- This topic has 1 reply, 2 voices, and was last updated 4 years, 9 months ago by
.
-
Posts
-
Hello,
For starters, we’re looking to implement basic laptop-to-workstation (client-to-server) remote desktop connections. Our environment uses kerberos auth via SSSD and AD. (Further details at the bottom of the post).
The kerberos docs for NoMachine make it seem as though the workstation needs to act as a sort of kerberos server (requesting that we install krb5-admin-server and create a new realm (or administrative domain).
Can we use the existing realm / existing administrative domain with NoMachine + kerberos auth, or is that not possible? We don’t really want our workstations to be operating their own kerberos servers.
I’m not 100% well-versed in kerberos auth, so I may be missing something here. Thanks for your help, and let me know if you have any questions.
* connections will be linux-to-linux w/Ubuntu 18.04 and NoMachine enterprise 6.7.6. we’re using gnome on X (not wayland).
Hello Jim,
It’s not necessary for your workstation to be running kerberos server. It’s only required that NoMachine client host and NoMachine server host are properly configured members of the same, already existing, kerberos realm. Make sure that NoMachine player has access to valid kerberos ticket and that kerberos authentication is enabled in server.cfg on NoMachine server host.
Closed because the user did not provide further feedback. Please notify us if you confirm that it is resolved or open a new topic if you have the same problem.