Hi,
we are trying to connect with Guacamole to Kubuntu 20.04, Here the config:
DN: cn=kwaltz,cn=guacamole,dc=hamburg,dc=adfc,dc=de
description: Verbindung zum Rechner: kwaltz
guacConfigParameter: sftp-username=${GUAC_USERNAME}
guacConfigParameter: enable-drive=true
guacConfigParameter: password=${GUAC_PASSWORD}
guacConfigParameter: enable-font-smoothing=true
guacConfigParameter: server-layout=de-de-qwertz
guacConfigParameter: enable-sftp=true
guacConfigParameter: enable-printing=true
guacConfigParameter: sftp-password=${GUAC_PASSWORD}
guacConfigParameter: hostname=kwaltz.gst.hamburg.adfc.de
guacConfigParameter: username=${GUAC_USERNAME}
guacConfigProtocol: rdp
name: kwaltz
nestedGroup: cn=Domain Admins,cn=groups,dc=hamburg,dc=adfc,dc=de
On kwakltz we see in the auth.log:
Dec 30 15:58:49 kwaltz sshd[1994]: Unable to negotiate with 192.168.x.y port 44998: no matching key exchange method found. Their offer: diffie-hellman-group14-sha1,
diffie-hellman-group-exchange-sha1,diffie-hellman-group1-sha1 [preauth]
If we change the keyalgorithms we can connect:
cat /etc/ssh/sshd_config.d/svena_test.conf
KexAlgorithms diffie-hellman-group1-sha1,curve25519-sha256@libssh.org,ecdh-sha2-nistp256,ecdh-sha2-nistp384,ecdh-sha2-nistp521,diffie-hellman-group-exchange-sha256,diffie-hellman-group14-sha1
This is what I have found on this internet about this:
http://apache-guacamole-general-user-mailing-list.2363388.n4.nabble.com/Diffie-Hellman-Kex-issue-td8391.html
https://issues.apache.org/jira/browse/GUACAMOLE-895
Perhabs it is posible to update the guacamole docker Containter with newer libssh?
Wish you a happy new year!
Sven