-
タイトル
Will Real VNC Server work with Authentication Services (QAS)? -
説明
Will Real VNC Server work with Authentication Services (QAS)? -
原因
Real VNC Server is in use and is reported to support Kerberos, LDAP and Pam authentication.
-
対策
This is possible with the below steps. This was tested on Real VNC Server version "realvnc-vnc-server-5.0.4.43666-1" on RHEL 5 with SeLinux and the Firewall turned off.
Requirements -
You need a version of Real VNC that supports local pam authentication on that machine. Please contact Real VNC to ensure you meet this requirement. Then the following steps need to be taken.
Create this file
/etc/vnc/config.d/common.customPut in this entry.
PamApplicationName=vncserver.customThen populate this file by coping /etc/pam.d/system-auth-ac.
/etc/pam.d/vncserver.custom
An example system-auth-ac is attached to this article.At this point you should be getting successful authentication messages in my /var/log/secure file but Real VNC msy still be denying access to your user.
Real VNC provided a GUI for adding users or groups to their allowed list. In VNC Server Options ensure 'Authentication' is set to 'Unix Password'. Then Click 'Configure'. Here you can add users or groups and set their VNC permissions. For additional assistance with this step please contact Real VNC for support.Once this is configured you should be able to access the machine remotely using Unix Enabled AD users and groups.
-
添付ファイル
-
追加情報
We do not provide support for Real VNC Server directly. We can however look at a pam stack to ensure it is expected to work properly.