Changes for page Remote Desktop Zugang

Last modified by Aysegül Omus on 2024/05/14 12:33
From version 1.1
edited by wikibot
on 2023/02/06 10:17
Change comment: Imported from foswiki
To version 5.1
edited by Aysegül Omus
on 2024/05/14 12:33
Change comment: There is no comment for this version

Summary

Details

Page properties
Title
... ... @@ -1,1 +1,1 @@
1 -RemoteDesktop
1 +Remote Desktop Access
Author
... ... @@ -1,1 +1,1 @@
1 -XWiki.wikibot
1 +XWiki.kahraman
Content
... ... @@ -1,144 +1,130 @@
1 -= Remote Desktop Access =
1 +{{toc/}}
2 2  
3 3  You can access the BlackBox Workplace via xrdp and the Remote Desktop Protocols (RDP).
4 4  
5 -You just need a RDP client. Those are available for all usuall operating systems. You can find a list down below.
5 +You just need a RDP client. Those are available for all usual operating systems. You can find a list down below.
6 6  
7 -The client needs to be late enough to support certificate based authentification and modern cypher suites. (##ciphers AES+aRSA:AES+aECDH:AES+aECDSA##)
7 +The client needs to be late enough to support certificate-based authentification and modern cipher suites. (##ciphers AES+aRSA:AES+aECDH:AES+aECDSA##)
8 8  
9 -Because of this a ssh tunel is not further needed.
10 -== Access Server ==
9 +Because of this a ssh tunnel is not further needed.
11 11  
11 += Access Server =
12 +
12 12  You can access the informatic workplace, as it is accessible in the RechnerHallen, via
13 13  
15 +{{code}}
14 14  
15 -{{html wiki="true"}}
16 -<blockquote>
17 -
18 18  lxhalle.in.tum.de</blockquote>
19 -{{/html}}
18 +{{/code}}
20 20  
21 -
22 -
23 23  To access the mathematics workplace, as it is available on the BlackBox systems, is accessible via
24 24  
22 +{{code}}
23 +ssh.ma.tum.de
24 +{{/code}}
25 25  
26 -{{html wiki="true"}}
27 -<blockquote>
26 +== Fingerprints ==
28 28  
29 -ssh.ma.tum.de</blockquote>
30 -{{/html}}
31 -
32 -
33 -=== Fingerprints ===
34 -
35 35  Depending on your client a visible certificate check is possible.
36 36  
30 +|=Zugangsserver|=Fingerprint
31 +|lxhalle.in.tum.de|{{code language="none"}}4c:ee:c1:05:58:96:8f:8c:66:e6:42:5e:1a:b7:95:d2:c1:88:63:98{{/code}}
32 +|ssh.ma.tum.de|{{code language="none"}}80:79:07:56:2f:c6:0b:67:a0:62:a6:f5:93:a8:5f:ac:09:3e:2a:93{{/code}}
37 37  
34 += Session =
38 38  
39 -{{html wiki="true"}}
40 -<table rules='none'> <thead> <tr><th>[[Zugangsserver>>https://xwiki.rbg.tum.de/bin/view/Informatik/Benutzerwiki/RemoteDesktop?sortcol=0;table=1;up=0#sorted_table]]</th><th>[[Fingerprint>>https://xwiki.rbg.tum.de/bin/view/Informatik/Benutzerwiki/RemoteDesktop?sortcol=1;table=1;up=0#sorted_table]]</th></tr> </thead> <tbody> <tr> <td>lxhalle.in.tum.de</td> <td> ##4c:ee:c1:05:58:96:8f:8c:66:e6:42:5e:1a:b7:95:d2:c1:88:63:98##</td></tr> <tr> <td>ssh.ma.tum.de</td> <td>
36 +After verification of the server, you have to provide your username and password to establish a session with your account.
41 41  
42 -##80:79:07:56:2f:c6:0b:67:a0:62:a6:f5:93:a8:5f:ac:09:3e:2a:93##</td></tr></tbody></table>
43 -{{/html}}
38 +This can either happen after connecting or if your client asks for it before that.
44 44  
40 +== Session restore ==
45 45  
46 -== Session ==
42 +A session can be held alive even if you aren't connected.
47 47  
48 -After verification of the server you have to provide your username and password to establish a session with you account.
44 +To achieve this use the xrdp-dis command or just close the window, please do not try to log out through menu {{html wiki="true"}}<span > Apllication -> logout</span>{{/html}} (Sometimes it's just closing it).
49 49  
50 -This can either happen after connecting or your client ask for before that.
51 -=== Session restore ===
46 +When you reconnect to your session it will be revived. This can happen from a completely different computer and also the resolution of the connection window will be adjusted.
52 52  
53 -A session can be hold alive even if you aren't connected.
48 += Executing applications multiple times =
54 54  
55 -To achieve this use the xrdp-dis command or just close the window, please do not try to log out through menu {{html wiki="true"}}
56 -<span > Apllication -> logout</span>
57 -{{/html}} (Sometimes it's just closing it).
50 +You can execute software multiple times, like in different rdp sessions or if you are logged into your account directly and have a rdp session open. Be aware that not all applications support this. If you receive a notification that your application is already open you need to close it in the other user session so you can reopen it in the wanted session.
58 58  
59 -When you reconnect to your session it will be revived. This can happen from a completly different computer and also the resolution of the connection window will be adjusted.
60 -== Executing applications multiple times ==
52 +== Know problematic software ==
61 61  
62 -You can execute software multiple times, like in different rdp session or if you are logged into your account directly and have a rdp session open. Be aware that not all applications support this. If you receive a notification that your application is already open you need to close it in the other user session so you can reopen it in the wanted session.
63 -=== Know problematic software ===
64 64  * Firefox
65 65  * Thunderbird
66 66  * Chromium
67 67  * Vivaldi
68 -* !LibreOffice
69 -Those - and other - applications warn you if you want to open them multiple times as the same user. This warnings can be correct(if you have multiple sessions open) but can also be the result of a incomplete shutdown of the program. Some software also offers to clean up the program folders so the program can be started again.
58 +* LibreOffice
70 70  
71 -Care: This can result to severe loss of data if the application is actually running!!
60 +Those - and other - applications warn you if you want to open them multiple times as the same user. These warnings can be correct(if you have multiple sessions open) but can also be the result of a incomplete shutdown of the program. Some software also offers to clean up the program folders so the program can be started again.
72 72  
73 -For Firefox and Thunderbird you can execute the scripts //repair//firefox.sh// and //repair//thunderbrid.sh.// Those clean up the locks that prohibit these to run multiple times.
62 +Care: This can result to severe loss of data if the application is running!!
74 74  
75 -== Troubleshooting ==
64 +For Firefox and Thunderbird you can execute the scripts {{code}}repair_firefox.sh{{/code}} and {{code}}repair_thunderbrid.sh{{/code}}. Those clean up the locks that prohibit these to run multiple times.
76 76  
77 -=== thinclinet_drives ===
66 += Troubleshooting =
78 78  
79 -Occasionally the Filemanager can show an error message when you try to find the home directory: Failed to open directory ... thinclient_drives: <>Transport endpoint is not connected<>
68 +== thinclinet_drives ==
80 80  
81 -This could happen when you have connected and disconnted the xrdp Server too often and does not release the directory thinclient_drives correctly. This Error could be fixed by giving the following command in the terminal:
70 +Occasionally the Filemanager can show an error message when you try to find the home directory: {{code language="none"}}Failed to open directory ... thinclient_drives: Transport endpoint is not connected{{/code}}
82 82  
83 -{{{
72 +This could happen when you have connected and disconnected the xrdp Server too often and do not release the directory thinclient_drives correctly. This Error could be fixed by giving the following command in the terminal:
84 84  
85 -
74 +{{code}}
86 86  $ fusermount -u ~/thinclient_drives
76 +{{/code}}
87 87  
78 +The directory thinclient_drives will be used as File- and clipboard share with the local computer (which is supported by the rdp client).
88 88  
89 -}}}
80 +The directory thinclient_drives also needs to be accessible for everyone, which means execution rights have to be given to unmount this. Please note this, when the home directory is protected. This could be the reason that the error message first occurred.
90 90  
91 -The directory thinclient_drives will be used as File- and clipboardshare with the local computer (which is supported by the rdp client).
82 +== immediately Log out from the application ==
92 92  
93 -The directory thinclient_drives also need to be acceseable for everyone, which means execution right has to be given in order to unmount this. Please note this, when the home directory is protected. This could be the reason that the error message first occurred.
84 +If your application terminates immediately despite the correct password, you can log in to the remote desktop Server via ssh and the Session with killall Xorg manually terminate.
94 94  
95 -=== immediately Log out from the application ===
96 -
97 -If your application terminate immediately in spite of the correct password, you can log in to the remote desktop Server via ssh and the Sesion with killall Xorg manual terminate.
98 -
99 -{{{
100 -
101 -
86 +{{code}}
102 102  $ ssh <Remote Desktop Server>
103 103  
104 104  ---
105 105  
106 106  <remote Desktop Server>$ killall Xorg
92 +{{/code}}
107 107  
94 += Safety measures =
108 108  
109 -}}}
96 +The RDP server authenticates itself by certificate to the client.
110 110  
111 -== Safety measures ==
112 -
113 -The RDP server authentificates itself by certificate to the client.
114 -
115 115  {{html wiki="true"}}
116 116  <span class='WYSIWYG_COLOR ' style='color:Red'>Care:</span>
117 117  {{/html}}
118 118  
119 119  Notifications about an errand certificate should never be ignored. Check the fingerprint (look above)!
120 -</span>
121 121  
122 -For access only TLSv1.1 and TLSv1.2 with following ciphers are allowed:
104 +For access only TLSv1.1 and TLSv1.2 with the following ciphers are allowed:
123 123  
124 -##openssl ciphers AES+aRSA:AES+aECDH:AES+aECDSA##
106 +{{code language="none"}}
107 +openssl ciphers AES+aRSA:AES+aECDH:AES+aECDSA
108 +{{/code}}
125 125  
126 126  Be sure the version of your RDP client support those.
127 127  
128 -== RDP Clients ==
112 += RDP Clients =
129 129  
130 -=== macOS ===
114 +== macOS ==
131 131  
132 - [[Microsoft Remote Desktop>>https://apps.apple.com/de/app/microsoft-remote-desktop/id1295203466?l=en&mt=12]]
133 -** Version 10 doesn't show fonts in the login window. Not further problematic since it does need your account data in the config. The login window just gets shown if your data is wrong. You can also use the login without fonts. No other problems known.
116 +[[Microsoft Remote Desktop>>https://apps.apple.com/de/app/microsoft-remote-desktop/id1295203466?l=en&mt=12]]
134 134  
135 -=== Linux ===
118 + Version 10 doesn't show fonts in the login window. Not further problematic since it does need your account data in the config. The login window just gets shown if your data is wrong. You can also use the login without fonts. No other problems are known.
136 136  
137 - [[KRDC>>http://www.kde.org/applications/internet/krdc/]]
120 +== Linux ==
121 +
122 +[[KRDC>>http://www.kde.org/applications/internet/krdc/]]
123 +
138 138  * [[Vinagre>>https://wiki.gnome.org/Apps/Vinagre/]]
139 139  * [[Remmina>>https://www.remmina.org/]] (Installed on the BlackBox)
140 -** For best performance configure ##RemoteFX (32 bpp)## as Color depth.
126 +* For best performance configure ##RemoteFX (32 bpp)## as Color depth.
141 141  
142 -=== Windows ===
128 +== Windows ==
143 143  
144 144  The RDP client is preinstalled on Windows. Just search for **Remotedesktop connection** or **Remotedesktopverbindung**