Jun 24, 2021

CentOS v.7 : Apache Guacamole

 Apache Guacamole is a RDP to HTTP/HTTPS open source remote broker/gateway.

1. Install CentOS v.7.0 with Minimal Installation, follow all on-screen configurations accordingly.

2. During the install, configure the IP Address to Fixed/Manual and the hostname (eg. guacsvr).

3. Install the RPM Fusion repository :-

  • sudo yum install -y epel-release
  • sudo yum -y localinstall --nogpgcheck https://download1.rpmfusion.org/free/el/rpmfusion-free-release-7.noarch.rpm https://download1.rpmfusion.org/nonfree/el/rpmfusion-nonfree-release-7.noarch.rpm
4. Install some utilities :-
  • sudo yum install -y nano net-tools wget

5. Install MariaDB, Tomcat & Apache Guacamole dependencies :-
  • sudo yum install -y cairo-devel libjpeg-turbo-devel libwebsockets-devel libpng-devel uuid-devel ffmpeg-devel freerdp-devel pango-devel libssh2-devel libvncserver-devel pulseaudio-libs-devel openssl-devel libvorbis-devel libwebp-devel libtool libtelnet-devel freerdp mariadb-server tomcat

6. Download, Extract & Make Apache Guacamole Server (as of writing the latest version is 1.3.0, check for latest version at https://downloads.apache.org/guacamole/) :-
  • sudo wget https://downloads.apache.org/guacamole/1.3.0/source/guacamole-server-1.3.0.tar.gz
  • sudo tar -xzf guacamole-server-1.3.0.tar.gz
  • sudo wget https://downloads.apache.org/guacamole/1.3.0/binary/guacamole-1.3.0.war
  • cd guacamole-server-1.3.0
  • sudo ./configure --with-init-dir=/etc/init.d
  • sudo make install
  • sudo ldconfig && cd ~
  • cp ~/guacamole-1.3.0.war /var/lib/tomcat/webapps/guacamole.war
  • sudo firewall-cmd --permanent --add-port=8080/tcp
  • sudo firewall-cmd --reload
  • sudo systemctl enable tomcat && systemctl enable mariadb && systemctl enable guacd

7. Download & Install Connector, Extensions & Lib :-
  • sudo mkdir -p /usr/share/tomcat/.guacamole/{extensions,lib}
  • sudo wget https://cdn.mysql.com//Downloads/Connector-J/mysql-connector-java-8.0.24.tar.gz
  • sudo tar -xzf mysql-connector-java-8.0.24.tar.gz
  • cp mysql-connector-java-8.0.24/mysql-connector-java-8.0.24.jar /usr/share/tomcat/.guacamole/lib/
Extensions (select whichever you preferred) :-
  • sudo wget https://downloads.apache.org/guacamole/1.3.0/binary/guacamole-auth-jdbc-1.3.0.tar.gz
  • sudo wget https://downloads.apache.org/guacamole/1.3.0/binary/guacamole-auth-ldap-1.3.0.tar.gz
  • sudo tar -xzf guacamole-auth-jdbc-1.3.0.tar.gz
  • sudo tar -xzf guacamole-auth-ldap-1.3.0.tar.gz
  • cp guacamole-auth-jdbc-1.3.0/mysql/guacamole-auth-jdbc-1.3.0.jar /usr/share/tomcat/.guacamole/extensions/
  • cp guacamole-auth-ldap-1.3.0/guacamole-auth-ldap-1.3.0.jar /usr/share/tomcat/.guacamole/extensions/
  • sudo systemctl start mariadb && systemctl start tomcat

8. To secure MySQL server configurations :-

  • sudo mysql_secure_installation
  • Enter
  • Key-in your new password
  • When prompted = Yes, Yes, Yes, Yes

9. Configure MySQL DB :-
  • sudo mysql -u root -p
  • CREATE DATABASE IF NOT EXISTS guacdb DEFAULT CHARACTER SET utf8 COLLATE utf8_general_ci;
  • GRANT SELECT,INSERT,UPDATE,DELETE ON guacdb.* TO 'guacuser'@'localhost' IDENTIFIED BY 'guacpass' WITH GRANT OPTION;
  • flush privileges;
  • quit

10. Install Apache Guacamole Client :-
  • sudo wget https://downloads.apache.org/guacamole/1.3.0/source/guacamole-client-1.3.0.tar.gz
  • sudo tar -xzf guacamole-client-1.3.0.tar.gz
  • sudo cat guacamole-client-1.3.0/extensions/guacamole-auth-jdbc/modules/guacamole-auth-jdbc-mysql/schema/*.sql | mysql -u root -p guacdb
  • sudo mkdir -p /etc/guacamole
Create and configure guacamole properties :-
  • sudo nano /etc/guacamole/guacamole.properties
    • #MySQL properties
    • mysql-hostname: localhost
    • mysql-port: 3306
    • mysql-database: guacdb
    • mysql-username: guacuser
    • mysql-password: guacpass
    • #Additional settings
    • mysql-default-max-connections-per-user: 0
    • mysql-default-max-group-connections-per-user: 0
  • sudo chmod 0400 /etc/guacamole/guacamole.properties
  • sudo chown tomcat:tomcat /etc/guacamole/guacamole.properties
  • ls -alh /etc/guacamole/
  • ln -s /etc/guacamole/guacamole.properties /usr/share/tomcat/.guacamole/
  • sudo chown tomcat:tomcat /var/lib/tomcat/webapps/guacamole.war

11. Configure Time Zone for MySQL :-
  • sudo nano /etc/my.cnf
    • default-time-zone='+8:00'

12. Configure the Connector :-
  • sudo setsebool -P tomcat_can_network_connect_db on
  • sudo restorecon -R -v /usr/share/tomcat/.guacamole/lib/mysql-connector-java-8.0.24.jar

13. Restart the server.
  • sudo shutdown now -r

14. On another computer, open any internet browser
  • http://[Server IP]:8080/guacamole
  • Username = guacadmin
  • Password = guacadmin
! Important to change the password !


Posted by at No comments:
Labels: , ,

Apr 5, 2021

CentOS v.7 : List Existing User & Login History

To get User Listing.

 [root@server~]# get ent passwd

OR

[root@server~]# less /etc/passwd

OR

[root@server~]# cut -di -f1 /etc/passwd


To get Login History.

[root@server~]# last -120

OR

[root@server~]# cat /var/log/secure         *The "secure" file may have corresponding date.


Posted by at 1 comment:
Labels: , ,

Jan 29, 2021

Windows 10 : Enabled Edition Selection (Updated : 29-Jan-2021)

 An updated post on how to copy the "ei.cfg" file and make it a bootable ISO image file. The steps are abit longer than previous.

Assuming you already have the Windows 10 ISO image file downloaded from Microsoft website, for tutorial we will be using 1909 64-bit version only.

Also you need to download and install the following tools :

  1. 7Zip
  2. CDBurnerXP (or any preferred ISO burning software)
  3. Microsoft Windows 10 Assessment and Deployment Kit (ADK)
Note : Download the corresponding architecture of your computer (eg. 32-bit or 64-bit).


1. Download & Install Microsoft Windows 10 Assessment and Deployment Kit (ADK).
  • Select and install only --> Deployment Tools.
  • Others can be unselected.

2. Create a temporary working folder.
  • Create a folder --> C:\Win10Mod
  • Create a sub-folder --> C:\Win10Mod\iso

3. Copy ADK command file to temp folder.
  • Copy --> C:\Program Files (x86)\Windows Kits\10\Assessment and Deployment Kit\Deployment Tools\amd64\Oscdimg\oscdimg.exe
  • To --> C:\Win10Mod\*.*

4. Use 7Zip to extract the downloaded Win10 ISO file.
  • Extract to --> C:\Win10Mod\iso\*.*

5. Create or Copy the "ei.cfg" file.
  • To create a blank "ei.cfg" file --> Open --> Notepad.
  • And type either of the following configurations as per below screenshot :
  • Save as file --> C:\Win10Mod\iso\sources\ei.cfg
Note : If you have both 32-bit & 64-bit of the ISO, please copy to their corresponding folders (eg. C:\Win10Mod\iso\x86\sources\*.*     AND     C:\Win10Mod\iso\x64\sources\*.*


6. Create new ISO file with ei.cfg
  • Run as admin --> CMD
  • Type --> oscdimg -lWin10Mod -m -o -u2 -udfver102 -bootdata:2#p0,e,bC:\Win10Mod\iso\boot\etfsboot.com#pEF,e,bC:\Win10Mod\iso\efi\microsoft\boot\efisys.bin C:\Win10Mod\iso C:\Win10Mod\Win10_1909_Mod.iso
  • Wait for it to complete.
Note : Modify the path accordingly. You can also change the iso filename as per your preferences.


7. Burn the ISO to DVD.
  • Open --> CDBurnerXP
  • Select --> Burn ISO image
  • Browse for the new ISO file --> C:\Win10Mod\Win10_1909_Mod.iso
  • Continue and wait until complete.
Note : You can also use any of your preferred DVD burning tools.


8. Double check the contents.
  • Once completed, you can browse the contents of the DVD for "ei.cfg" file which was copied/created in E:\sources\ei.cfg     OR     E:\x86\sources\ei.cfg     OR     E:\x64\sources\ei.cfg
Note : Assuming [E:] drive is the optical drive.



!!! HAPPY COMPUTING !!!

Posted by at 1 comment:
Labels: , ,
Subscribe to: Posts (Atom)