Tiger VNC with LDAP
32 views
Skip to first unread message
Sujith Samuel
Sep 3, 2025, 8:31:23 AMSep 3
to TigerVNC User Discussion/Support
Hello Team,
I am trying to get Tiger VNC working with LDAP. On an RHEL 9 VM where I have already configured SSSD. I can login to this with my org LDAP account.
I am starting VNC with the below systemd unit
[Unit]
Description=Remote desktop service (VNC) for samuel
After=syslog.target network.target
[Service]
Type=forking
User=samuel
Group=samuel
WorkingDirectory=/home/samuel
# Clean any existing vncserver sessions
ExecStartPre=/bin/sh -c '/usr/bin/vncserver -kill %i > /dev/null 2>&1 || :'
# Start VNC server with PAM authentication
ExecStart=/usr/bin/vncserver %i
PIDFile=/home/samuel/.vnc/%H%i.pid
# Clean up when stopping
ExecStop=/bin/sh -c '/usr/bin/vncserver -kill %i > /dev/null 2>&1 || :'
[Install]
WantedBy=multi-user.target
and the pam module which I am using in my VNC config is
auth include password-auth
account include password-auth
session include password-auth
[Unit]
Description=Remote desktop service (VNC) for samuel
After=syslog.target network.target
[Service]
Type=forking
User=samuel
Group=samuel
WorkingDirectory=/home/samuel
# Clean any existing vncserver sessions
ExecStartPre=/bin/sh -c '/usr/bin/vncserver -kill %i > /dev/null 2>&1 || :'
# Start VNC server with PAM authentication
ExecStart=/usr/bin/vncserver %i
PIDFile=/home/samuel/.vnc/%H%i.pid
# Clean up when stopping
ExecStop=/bin/sh -c '/usr/bin/vncserver -kill %i > /dev/null 2>&1 || :'
[Install]
WantedBy=multi-user.target
and the pam module which I am using in my VNC config is
auth include password-auth
account include password-auth
session include password-auth
My VNC config is
session=gnome
geometry=1280x720
securitytypes=TLSPlain
PAMService=vncserver
alwaysshared
With these the systemd service starts but when i try loggin in, I get invalid username/password message.
session=gnome
geometry=1280x720
securitytypes=TLSPlain
PAMService=vncserver
alwaysshared
With these the systemd service starts but when i try loggin in, I get invalid username/password message.
Is there any setting which I am missing.
Thanks,
Sujith Samuel
Pierre Ossman
Sep 4, 2025, 8:15:14 AMSep 4
to Sujith Samuel, TigerVNC User Discussion/Support
On 03/09/2025 14:31, Sujith Samuel wrote:
>
> With these the systemd service starts but when i try loggin in, I get
> invalid username/password message.
>
> Is there any setting which I am missing.
>
Your settings look correct as far as I can tell. Getting PAM
>
> With these the systemd service starts but when i try loggin in, I get
> invalid username/password message.
>
> Is there any setting which I am missing.
>
authentication to work as a regular user can sometimes be problematic,
but I think sssd should be fine.
Have you checked the system logs to see why PAM/sssd is rejecting the user?
Regards,
--
Pierre Ossman Software Development
Cendio AB https://cendio.com
Teknikringen 8 https://twitter.com/ThinLinc
583 30 Linköping https://facebook.com/ThinLinc
Phone: +46-13-214600
A: Because it messes up the order in which people normally read text.
Q: Why is top-posting such a bad thing?
Reply all
Reply to author
Forward
0 new messages