How to specify username on VNC Connection

[Luís Aurélio Casoni]

Hello,

I am using the noVNC on master branch, to try to connect on my Mac Cloud Leased device. The cloud provider does get a vnc protocol link, to open in a Remmina. But the reminna is very slow.

I have open the VNC Client Server using the command:

./utils/novnc_proxy --vnc 51.159.121.6:5900

The command executes successfuly, showing me a URL. The URL opens normally asking for autentication:

Using local websockify at /home/aurelio/Programs/noVNC/utils/websockify/run

Starting webserver and WebSockets proxy on port 6080

Navigate to this URL:

http://aurelio-inspiron3576:6080/vnc.html?host=aurelio-inspiron3576&port=6080

Press Ctrl-C to exit

On press the connect button, the page asks for password. I input the correct password, but the page says:

A nova conexão foi rejeitada pelo motivo: Authentication or authorization failure

Viewing the cloud provider documentation, the doc says what all VNC connections does specify the user  "m1". But I does not view any manner to input the user. Is possible to specify the user in noVNC?

Regards,

[Pierre Ossman]

On 18/05/2022 15:52, Luís Aurélio Casoni wrote:
>
> Viewing the cloud provider documentation, the doc says what all VNC
> connections does specify the user "m1". But I does not view any manner to
> input the user. Is possible to specify the user in noVNC?
>

Yes and no. Standard VNC only has a password. But there are many
extensions to the protocol that also support a username. noVNC supports
Tight, XVP and VeNCrypt PLAIN¹. If the server supports any of those, you
will get a prompt that also includes the username.

Since you aren't getting a prompt, it seems that there is no overlap of
what extensions the server supports, and what noVNC supports. The fact
that it prompts you for just a password suggests that there is some
fallback password available. Otherwise, the connection should just
terminate, stating that there are no compatible authentication methods.
This password might be a different one, though.

¹ Apple Remote Desktop and Real VNC's RSA-AES are also available in the
development version

Regards
--
Pierre Ossman Software Development
Cendio AB https://cendio.com
Teknikringen 8 https://twitter.com/ThinLinc
583 30 Linköping https://facebook.com/ThinLinc
Phone: +46-13-214600

A: Because it messes up the order in which people normally read text.
Q: Why is top-posting such a bad thing?

[Luís Aurélio Casoni]

Hello Pierre,

How can enable the Apple Remote Desktop and Real VNC's RSA-AES? Migrating for another branch? I am using the Git version, no the snap version.

Thanks,

Luís Aurélio Casoni

[Pierre Ossman]

On 18/05/2022 16:45, Luís Aurélio Casoni wrote:
> Hello Pierre,
>
> How can enable the Apple Remote Desktop and Real VNC's RSA-AES? Migrating
> for another branch? I am using the Git version, no the snap version.
>

They are always enabled, so in that case it would seem your cloud
provider isn't using any of those methods either.

If you enable debug logging in noVNC's settings, you'll get a log line
in the browser console that lists the authentication methods the server
claims to support. There will be a line starting with “Server security
types:”.

[Luís Aurélio Casoni]

Hello Pierre,

The console outputed the information when the page is asked for password:

Server ProtocolVersion: 003.889 rfb.js:1290:13
Sent ProtocolVersion: 003.008 rfb.js:1330:13
Server security types: 30,33,36,2,35 rfb.js:1349:17

Can I enable an additional protocol?

Luís Aurélio Casoni

[Pierre Ossman]

On 18/05/2022 17:01, Luís Aurélio Casoni wrote:
> Hello Pierre,
>

> The console outputed the information when the page is asked for password:
>
> Server ProtocolVersion: 003.889 rfb.js:1290:13
> Sent ProtocolVersion: 003.008 rfb.js:1330:13
> Server security types: 30,33,36,2,35 rfb.js:1349:17
>
> [image: image.png]
>
> Can I enable an additional protocol?
>

Hmmm... It seems our logic for selecting type is a bit too arbitrary. We
probably need to fix that.

Right now, it will pick classic VNC authentication (2), over Apple's
authentication (30).

I'm afraid there are no settings for this, so either you poke around in
noVNC's _negotiateSecurity() function, or you see if you can disable
classic VNC authentication in the server.

[Luís Aurélio Casoni]

Hello Pierre, sorry for my delayed response.

Disable the classic VNC Authentication is not a option, then the server is managed by the Hosting provider, and I not can access it without VNC, and the Remmina program does not interact to interface.

About the _negotiateSecurity() function, do you means to preset the _rfbAuthScheme value on my noVNC copy, correct?

Thanks for your attention,

Luís Aurélio Casoni

[Pierre Ossman]

On 29/05/2022 15:24, Luís Aurélio Casoni wrote:
> Hello Pierre, sorry for my delayed response.
>
> Disable the classic VNC Authentication is not a option, then the server is
> managed by the Hosting provider, and I not can access it without VNC, and
> the Remmina program does not interact to interface.
>
> About the _negotiateSecurity() function, do you means to preset the
> _rfbAuthScheme value on my noVNC copy, correct?
>
> [image: image.png]
>
>

Yes. Or change the order of those until ARD is before VNC Auth.

I've also fixed this properly now in the development version, so the
next release should work fine out-of-box.

[Luís Aurélio Casoni]

Okay Pierre,

Next time when I test the Mac Cloud Leased, i will test again.

Thanks for your help.

Luís Aurélio Casoni

[OM S]

Dear All

I am unable to open expand and accept the Sap license agreement on novnc console.

Kindly refer the attachment screenshot for your reference. 

Kindly assist me here.

--
You received this message because you are subscribed to the Google Groups "noVNC" group.
To unsubscribe from this group and stop receiving emails from it, send an email to novnc+un...@googlegroups.com.
To view this discussion on the web visit https://groups.google.com/d/msgid/novnc/CAEjo_rpY11Wrrga0OnyAmN_T%3DDofXGAPB1oJ7get1m%3Dpmu3gnA%40mail.gmail.com.