Version 7 - History - The ungleich VNC console - Open Infrastructure - ungleich redmine

The ungleich VNC console » History » Version 7

Jin-Guk Kwon, 01/31/2020 06:50 AM

-Jin-Guk Kwon
+h1. The ungleich VNC console
-Jin-Guk Kwon
+{{toc}}
-Jin-Guk Kwon
+h2. 1. System Architecture
 !archi.png!
-Jin-Guk Kwon
+h2. 2. Set guacamole server
 Jin-Guk Kwon
 - run cdist
 <pre>
 cd ~/.cdist; git pull; cdist config -bj7 -p9 -vv desktop.ungleich.ch
 </pre>
 - in manifest
 <pre>
 ……
 desktop.ungleich.ch)
-Jin-Guk Kwon
+        __guacamole_centos  --ldap-hostname 'ldap server url' \
-Jin-Guk Kwon
+          --ldap-port '636' \
           --ldap-encryption-method 'ssl' \
-Jin-Guk Kwon
+          --ldap-user-base-dn 'ou=XXX,dc=ungleich,dc=ch' \
-Jin-Guk Kwon
+          --ldap-search-bind-password ‘refer to pass' \
-Jin-Guk Kwon
+          --ldap-search-bind-dn 'cn=XXXXX,dc=ungleich,dc=ch' \
-Jin-Guk Kwon
+          --ldap-username-attribute 'uid' \
           --postgresql-hostname 'localhost' \
-Jin-Guk Kwon
+          --postgresql-username 'USER name' \
           --postgresql-database 'DB-name' \
           --postgresql-port     'XXXX' \
           --postgresql-password 'password' \
-Jin-Guk Kwon
+          --TOTP \
           --guacd-db 'postgresql'
 </pre>
-Jin-Guk Kwon
+h2. 3. Create VNC connection for VM
 Jin-Guk Kwon
 !g_con.png!
 h3. 1) install postgresql on opennebual server
 <pre>
 apt install postgresql-client
 </pre>
-Jin-Guk Kwon
+h3. 2) config postgresql for accessing from external host
 Jin-Guk Kwon
-Jin-Guk Kwon
+- vi /var/lib/pgsql/data/postgresql.conf on guacamole server(desktop)
 Jin-Guk Kwon
 <pre>
 listen_addresses = '*'
 </pre>
-Jin-Guk Kwon
+- vi /var/lib/pgsql/data/pg_hba.conf on guacamole server(desktop)
 Jin-Guk Kwon
 <pre>
 host    all         all            opennbula server address trust
 </pre>
-Jin-Guk Kwon
+- Restart postgresql
-Jin-Guk Kwon
+<pre>
 systemctl restart postgresql
 </pre>
-Jin-Guk Kwon
+h3. 3) set vnc connection automatically on opennebula server
 Jin-Guk Kwon
-Jin-Guk Kwon
+h4. (1) vnc connection script
 Jin-Guk Kwon
-Jin-Guk Kwon
+- vm_list_dual_uid : create VM list file(uid, email, VM Number, host, VNC port) (https://code.ungleich.ch/ungleich-public/ungleich-tools/blob/master/vm_list_dual_uid)
 Jin-Guk Kwon
-Jin-Guk Kwon
+- create-guacamole-session-ldap-db : create VNC connection on desktop (https://code.ungleich.ch/ungleich-public/ungleich-tools/blob/master/create-guacamole-session-ldap-DB)
 Jin-Guk Kwon
-Jin-Guk Kwon
+h4. (2) create crontab
 Jin-Guk Kwon
 <pre>
 crontab -e
 </pre>
 <pre>
 0,2,4,6,8,10,12,14,16,18,20,22 * * * ./vm_list_dual_uid #create vm_list
 0,2,4,6,8,10,12,14,16,18,20,22 * * * ./create-guacamole-session-ldap-db vm_vnc_list #create vm_list
 </pre>
 Jin-Guk Kwon
-Jin-Guk Kwon
+h2. 4. Monitoring VNC console
 - We are monitoring VNC console with prometheus.
 - run cdist __dcl_monitoring_server(update prometheus.yml)
-Jin-Guk Kwon
+h2. %{color:blue}※User VM information is synchronized with the VNC console every hour. If you create VM right now, you can access VNC console after one hour.(vnc connection script takes about 7~8 minutes.)%

Project

General

Profile

Open Infrastructure

The ungleich VNC console » History » Version 7