I was able to get a consistent LDAP login with NS being the primary AD provider as decribed in the doc. For giggles, I wanted to see if I could enable TOTP via guacamole-auth-totp-1.1.0.tar.gz and so far it works with the internal SQL guacadmin account but not with the AD/LDAP binding accounts. I’ll have to dig more into this to see if I am unsing the TOTP module correctly.
Apr 19 09:05:50 guac server: 09:05:50.167 [http-bio-8080-exec-10] INFO o.a.g.r.auth.AuthenticationServvice - User "admin" successfully authenticated from [10.92.0.2, 10.0.99.1, 127.0.0.1].
Apr 19 09:05:50 guac server: 09:05:50.200 [http-bio-8080-exec-10] ERROR o.a.g.rest.RESTExceptionMapper - Unexpected internal error:
Apr 19 09:05:50 guac server: ### Error updating database. Cause: com.mysql.jdbc.exceptions.jdbc4.MySQLLIntegrityConstraintViolationException: Column 'user_id' cannot be null
Apr 19 09:05:50 guac server: ### The error may involve org.apache.guacamole.auth.jdbc.user.UserMapper.iinsertAttributes-Inline
Apr 19 09:05:50 guac server: ### The error occurred while setting parameters
Apr 19 09:05:50 guac server: ### SQL: INSERT INTO guacamole_user_attribute ( user_id, attribute_name, attribute_value ) VALUES (?, ?, ?) , (?, , ?, ?)
Apr 19 09:05:50 guac server: ### Cause: com.mysql.jdbc.exceptions.jdbc4.MySQLIntegrityConstraintViolatiionException: Column 'user_id' cannot be null
