prasenjitmass Respected Contributor.
Respected Contributor.
74 views

Windows RDP Relay not working in PAM3.6

Hi,

I've configured PAM 3.6 for windows RDP Relay. Connected with AD, access credential "cesu\administrator". While tried to run the downloaded .rdp extention file , system is giving error "This computer cannot connect to remote computer". I've done host entry of pamserver in the desktop where I've run the pam myaccess user console. 

Please find the attached screenshot . Log details are as below

Fri Jul 26 14:03:04 2019, 238, 1921046272, 20540, Info, auth renew client:localhost rc:0 status:0 (2ms)
Fri Jul 26 14:03:04 2019, 451, 1874511616, 20540, Info, admin logSession client:netiqpam user:admin@netiqpam(192.168.19.70) rc:0 status:0 (0ms)
Fri Jul 26 14:06:16 2019, 394, 1918940928, 20540, Info, auth renew client:localhost rc:0 status:0 (2ms)
Fri Jul 26 14:06:16 2019, 506, 1874511616, 20540, Info, admin logSession client:netiqpam user:admin@netiqpam(192.168.19.70) rc:0 status:0 (1ms)
Fri Jul 26 14:13:06 2019, 498, 1918940928, 20540, Info, prvcrdvlt getVault client:localhost rc:0 status:200(Resource details of 1c531428-3520-4649-bef6-39ebdbb2026e returned successfully.) (1ms)
Fri Jul 26 14:13:06 2019, 499, 1918940928, 20540, Info, auth renew client:localhost rc:0 status:0 (4ms)
Fri Jul 26 14:13:06 2019, 611, 1921046272, 20540, Error, Peer authorization error pamuser@netiqpam accessing admin.logSession
Fri Jul 26 14:14:34 2019, 368, 1918940928, 20540, Error, Error -5 finalising zlib stream
Fri Jul 26 14:14:34 2019, 369, 1918940928, 20540, Error, Failed to load node from binary represenatation
Fri Jul 26 14:14:34 2019, 369, 1918940928, 20540, Error, Invalid authentication token signature
Fri Jul 26 14:17:12 2019, 72, 1921046272, 20540, Warning, Message occurred 36 times: Error (1) accepting SSL connection from 192.168.19.70...
Fri Jul 26 14:17:12 2019, 72, 1921046272, 20540, Info, cmdctrl getEntriesSvc client:netiqpam rc:0 status:0 (4ms)
Fri Jul 26 14:17:12 2019, 82, 1918940928, 20540, Warning, Message occurred 36 times: SSL_accept: error ssl...
Fri Jul 26 14:17:12 2019, 82, 1918940928, 20540, Info, prvcrdvlt getCredential client:localhost rc:0 status:200(Credential details of af3a9d50-98d6-4120-8fa2-452cf1ad7d19 returned successfully.) (7ms)
Fri Jul 26 14:17:12 2019, 82, 1918940928, 20540, Warning, Message occurred 36 times: SSL Error: error:14094416:SSL routines:ssl3_read_bytes:sslv3 alert certificate ...
Fri Jul 26 14:17:12 2019, 82, 1918940928, 20540, Info, cmdctrl request accepted for ' RDP_Rule' from pamuser@192.168.19.70 as cesu\Administrator@192.168.19.199
Fri Jul 26 14:17:12 2019, 83, 1918940928, 20540, Info, cmdctrl checkAuth client:localhost rc:0 status:0 (126ms)
Fri Jul 26 14:17:12 2019, 85, 1918940928, 20540, Error, Service lookup failed: 500 no peer
Fri Jul 26 14:17:12 2019, 279, 1918940928, 20540, Warning, Peer certificate [CN = cesuad] has expired: Mon Jul 22 14:11:05 2019
Fri Jul 26 14:17:12 2019, 279, 1918940928, 20540, Warning, Peer certificate [CN = cesuad] has expired: Mon Jul 22 14:11:05 2019
Fri Jul 26 14:17:12 2019, 368, 1918940928, 20540, Info, rdprelay authSession client:localhost rc:0 status:0 (413ms)
Fri Jul 26 14:17:18 2019, 650, 1874511616, 20540, Info, rdp client:192.168.19.70 rc:0 status:0 (2047ms)
Fri Jul 26 14:17:19 2019, 504, 1851696896, 20540, Info, regclnt getSessionCache client:netiqpam rc:0 status:0 (1ms)
Fri Jul 26 14:17:19 2019, 517, 1874511616, 20540, Info, regclnt modSessionCache client:netiqpam rc:0 status:0 (1ms)

 

Thank you 

0 Likes
2 Replies
prasenjitmass Respected Contributor.
Respected Contributor.

Re: Windows RDP Relay not working in PAM3.6

Anyone please help me.
0 Likes
Micro Focus Expert
Micro Focus Expert

Re: Windows RDP Relay not working in PAM3.6

Please check the following for more details:
https://www.netiq.com/support/kb/doc.php?id=7017886
0 Likes
The opinions expressed above are the personal opinions of the authors, not of Micro Focus. By using this site, you accept the Terms of Use and Rules of Participation. Certain versions of content ("Material") accessible here may contain branding from Hewlett-Packard Company (now HP Inc.) and Hewlett Packard Enterprise Company. As of September 1, 2017, the Material is now offered by Micro Focus, a separately owned and operated company. Any reference to the HP and Hewlett Packard Enterprise/HPE marks is historical in nature, and the HP and Hewlett Packard Enterprise/HPE marks are the property of their respective owners.