25

Guacamole, RDP, and Windows 10

guac-tricolor

Guacamole is a killer remote access tool with a metric crap ton of potential uses.  It uses an HTML5 interface to run things like remote desktop, SSH, and even telnet.  Seriously, give it a look.  http://guac-dev.org/

Well recently I tried to add rdp to a Windows 10 machine to my guacamole instance, and was unable to get it to connect.  After scouring the internet, I couldn’t find much info as to why, so I started looking into the rdp differences with the new OS.  Evidently MS cranked up the default encryption levels in Windows 10, and the rdp client within guac doesn’t yet support it.

The fix is not to just simply disable NLA.  There is a registry hack that must be changed, so pull out regedit.  Change the following key from 2 to 1.

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Terminal Server\WinStations\RDP-Tcp]
“SecurityLayer”=dword:00000001

After that, guac will successfully connect.  Hopefully this helps some other folks struggling with this issue.