-
Notifications
You must be signed in to change notification settings - Fork 81
Requirements
Zer0CoolX edited this page Oct 21, 2019
·
5 revisions
The Apache Guacamole install script for RHEL 7 and CentOS 7 has a handful of requirements to successfully implement.
Be sure to read the Requirements section of the README and the Warnings section of the Wiki.
As for some prerequisites:
- It is important to test the script first in a test envirnoment. I recommend a VM with a snapshot taken prior to running the script.
- Be sure to read all the documentation and understand how the script works.
Installation Requirements:
- Install RHEL 7.x or CentOS 7.x and up using either minimal install or Server with GUI. I only test the script on the latest version of RHEL 7.x and CentOS 7.x so older versions of 7.x may or may not work.
-
wgetinstalled if downloading the Guacamole install scriptguac-install.shfrom this repo. - The server must have internet access to download the script and files required by Apache Guacamole that are acquired and installed by this script.
- Sudo or root access on the RHEL or CentOS server, script requires being run as sudo/root.
- If using RHEL, an activated subscription for access to its repos.
- No prior Guacamole installation or configuration including for its major dependent packages like Nginx, Tomcat, mariaDB, etc. IE: if the script fails, you cannot simply re-run it!
- SELinux must be enabled and in "Enforcing mode" or the script will not run.
Additional Options Requirements:
- If using LDAP for primary authentication you will need a functional AD/LDAP server, a user with permissions to view/read entities in AD/LDAP and the proper parameters to connect to AD/LDAP. See the wiki post on LDAP.
- If using LDAPS, it is assumed the AD/LDAP server is already configured for LDAPS and that a certificate has been generated and exported as a
.cerfile.pemcan work as well in some circumstances). This certificate must be copied to a local directory on the server. See the wiki post on LDAPS.
- If using LDAPS, it is assumed the AD/LDAP server is already configured for LDAPS and that a certificate has been generated and exported as a
- If using Let's Encrypt for an SSL cert you will need a public domain and need to have your network setup so that the Guacamole server has ports 80 and 443 (on the network equipment) opened/forwarded from the internet to the Guacamole server. Its best to setup a simple HTTP server on another box and verify that your public domain works prior to running the script.
- If using a custom Guacamole extension, the extension must be in
.jarfile format and must be in a local folder on the server you run the script on.
Notes
Be aware that these requirements may change, without warning. As such, its important to always use the most recent version of the Apache Guacamole install script available.
- Home
- Script Information
- Installation
- Primary Authentication
- Secondary Authentication
- Options
- Help