Nomachine Authentication Failed Please Try Again

Jan 6, 2022 at 11:43 #25098

Hi everybody,

I'grand trying to remotely access a Linux auto (server, Mint 19.2 (Tina) Cinnamon) through my (gaming) PC which is a Windows machine (customer, 10 Pro x64). And then if this is supposed to be in the Windows subforum I'm sorry. Maybe a mod or admin could place it there if this is the instance!?

And so I can't login on my Linux machine from my Windows automobile. NoMachine (I'chiliad using the free version) shows the Linux auto, so that's non the trouble. Just when I endeavour to login with the credentials of my Linux automobile I go the fault: "Authentication failed, please try once again.".

And then I edited the server.cfg file (first only on the Linux machine, later on both) and inverse these settings:
#EnableUserDB one
#
EnablePasswordDB 1

at the bottom of the server.cfg file:
# Host      192.168.1.12
# Port      4000
# User      *****
# Password  *********

Just I'm still getting the aforementioned error. I too added a new user on the Linux motorcar in the terminal with this control:
sudo /usr/NX/bin/nxserver –useradd *****

I also restarted the server in between each modify. What am I still missing?

And besides, how can I restore the settings.cfg file back to default? I know… I should have made a duplicate (back upwardly) before editing it, just I forgot.

Reason I'm asking this last matter, is because I think I used the wrong username of my Linux machine when I tried to login. So I could besides even so endeavor that with the parameters in the settings.cfg returned to default. But I would like to learn how to change the login credentials regardless every bit I experience this might be useful in the time to come.

Hope somebody can assistance me out, thank you in advance! 🙂

January 7, 2022 at 17:45 #25138

So someone on Reddit told that I should remove the brackets, then I did and now information technology looks similar this:

#
# When WebRTC is enabled, fix parameters for STUN/Turn utilities to
# permit NAT traversal for peer to peer direct video, sound and data
# streaming. Supervene upon 'hostname' and 'portnumber' with the ip or host
# name of the network server; supplant 'username' and 'password' with
# username and password to be used for authenticating to such server.
# If a Turn server has to be contacted, duplicate section below, set
# it to Section "Turn" and provide the appropriate values for Host,
# Port, User and Countersign parameters. Ascertain multiple sections for
# different STUN or TURN servers to provide an culling server
# in case the get-go of the list is not reachable.
#
# Section "STUN"
#
Host          192.168.1.12
Port           4000
User          username
Password  countersign
#
# EndSection

Simply it still doesn't piece of work. So I must still be doing something wrong. Even the server on my Linux Motorcar gives the hallmark error now:

Hope somebody can aid me out…

January 8, 2022 at eleven:53 #25154

Hello

First thing nearly NoMachine config, the information you lot got is correct, when you ready it like that:

            #EnableUserDB one # EnablePasswordDB ane          

Even if you change the EnableUserDB key to one, the whole line is still treated as comment line and ignored. Yous need to become rid of '#' character for config line to be parsed.

Second, at the bottom of the config file, the Section "Server" and Section "STUN" are only when you are connecting to the server using spider web interface (ordinarily through a web browser) and non NoMachine player application. And for standard usage the modifications here are usually
non required.

As well if you are using free version, the HTTP protocol is disabled, and then those fragments can be merely ignored.

Then for the config file backups, I'thousand afraid in that location is no style to restore it in like shooting fish in a barrel way. We provide some generic cfg.sample files, but the chief .cfg are created during the installation procedure depending of operating system configuration. In other words, you tin restore some of the keys by comparison
.cfg to .cfg-sample files, just the most of import ones have to exist created on installation.

And for the problem. Office of information technology of course may be that currently you take EnableUserDB key commented and past default it is set to 0. Although when EnablePasswordDB is set to 1 it should not provide the problem with login.

First what does EnablePasswordDB exercise. If it is fix to 0, you can connect to the NoMachine server using any user account that is on that operating organization by providing its username and system password.
When y'all set it to 1, by default you will not be able to connect at all.

So by doing 'sudo /usr/NX/bin/nxserver –useradd *****' you lot have provided the NoMachine database with the user.
When doing so y'all should have been prompted past the:

            nxserver --useradd test NX> 906 Setting password for user: test. NX> 251 Password: NX> 102 Confirm password: NX> 110 Countersign for user 'test' has been added to the NX password DB.          

And now, as long as EnablePasswordDB is set to 1, you need to provide this new password to connect.

In that location is a problem though, if you added that user before setting EnablePasswordDB to 1, there would have
been no new password prompt, and the user would non accept its NoMachine password provided.
You would need to do the useraddd command again to fix it.

At that place is one exception to this, when using SSH connection protocol yous still need to provide system password as per the SSH configuration, then after this you will be again prompted by the NoMachine countersign question.

Then for now please try those things:

1. Remove the '#' from server.cfg '#EnableUserDB ane' line.

2. Run 'sudo /usr/NX/bin/nxserver –useradd <username>' again and run into if you have password prompt, if yes, please
provide it and use that password to login. Be certain y'all are using NX protocol.

iii. If even so no utilize delight run 'sudo /usr/NX/bin/nxserver –passwd <username>' and set new password again, just to rule
out in that location was no typos, and use that password to login.

4. If it all the same does non piece of work, please set in server.cfg

EnableUserDB 0
EnablePasswordDB 0

And try to login using the system credentials.

v. If that attempt as well fails, there may be more to this problem, and nosotros would like to see the logs as there might me unexpected bug backside this.

Commodity on how to collect logs:

https://www.nomachine.com/DT10O00163 ("How to gather debug logs for support requests")

Please enable the debug and then endeavour to login again and send the logs to forum[at]nomachine[dot]com using the championship of that forum's thread equally the mail's subject.

/Mth

January 11, 2022 at 09:12 #25192

How-do-you-do,

Thanks for the reply! I'thou enlightened of the differences between STUN and Server, I just copied the wrong part. Only since every post has to await moderation I couldn't edit it anymore.

Logging in with system credentials simply doesn't work (with EnableUserDB and EnablePasswordDB ready to: 0). I want to control my Linux auto remotely, so I checked my username with the command: whoami (= oem (no inkling why, haven't called this myself)

I have to use my password ofttimes in Linux for certain proceedings, so in that location can't actually get much wrong there I experience (cypher?).

2. Run 'sudo /usr/NX/bin/nxserver –useradd <username>' over again and see if you have password prompt, if yes, please
provide information technology and use that password to login. Be sure yous are using NX protocol.

After that I get:
[sudo] password for oem:

Once I fix that information technology seems to exist proficient. I get a lot of info, just no errors or such it seems. At the bottom it says: Run a new nxserver trounce.
When I run NoMachine server on the Linux machine it looks like this:

So information technology does mention 'Changes disabled' at the left bottom. I don't feel that ever has been there.

When I endeavor to login on the Windows customer at present I get the same error. Just to be clear… I edited the server.cfg fiel on both machines the same style! I assume that this is right?!

four. If it still does not work, please fix in server.cfg

When changing EnableUserDB and EnablePasswordDB back to 0 (cypher) and endeavour to login using the system credentials (so user: oem + password) I too still get the same error.
Over again to be sure, I inverse both server.cfg files. The one on the Linux automobile (server) and the Windows machine (client). And merely before EnableUserDB, EnablePasswordDB and the server details I removed the # symbol. All the other text still has the # symbol in front of each line.

I fabricated a compressed archive of the .nx directory and I volition e-mail this. There is no nxtrace.log nowadays/generated.

January 13, 2022 at 09:xiii #25193

I just now see that I get an error for this command:
sudo /usr/NX/bin/nxserver –useradd <username>

After I try to set the password I get the following fault:
NX> 500 Fault: Invalid control: '-useradd'

Then followed by a lot info nigh the various commands and options. So in hindsight, something has gone wrong at this step information technology seems…

January 13, 2022 at 16:29 #25214

Hello

I'thou lamentable, this forum seems to alter double "-" signs to this big "–" when not written in code tags. The commands to apply are:

            sudo /usr/NX/bin/nxserver --useradd <username> sudo /usr/NX/bin/nxserver --passwd <username>          

Merely it seems this does not matter in this instance.

I'k sorry I take non noticed before, but on that screenshot you sent you are in a completely wrong page.

This is not an connection endeavour to the remote machine. This is an attempt to change settings on the server for the local automobile.
If you lot click on this "lock icon" and the "Changes disabled", you should become prompt for the local ambassador account and password to enable the
settings changes, aforementioned if you try to change annihilation.

I am really not sure what is the case here, but to connect to another auto please utilize "New connexion" instead of "Service status"
screen from the monitor tray icon, or utilise 'nxplayer' application.

/Mth

January 15, 2022 at 09:07 #25233

I'thousand deplorable I take non noticed earlier

No problem of course!

This is non an connection endeavour to the remote automobile. This is an attempt to change settings on the server for the local machine.

That is right, simply since I noticed that "Changes disabled" lock icon in that location. Which I never seen before, I thought I made a screenshot of that.

A screenshot of the Windows Customer saying "Hallmark failed, please endeavour again." didn't seem necessary to mail service here.

I'm not quite sure what yous mean with "use New connection" or the "nxplayer" application. Here are two screenshots of what I'k seeing in the Windows client:

So nothing strange there, except the error of form. I emailed the log similar you said. Take you whatsoever idea what kind of ETA I can look on an answer?

Cheers again for the answer!

Attachments:

January 15, 2022 at 17:15 #25243

Hello.

The histrion logs had nix actually meaningful, and then I think we need the server side logs here.

Please bank check the arrangement logs. For mint arrangement the /var/log/auth.log should
say if the logging attempt was blocked by the organisation (entries for nx:auth).

Also as the nx service uses su module for authorization, please provide u.s. the /etc/pam.d/su module
configuration. Also please note that if potency uses Kerberos tool, you need to specify it before
connecting in the player (connection details -> advanced).

And at last please provide the NoMachine server logs. As your server is on Linux, delight refer to point
'1.1. Server on Linux' of the commodity
https://www.nomachine.com/DT10O00163

Please enable logs, try to connect and and so gather the logs. Send them to us merely like before.

/Mth

Jan 27, 2022 at 08:46 #25381

Howdy,

Sorry for the belatedly response.

I tried to practise what you lot said. In var/log there is no auth.log file…

I can't notice 'connection details/advanced' in the player (that is the Windows client right?)

I used the following command equally mentioned in the 'How to assemble debug logs for support requests' from the Noesis Base of operations.:

oem@Zenith:~$ sudo tar cvfz NoMachine-log.tar.gz /usr/NX/var/log
[sudo] password for oem:
tar: Removing leading `/' from member names
/usr/NX/var/log/
/usr/NX/var/log/archives/
/usr/NX/var/log/nxd.log
/usr/NX/var/log/logrotate/
/usr/NX/var/log/node/
/usr/NX/var/log/nxinstall.log
/usr/NX/var/log/nxserver.log
/usr/NX/var/log/nxerror.log
oem@Zenith:~$

This produced the following files and folders (if not already present before I executed the command):

folders: archives, logrotate, node
files: nxd, nxerror, nxinstall, nxserver (all .log)

I tin can't copy/paste nxerror.log and nxserver.log to my NAS or Windows machine. I get the following fault:
Error opening file /usr/NX/var/log/nxerror.log: Permission Denied. Despite elevated privileges in the log binder.

I too tin't find the /usr/NX/etc/pam.d/su module configuration. At that place is nothing located with the proper name 'pam.d' in the etc folder.

Where do I go from here?

Thanks in advance

February four, 2022 at ten:56 #25470

Hullo.

Unfortunately NoMachine logs cannot be read by a normal user, even if the directory
rights are proper. Y'all will need sudoer or root account to access and re-create them.
You can as well use the control

etc/NX/nxserver --debug --collect

to brand NoMachine collect and package them itself, simply this control also requires
the sudo/root access.

As for the pam.d directory, it is not NoMachine configuration, merely rather system
configuration, and then it will not be in '/usr/NX', simply in system directory '/etc'.

/Mth

February 7, 2022 at eleven:52 #25517

Cheers for the reply!

I tried the commands:

etc/NX/nxserver --debug --collect

and

etc/NX/server --debug --collect

since there'due south no 'nxserver' folder in NX, just 'server'. Both give me this event:

bash: etc/NX/(nx)server: No such file or directory

I likewise tried both commands with sudo in front of it, but that gives me this message:

sudo etc/NX/(nx)server: command not plant

The merely folder present in the 'server' binder (in etc/NX) is 'localhost'.

I DID detect the /etc/pam.d folder and found a file called 'su'. So I copied that to a folder where I relieve the files needed to provide. But still no luck on collecting the logs from the Linux server… and since I doubt I have a root account or sudoer (?) how will I ever exist able to collect the files/logs that yous demand to be able to help me out?

I CAN provide the files: nxd.log, nxinstall.log and su. Would that be of any aid?

Thanks in advance

February 12, 2022 at 10:44 #25614

Howdy

Sorry for the defoliation, the proper control would be:

sudo /etc/NX/nxserver --debug --collect

This control should point yous to the generated archive, like:

NX> 900 Archive is: /usr/NX/var/log/archives/NoMachine-log-2020.02.12-10.28.14.goose egg

Delight send this archive and the 'su' file to forum[at]nomachine[dot]com using the title of that forum's thread equally the post'southward subject.

/Mth

February 26, 2022 at 08:33 #25766

Pitiful for the tardily response, I was able to collect the debug archive this fourth dimension. I feel so stupid for forgetting the forward slash before 'etc'… complete Linux newbie hither.

I mailed the files similar yous said, can't wait for the response 🙂

Thank you in advance

March 2, 2022 at 10:21 #25817

Zenith, did you not ship the logs in the end? We haven't received them.

March 3, 2022 at 08:59 #25825

Hello Britgirl,

I did send the e-mail service on 25 February 2022 on xiv:53u (or 02:53 pm) to forum[at]nomachine.com and information technology's marked as sent. I didn't receive an mistake, so it seems information technology has arrived. I used this as title: 'Tin can't login "Authentication failed, delight endeavour again." (Linux forums)'.

So I added the '(Linux forums)' function to the title, could that be the trouble? Should I send it again?

Please permit me know, thank you in advance!

lesterbeng1961.blogspot.com

Source: https://forums.nomachine.com/topic/cant-login-authentication-failed-please-try-again

Share this post