First Last Prev Next    This bug is not in your last search results.
Bug 33884 - Thin Client lightdm/autologin fails if rdp/user not set
Thin Client lightdm/autologin fails if rdp/user not set
Status: CLOSED WORKSFORME
Product: Z_Univention Corporate Client (UCC)
Classification: Unclassified
Component: Image Thin Client
unspecified
Other Linux
: P5 enhancement
: UCC 2.0
Assigned To: Moritz Muehlenhoff
Erik Damrose
: interim-3
Depends on:
Blocks:
  Show dependency treegraph
 
Reported: 2014-01-09 14:24 CET by Michel Smidt
Modified: 2014-06-12 09:19 CEST (History)
2 users (show)

See Also:
What kind of report is it?: ---
What type of bug is this?: ---
Who will be affected by this bug?: ---
How will those affected feel about the bug?: ---
User Pain:
Enterprise Customer affected?:
School Customer affected?:
ISV affected?:
Waiting Support:
Flags outvoted (downgraded) after PO Review:
Ticket number:
Bug group (optional):
Max CVSS v3 score:

Attachments
Patch to set --no-nla in RDP autologin session of an guest-user (1.60 KB, patch)
2014-01-09 14:24 CET, Michel Smidt 		Details | Diff
RDP-autologin script (5.73 KB, application/x-shellscript)
2014-02-06 15:08 CET, Michel Smidt 		Details
RDP-autologin.desktop script (221 bytes, application/x-desktop)
2014-02-06 15:09 CET, Michel Smidt 		Details
RDP-autologin script (6.64 KB, application/x-shellscript)
2014-02-07 13:37 CET, Michel Smidt 		Details
Show Obsolete (1) View All Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description Michel Smidt 2014-01-09 14:24:44 CET 
Created attachment 5720 [details]
Patch to set --no-nla in RDP autologin session of an guest-user

Scenario:
- Join Thin Client in appliance mode
- Set policy in UMC for client without rdp/user:
  lightdm/autologin/session RDP
  lightdm/autologin yes
  rdp/server XXX
  rdp/domainname XXX
- Get Message: 
"You're currently logged in with a guest user account. This usually means
that the UCC system hasn't been joined into the UCS domain yet.

You can either 

* Join this system into the domain using univention-join
  and perform a user login using the <RDP> session 
* Specify a login for the Windows terminal server using the UCR
  variable rdp/user.
[...]"

It would be nice to disable network level authentication in this case to get ahead to the windows terminal server authentication.
XFreeRDP provides an flag (--no-nla) for this case.
Experimental Patch attached.
Comment 1 Michel Smidt 2014-02-06 15:08:15 CET 
Created attachment 5780 [details]
RDP-autologin script
Comment 2 Michel Smidt 2014-02-06 15:09:25 CET 
Created attachment 5781 [details]
RDP-autologin.desktop script
Comment 3 Michel Smidt 2014-02-06 16:14:48 CET 
There is a Cool Solution for this enhancement:
http://wiki.univention.de/index.php?title=Cool_Solution_-_Autologin_to_Terminalserver
Comment 4 Michel Smidt 2014-02-07 13:37:18 CET 
Created attachment 5784 [details]
RDP-autologin script
Comment 5 Moritz Muehlenhoff univentionstaff 2014-05-15 10:55:35 CEST 
This is no longer necessary in UCC 2.0. In UCC we have the new UCR variable lightdm/autologin/user which allows to configure the autologin user to a specific user, i.e. the same user used as in rdp/user.
Comment 6 Erik Damrose univentionstaff 2014-05-19 16:24:32 CEST 
Verified, but the UCRV rdp/checknla should be set to false if lightdm-autologin is used.
Comment 7 Moritz Muehlenhoff univentionstaff 2014-06-12 09:19:45 CEST 
UCC 2.0 has been released:
 http://docs.univention.de/release-notes-ucc-2.0.html

If this error occurs again, please use "Clone This Bug".
First Last Prev Next    This bug is not in your last search results.