" label="system_u:system_r:unconfined_service_t:s0")
Mar 22 12:14:53 pcscd[1247]: 99999999 auth.c:137:IsClientAuthorized() Process 3293 (user: 1117201217) is NOT authorized for action: access_pcsc
Mar 22 12:14:53 pcscd[1247]: 00000199 winscard_svc.c:335:ContextThread() Rejected unauthorized PC/SC client
Mar 22 12:14:53 dbus-daemon[3153]: [session uid=1117201217 pid=3151] Successfully activated service 'org.gnome.ScreenSaver'
Mar 22 12:14:53 gsd-usb-protect[3264]: Failed to get screen saver status: GDBus.Error:org.freedesktop.DBus.Error.NoReply: Message recipient disconnected from message bus without replying
Mar 22 12:14:53 gnome-session[3095]: gnome-session-binary[3095]: WARNING: Could not retrieve current screensaver active state: GDBus.Error:org.freedesktop.DBus.Error.NoReply: Message recipient disconnected from message bus without replying
Mar 22 12:14:53 gnome-session-binary[3095]: WARNING: Could not retrieve current screensaver active state: GDBus.Error:org.freedesktop.DBus.Error.NoReply: Message recipient disconnected from message bus without replying
Mar 22 12:14:53 gsd-usb-protect[3264]: Failed to fetch USBGuard parameters: GDBus.Error:org.freedesktop.DBus.Error.ServiceUnknown: The name is not activatable
Mar 22 12:14:53 org.a11y.Bus[3211]: dbus-daemon[3211]: Successfully activated service 'org.a11y.atspi.Registry'
Mar 22 12:14:53 org.a11y.Bus[3389]: SpiRegistry daemon is running with well-known name - org.a11y.atspi.Registry
Mar 22 12:14:53 org.gnome.SettingsDaemon.Keyboard.desktop[3301]: error: XDG_RUNTIME_DIR not set in the environment.
Mar 22 12:14:53 audit: BPF prog-id=62 op=LOAD
Mar 22 12:14:53 audit: BPF prog-id=63 op=LOAD
Mar 22 12:14:53 audit: BPF prog-id=64 op=LOAD
Mar 22 12:14:53 systemd[1]: Starting Locale Service...
Mar 22 12:14:53 gsd-xsettings[3285]: Failed to get current display configuration state: GDBus.Error:org.freedesktop.DBus.Error.NameHasNoOwner: Name "org.gnome.Mutter.DisplayConfig" does not exist
Mar 22 12:14:53 org.gnome.SettingsDaemon.XSettings.desktop[3285]: error: XDG_RUNTIME_DIR not set in the environment.
Mar 22 12:14:53 dbus-daemon[3153]: [session uid=1117201217 pid=3151] Activating service name='org.gnome.Shell.Screencast' requested by ':1.34' (uid=1117201217 pid=3265 comm="/usr/libexec/gsd-media-keys " label="system_u:system_r:unconfined_service_t:s0")
Mar 22 12:14:53 spice-vdagent[3424]: vdagent virtio channel /dev/virtio-ports/com.redhat.spice.0 does not exist, exiting
Mar 22 12:14:53 dbus-daemon[3153]: [session uid=1117201217 pid=3151] Activating service name='org.freedesktop.problems.applet' requested by ':1.11' (uid=1117201217 pid=3095 comm="/usr/libexec/gnome-session-binary " label="system_u:system_r:unconfined_service_t:s0")
Mar 22 12:14:53 gnome-session-binary[3095]: Entering running state
Mar 22 12:14:53 vmware-user.desktop[3459]: vmware-user: could not open /proc/fs/vmblock/dev
Mar 22 12:14:53 audit[1]: SERVICE_START pid=1 uid=0 auid=4294967295 ses=4294967295 subj=system_u:system_r:init_t:s0 msg='unit=systemd-localed comm="systemd" exe="/usr/lib/systemd/systemd" hostname=? addr=? terminal=? res=success'
Mar 22 12:14:53 systemd[1]: Started Locale Service.
Mar 22 12:14:53 cupsd[837]: REQUEST localhost - - "POST / HTTP/1.1" 200 372 Create-Printer-Subscriptions successful-ok
Mar 22 12:14:53 libcanberra-login-sound.desktop[3450]: Failed to play sound: Not available
Mar 22 12:14:53 dbus-daemon[3153]: [session uid=1117201217 pid=3151] Successfully activated service 'org.freedesktop.problems.applet'
Mar 22 12:14:53 org.freedesktop.problems.applet[3466]: Failed to rename ‘/home/elio.lopez/.abrt/spool’ to ‘/home/elio.lopez/.cache/abrt/spool’: No such file or directory
Mar 22 12:14:53 org.freedesktop.problems.applet[3466]: Failed to rename ‘/home/elio.lopez/.abrt/settings’ to ‘/home/elio.lopez/.config/abrt/settings’: No such file or directory
Mar 22 12:14:53 vmtoolsd[3459]: gtk_disable_setlocale() must be called before gtk_init()
Mar 22 12:14:53 dbus-daemon[3153]: [session uid=1117201217 pid=3151] Activating service name='org.gnome.evolution.dataserver.Sources5' requested by ':1.45' (uid=1117201217 pid=3434 comm="/usr/libexec/evolution-data-server/evolution-alarm" label="system_u:system_r:unconfined_service_t:s0")
Mar 22 12:14:53 dbus-daemon[3153]: [session uid=1117201217 pid=3151] Successfully activated service 'org.gnome.Shell.Screencast'
Mar 22 12:14:53 dbus-daemon[3153]: [session uid=1117201217 pid=3151] Activating service name='org.gtk.vfs.UDisks2VolumeMonitor' requested by ':1.40' (uid=1117201217 pid=3456 comm="/usr/libexec/tracker-miner-fs-3 " label="system_u:system_r:unconfined_service_t:s0")
Mar 22 12:14:53 dbus-daemon[3153]: [session uid=1117201217 pid=3151] Successfully activated service 'org.gtk.vfs.UDisks2VolumeMonitor'
Mar 22 12:14:53 dbus-daemon[3153]: [session uid=1117201217 pid=3151] Activating service name='org.gnome.OnlineAccounts' requested by ':1.46' (uid=1117201217 pid=3534 comm="/usr/libexec/evolution-source-registry " label="system_u:system_r:unconfined_service_t:s0")
Mar 22 12:14:53 dbus-daemon[3153]: [session uid=1117201217 pid=3151] Activating service name='org.gtk.vfs.MTPVolumeMonitor' requested by ':1.40' (uid=1117201217 pid=3456 comm="/usr/libexec/tracker-miner-fs-3 " label="system_u:system_r:unconfined_service_t:s0")
Mar 22 12:14:53 dbus-daemon[3153]: [session uid=1117201217 pid=3151] Successfully activated service 'org.gtk.vfs.MTPVolumeMonitor'
Mar 22 12:14:53 dbus-daemon[3153]: [session uid=1117201217 pid=3151] Successfully activated service 'org.gnome.evolution.dataserver.Sources5'
Mar 22 12:14:53 dbus-daemon[3153]: [session uid=1117201217 pid=3151] Activating service name='org.gtk.vfs.GPhoto2VolumeMonitor' requested by ':1.40' (uid=1117201217 pid=3456 comm="/usr/libexec/tracker-miner-fs-3 " label="system_u:system_r:unconfined_service_t:s0")
Mar 22 12:14:53 dbus-daemon[3153]: [session uid=1117201217 pid=3151] Successfully activated service 'org.gtk.vfs.GPhoto2VolumeMonitor'
Mar 22 12:14:53 dbus-daemon[3153]: [session uid=1117201217 pid=3151] Activating service name='org.gtk.vfs.GoaVolumeMonitor' requested by ':1.40' (uid=1117201217 pid=3456 comm="/usr/libexec/tracker-miner-fs-3 " label="system_u:system_r:unconfined_service_t:s0")
Mar 22 12:14:53 dbus-daemon[3153]: [session uid=1117201217 pid=3151] Activating service name='org.gnome.evolution.dataserver.Calendar8' requested by ':1.45' (uid=1117201217 pid=3434 comm="/usr/libexec/evolution-data-server/evolution-alarm" label="system_u:system_r:unconfined_service_t:s0")
Mar 22 12:14:53 goa-daemon[3573]: goa-daemon version 3.40.1 starting
Mar 22 12:14:53 dbus-daemon[3153]: [session uid=1117201217 pid=3151] Activating service name='org.gnome.Identity' requested by ':1.52' (uid=1117201217 pid=3573 comm="/usr/libexec/goa-daemon " label="system_u:system_r:unconfined_service_t:s0")
Mar 22 12:14:53 gsd-media-keys[3265]: Unable to inhibit keypresses: GDBus.Error:org.freedesktop.DBus.Error.AccessDenied: Permission denied
Mar 22 12:14:53 dbus-daemon[3153]: [session uid=1117201217 pid=3151] Successfully activated service 'org.gnome.Identity'
Mar 22 12:14:53 dbus-daemon[3153]: [session uid=1117201217 pid=3151] Successfully activated service 'org.gnome.OnlineAccounts'
Mar 22 12:14:53 pcscd[1247]: 00501286 auth.c:137:IsClientAuthorized() Process 3293 (user: 1117201217) is NOT authorized for action: access_pcsc
Mar 22 12:14:53 pcscd[1247]: 00000095 winscard_svc.c:335:ContextThread() Rejected unauthorized PC/SC client
Mar 22 12:14:53 dbus-daemon[3153]: [session uid=1117201217 pid=3151] Successfully activated service 'org.gtk.vfs.GoaVolumeMonitor'
Mar 22 12:14:53 goa-identity-se[3621]: GoaKerberosIdentityManager: Using polling for change notification for credential cache type 'KCM'
Mar 22 12:14:53 dbus-daemon[3153]: [session uid=1117201217 pid=3151] Successfully activated service 'org.gnome.evolution.dataserver.Calendar8'
Mar 22 12:14:53 dbus-daemon[3153]: [session uid=1117201217 pid=3151] Activating service name='org.gtk.vfs.AfcVolumeMonitor' requested by ':1.40' (uid=1117201217 pid=3456 comm="/usr/libexec/tracker-miner-fs-3 " label="system_u:system_r:unconfined_service_t:s0")
Mar 22 12:14:53 dbus-daemon[3153]: [session uid=1117201217 pid=3151] Activating service name='org.gnome.evolution.dataserver.AddressBook10' requested by ':1.51' (uid=1117201217 pid=3602 comm="/usr/libexec/evolution-calendar-factory " label="system_u:system_r:unconfined_service_t:s0")
Mar 22 12:14:53 dbus-daemon[3153]: [session uid=1117201217 pid=3151] Successfully activated service 'org.gtk.vfs.AfcVolumeMonitor'
Mar 22 12:14:54 dbus-daemon[3153]: [session uid=1117201217 pid=3151] Successfully activated service 'org.gnome.evolution.dataserver.AddressBook10'
Mar 22 12:14:54 pcscd[1247]: 00047846 auth.c:137:IsClientAuthorized() Process 3293 (user: 1117201217) is NOT authorized for action: access_pcsc
Mar 22 12:14:54 pcscd[1247]: 00000084 winscard_svc.c:335:ContextThread() Rejected unauthorized PC/SC client
Mar 22 12:14:54 goa-daemon[3573]: secret_password_lookup_sync() returned NULL
Mar 22 12:14:54 goa-daemon[3573]: /org/gnome/OnlineAccounts/Accounts/account_1647947694_1: Setting AttentionNeeded to TRUE because EnsureCredentials() failed with: No credentials found in the keyring (goa-error-quark, 4)
Mar 22 12:14:54 pcscd[1247]: 00024747 auth.c:137:IsClientAuthorized() Process 3293 (user: 1117201217) is NOT authorized for action: access_pcsc
Mar 22 12:14:54 pcscd[1247]: 00000133 winscard_svc.c:335:ContextThread() Rejected unauthorized PC/SC client
Mar 22 12:14:54 gnome-software[3444]: enabled plugins: appstream, fwupd, os-release, packagekit-refresh, fedora-langpacks, fedora-pkgdb-collections, flatpak, hardcoded-blocklist, hardcoded-popular, modalias, packagekit, rewrite-resource, malcontent, provenance, repos, systemd-updates, generic-updates, packagekit-refine-repos, provenance-license, icons
Mar 22 12:14:54 gnome-software[3444]: disabled plugins: dummy
Mar 22 12:14:54 dbus-daemon[3153]: [session uid=1117201217 pid=3151] Activating service name='org.freedesktop.Tracker3.Miner.Extract' requested by ':1.40' (uid=1117201217 pid=3456 comm="/usr/libexec/tracker-miner-fs-3 " label="system_u:system_r:unconfined_service_t:s0")
Mar 22 12:14:54 PackageKit[1111]: uid 1117201217 is trying to obtain org.freedesktop.packagekit.system-sources-refresh auth (only_trusted:0)
Mar 22 12:14:54 PackageKit[1111]: uid 1117201217 failed to obtain auth
Mar 22 12:14:54 gnome-software[3444]: not handling error no-security for action refresh: Failed to obtain authentication.
Mar 22 12:14:54 dbus-daemon[3153]: [session uid=1117201217 pid=3151] Successfully activated service 'org.freedesktop.Tracker3.Miner.Extract'
Mar 22 12:14:54 gnome-software[3444]: Only 0 apps for recent list, hiding
Mar 22 12:14:54 PackageKit[1111]: resolve transaction /240_dcceecbc from uid 1117201217 finished with success after 7ms
Mar 22 12:14:54 gnome-software[3444]: Only 11 apps for popular list, hiding
Mar 22 12:14:54 PackageKit[1111]: resolve transaction /241_deababce from uid 1117201217 finished with success after 3ms
Mar 22 12:14:54 PackageKit[1111]: get-updates transaction /242_cbacdcae from uid 1117201217 finished with success after 161ms
Mar 22 12:14:54 goa-daemon[3573]: secret_password_lookup_sync() returned NULL
Mar 22 12:14:54 PackageKit[1111]: resolve transaction /243_adddbbaa from uid 1117201217 finished with success after 16ms
Mar 22 12:14:54 packagekitd[1111]: Failed to get cache filename for nautilus
Mar 22 12:14:54 packagekitd[1111]: Failed to get cache filename for eog
Mar 22 12:14:54 packagekitd[1111]: Failed to get cache filename for gnome-software
Mar 22 12:14:54 PackageKit[1111]: get-details transaction /244_bedbbeba from uid 1117201217 finished with success after 44ms
Mar 22 12:14:54 PackageKit[1111]: resolve transaction /245_bedabade from uid 1117201217 finished with success after 8ms
Mar 22 12:14:55 PackageKit[1111]: get-update-detail transaction /246_bcbdceba from uid 1117201217 finished with success after 
...

sorry for the long logs, but I think that the following line may be relevant:

Mar 22 12:14:53 gnome-session-binary[3095]: Unrecoverable failure in required component org.gnome.Shell.desktop

Not sure on how to remediate that problem.

I've already added the ad mandatory lines to sssd.conf, and the ad auth through ssh is working:

ldap_id_mapping = True
access_provider = ad
ad_gpo_access_control = enforcing
ad_gpo_map_remote_interactive=+xrdp-sesman

selinux is disabled, just to make sure that it does not interfere I was able to make it work for rocky linux 8.4 with the same config.

here is my config files:

cat /etc/xrdp/xrdp.ini
[Globals]
; xrdp.ini file version number
ini_version=1

; fork a new process for each incoming connection
fork=true

; ports to listen on, number alone means listen on all interfaces
; 0.0.0.0 or :: if ipv6 is configured
; space between multiple occurrences
; ALL specified interfaces must be UP when xrdp starts, otherwise xrdp will fail to start
;
; Examples:
;   port=3389
;   port=unix://./tmp/xrdp.socket
;   port=tcp://.:3389                           127.0.0.1:3389
;   port=tcp://:3389                            *:3389
;   port=tcp://<any ipv4 format addr>:3389      192.168.1.1:3389
;   port=tcp6://.:3389                          ::1:3389
;   port=tcp6://:3389                           *:3389
;   port=tcp6://{<any ipv6 format addr>}:3389   {FC00:0:0:0:0:0:0:1}:3389
;   port=vsock://<cid>:<port>
port=3389

; 'port' above should be connected to with vsock instead of tcp
; use this only with number alone in port above
; prefer use vsock://<cid>:<port> above
use_vsock=false

; regulate if the listening socket use socket option tcp_nodelay
; no buffering will be performed in the TCP stack
tcp_nodelay=true

; regulate if the listening socket use socket option keepalive
; if the network connection disappear without close messages the connection will be closed
tcp_keepalive=true

; set tcp send/recv buffer (for experts)
#tcp_send_buffer_bytes=32768
#tcp_recv_buffer_bytes=32768

; security layer can be 'tls', 'rdp' or 'negotiate'
; for client compatible layer
security_layer=negotiate

; minimum security level allowed for client for classic RDP encryption
; use tls_ciphers to configure TLS encryption
; can be 'none', 'low', 'medium', 'high', 'fips'
crypt_level=high

; X.509 certificate and private key
; openssl req -x509 -newkey rsa:2048 -nodes -keyout key.pem -out cert.pem -days 365
certificate=
key_file=

; set SSL protocols
; can be comma separated list of 'SSLv3', 'TLSv1', 'TLSv1.1', 'TLSv1.2', 'TLSv1.3'
ssl_protocols=TLSv1.2, TLSv1.3
; set TLS cipher suites

; concats the domain name to the user if set for authentication with the separator
; for example when the server is multi homed with SSSd
#domain_user_separator=@

; The following options will override the keyboard layout settings.
; These options are for DEBUG and are not recommended for regular use.

; Section name to use for automatic login if the client sends username
; and password. If empty, the domain name sent by the client is used.
; If empty and no domain name is given, the first suitable section in
; this file will be used.
autorun=

allow_channels=true
allow_multimon=true
bitmap_cache=true
bitmap_compression=true
bulk_compression=true
#hidelogwindow=true
max_bpp=32
new_cursors=true
; fastpath - can be 'input', 'output', 'both', 'none'
use_fastpath=both
; when true, userid/password *must* be passed on cmd line
; when true, the userid will be used to try to authenticate
; You can set the PAM error text in a gateway setup (MAX 256 chars)

;
; colors used by windows in RGB format
;
blue=009cb5
grey=dedede

;
; configure login screen
;

; Login Screen Window Title

; top level window background color in RGB format
ls_top_window_bg_color=009cb5

; width and height of login screen
;
; The default height allows for about 5 fields to be comfortably displayed
; above the buttons at the bottom. To display more fields, make <ls_height>
; larger, and also increase <ls_btn_ok_y_pos> and <ls_btn_cancel_y_pos>
; below
;
ls_width=350
ls_height=430

; login screen background color in RGB format
ls_bg_color=dedede

; optional background image filename. BMP format is always supported,
; but other formats will be supported if xrdp is build with imlib2
; The transform can be one of the following:-
;     none  : No transformation. Image is placed in bottom-right corner
;             of the screen.
;     scale : Image is scaled to the screen size. The image aspect
;             ratio is not preserved.
;     zoom  : Image is scaled to the screen size. The image aspect
;             ratio is preserved by clipping the image.

; logo
; full path to file or file in shared folder. BMP format is always supported,
; but other formats will be supported if xrdp is build with imlib2
; For transform values, see 'ls_background_transform'. The logo width and
; logo height are ignored for a transform of 'none'.
ls_logo_filename=
ls_logo_x_pos=55
ls_logo_y_pos=50

; for positioning labels such as username, password etc
ls_label_x_pos=30
ls_label_width=65

; for positioning text and combo boxes next to above labels
ls_input_x_pos=110
ls_input_width=210

; y pos for first label and combo box
ls_input_y_pos=220

; OK button
ls_btn_ok_x_pos=142
ls_btn_ok_y_pos=370
ls_btn_ok_width=85
ls_btn_ok_height=30

; Cancel button
ls_btn_cancel_x_pos=237
ls_btn_cancel_y_pos=370
ls_btn_cancel_width=85
ls_btn_cancel_height=30

[Logging]
; Note: Log levels can be any of: core, error, warning, info, debug, or trace
LogFile=xrdp.log
LogLevel=DEBUG
EnableSyslog=true
#SyslogLevel=DEBUG
EnableConsole=true
ConsoleLevel=DEBUG
#EnableProcessId=false

[LoggingPerLogger]
; Note: per logger configuration is only used if xrdp is built with
; --enable-devel-logging

[Channels]
; Channel names not listed here will be blocked by XRDP.
; You can block any channel by setting its value to false.
; IMPORTANT! All channels are not supported in all use
; cases even if you set all values to true.
; You can override these settings on each session type
; These settings are only used if allow_channels=true
rdpdr=true
rdpsnd=true
drdynvc=true
cliprdr=true
rail=true
xrdpvr=true
tcutils=true

; for debugging xrdp, in section xrdp1, change port=-1 to this:
#port=/tmp/.xrdp/xrdp_display_10

;
; Session types
;

; Some session types such as Xorg, X11rdp and Xvnc start a display server.
; Startup command-line parameters for the display server are configured
; in sesman.ini. See and configure also sesman.ini.

[Xvnc]
name=Xvnc
lib=libvnc.so
username=ask
password=ask
ip=127.0.0.1
port=-1
; Disable requested encodings to support buggy VNC servers
; (1 = ExtendedDesktopSize)
; Use this to connect to a chansrv instance created outside of sesman
; (e.g. as part of an x11vnc console session). Replace '0' with the
; display number of the session

; Generic VNC Proxy
; Tailor this to specific hosts and VNC instances by specifying an ip
; and port and setting a suitable name.

; Generic RDP proxy using NeutrinoRDP
; Tailor this to specific hosts by specifying an ip and port and setting
; a suitable name.
; To use this section, you should build xrdp with configure option
; --enable-neutrinordp.
; Uncomment the following lines to enable PAM authentication for proxy
; connections.
; Currently NeutrinoRDP doesn't support dynamic resizing. Uncomment
; this line if you're using a client which does.
; By default, performance settings requested by the RDP client are ignored
; and chosen by NeutrinoRDP. Uncomment this line to allow the user to
; select performance settings in the RDP client.
; Override any experience setting by uncommenting one or more of the
; following lines.
; By default NeutrinoRDP supports cursor shadows. If this is giving
; you problems (e.g. cursor is a black rectangle) try disabling cursor
; shadows by uncommenting the following line.
; By default, NeutrinoRDP uses the keyboard layout of the remote RDP Server.
; If you want to tell the remote the keyboard layout of the RDP Client,
; by uncommenting the following line.
; The following options will override the remote keyboard layout settings.
; These options are for DEBUG and are not recommended for regular use.

; You can override the common channel settings for each session type

 cat /etc/xrdp/sesman.ini
;; See `man 5 sesman.ini` for details

[Globals]
ListenAddress=127.0.0.1
ListenPort=3350
EnableUserWindowManager=true
; Give in relative path to user's home directory
UserWindowManager=startwm-local.sh
; Give in full path or relative path to /etc/xrdp
DefaultWindowManager=startwm-bash.sh
; Give in full path or relative path to /etc/xrdp
ReconnectScript=reconnectwm.sh

[Security]
AllowRootLogin=true
MaxLoginRetry=4
TerminalServerUsers=tsusers
TerminalServerAdmins=tsadmins
; When AlwaysGroupCheck=false access will be permitted
; if the group TerminalServerUsers is not defined.
AlwaysGroupCheck=false
; When RestrictOutboundClipboard=true clipboard from the
; server is not pushed to the client.
RestrictOutboundClipboard=false

[Sessions]
;; X11DisplayOffset - x11 display number offset
; Type: integer
; Default: 10
X11DisplayOffset=10

;; MaxSessions - maximum number of connections to an xrdp server
; Type: integer
; Default: 0
MaxSessions=50

;; KillDisconnected - kill disconnected sessions
; Type: boolean
; Default: false
; if 1, true, or yes, every session will be killed within DisconnectedTimeLimit
; seconds after the user disconnects
KillDisconnected=false

;; DisconnectedTimeLimit (seconds) - wait before kill disconnected sessions
; Type: integer
; Default: 0
; if KillDisconnected is set to false, this value is ignored
DisconnectedTimeLimit=0

;; IdleTimeLimit (seconds) - wait before disconnect idle sessions
; Type: integer
; Default: 0
; Set to 0 to disable idle disconnection.
IdleTimeLimit=0

;; Policy - session allocation policy
; Type: enum [ "Default" | "UBD" | "UBI" | "UBC" | "UBDI" | "UBDC" ]
; "Default" session per <User,BitPerPixel>
; "UBD" session per <User,BitPerPixel,DisplaySize>
; "UBI" session per <User,BitPerPixel,IPAddr>
; "UBC" session per <User,BitPerPixel,Connection>
; "UBDI" session per <User,BitPerPixel,DisplaySize,IPAddr>
; "UBDC" session per <User,BitPerPixel,DisplaySize,Connection>
Policy=Default

[Logging]
; Note: Log levels can be any of: core, error, warning, info, debug, or trace
LogFile=xrdp-sesman.log
LogLevel=INFO
EnableSyslog=true
#SyslogLevel=INFO
#EnableConsole=false
#ConsoleLevel=INFO
#EnableProcessId=false

[LoggingPerLogger]
; Note: per logger configuration is only used if xrdp is built with
; --enable-devel-logging
#sesman.c=INFO
#main()=INFO

;
; Session definitions - startup command-line parameters for each session type
;

[Xorg]
; Specify the path of non-suid Xorg executable. It might differ depending
; on your distribution and version. Find out the appropreate path for your
; environment. The typical path is known as follows:
;
; Fedora 26 or later    :  param=/usr/libexec/Xorg
; Debian 9 or later     :  param=/usr/lib/xorg/Xorg
; Ubuntu 16.04 or later :  param=/usr/lib/xorg/Xorg
; Arch Linux            :  param=/usr/lib/Xorg
; CentOS 7              :  param=/usr/bin/Xorg or param=Xorg
; CentOS 8              :  param=/usr/libexec/Xorg
;
param=/usr/libexec/Xorg
; Leave the rest paramaters as-is unless you understand what will happen.
param=-config
param=xrdp/xorg.conf
param=-noreset
param=-nolisten
param=tcp
param=-logfile
param=.xorgxrdp.%s.log

[Xvnc]
param=Xvnc
param=-bs
param=-nolisten
param=tcp
param=-localhost
param=-dpi
param=96

[Chansrv]
; drive redirection
; See sesman.ini(5) for the format of this parameter
FuseMountName=thinclient_drives
; this value allows only the user to acess their own mapped drives.
; Make this more permissive (e.g. 022) if required.
FileUmask=077
; Can be used to disable FUSE functionality - see sesman.ini(5)
; Uncomment this line only if you are using GNOME 3 versions 3.29.92
; and up, and you wish to cut-paste files between Nautilus and Windows. Do
; not use this setting for GNOME 4, or other file managers

[ChansrvLogging]
; Note: one log file is created per display and the LogFile config value
; is ignored. The channel server log file names follow the naming convention:
; xrdp-chansrv.${DISPLAY}.log
;
; Note: Log levels can be any of: core, error, warning, info, debug, or trace
LogLevel=INFO
EnableSyslog=true

[ChansrvLoggingPerLogger]
; Note: per logger configuration is only used if xrdp is built with
; --enable-devel-logging

[SessionVariables]
PULSE_SCRIPT=/etc/xrdp/pulse/default.pa

not sure what additional configs are necessary for fedora to make it work. (polkit maybe?) Thanks!

[matt335672]

The obvious thing would be SELinux, but you say that's disabled.

Out-of-the-box, you'll need to edit /etc/pam.d/xrdp-sesman to get the necessary SELinux transition in place. We can get to that later.

A couple of initial questions:- 1) Is home directory creation working OK? 2) Presumably everything is OK if you log in on the console with GNOME and the elio.lopez@domain.org user?

Also, if you install xterm, there's a handy debugging aid in /usr/libexec/xrdp/startwm.sh. You can uncomment the exec xterm line near the start, and that should give you an interactive shell after the xrdp login you can use to poke around, check you've got a home directory, etc.

[matt335672]

@ElioLopez - any progress on this?