Add windows server for rdp via browser

Add windows server into Ezeelogin GUI for one click RDP via the web browser.

 
Recording RDP session feature is available from Ezeelogin version 7.10.0
 
Ensure that desktop browser has enough cpu( 1-2GHZ) and RAM( 1GB ). Close out browser tabs so as to reduce the cpu footprint so that the browser based rdp works without slowness.

 

On the gateway server, make sure to install nodejs.

In CentOS 6

[[email protected] ~]# curl -sL https://rpm.nodesource.com/setup_9.x |bash -

[[email protected] ~]# yum install -y nodejs

[[email protected] ~]# node -v
v9.5.0


In CentOS 7

 [[email protected] /]# yum -y install nodejs

 [[email protected] /]#/usr/bin/node -v

v6.12.0


In Ubuntu 14.04

[email protected]:/# curl -sL https://deb.nodesource.com/setup_9.x |bash -

[email protected]:/# apt-get install nodejs

[email protected]:~# /usr/bin/nodejs -v

v9.4.0

 

In Ubuntu 16.1

[email protected]:/# curl -sL https://deb.nodesource.com/setup_9.x |bash -

[email protected]:/# apt-get install nodejs

[email protected]:~# /usr/bin/nodejs -v

v9.4.0

 

In Ubuntu 18

apt-get install nodejs

/usr/bin/node -v

 v8.10.0



Once installed, ensure that the path to the node binary is specified correctly under Settings->General->Miscellaneous->Nodejs Command.



The nodejs command field should have the path to the
node / nodejs binary which usually is /usr/bin/node in the case of Centos7 and /usr/bin/nodejs in the case of Ubuntu 14-04

Ensure that inbound tcp traffic on port 52555 is open as nodejs server listens on this port.

Ensure that outbound tcp traffic on port 3389 is open as RDP listens on this port.


Make sure that users has privilege to access ’Windows RDP Login

acl-rdp

 

Click on the windows icon to rdp into the remote machine

windows-rdp

 

To ensure ssl for the browser tab that opens up for the web rdp, generate a self-signed cert:

openssl req -new -days 365 -x509 -nodes -newkey rsa:2048 -out /usr/local/etc/ezlogin/tls_cert.pem -keyout /usr/local/etc/ezlogin/tls_key.pem

(or put a valid ca, cert and key in the files: /usr/local/etc/ezlogin/tls_ca.pem, /usr/local/etc/ezlogin/tls_cert.pem & /usr/local/etc/ezlogin/tls_key.pem respectively. You can rename your current .crt / .key file to .pem file).

Also, make sure that the .pem files are readable by the webserver user such as nobody/www-root/apache etc. Easy way to grant the webuser read privileges would be chmod 644 /usr/local/etc/ezlogin/*.pem

  

Ensure that Network Level Authentication ( NLA ) is disabled on the remote windows machine as shown.

network-level-authentication

 

Pros of browser based RDP

  • Easily RDP via browser in one click
  • Dont have to remember the administrator passwords
  • No RDP client needed

Cons of browser based RDP

  • Unable to copy and paste the document to remote desktop.
     
    RDP sessions recording is available from version 7.10.0
0 (0)
Article Rating (No Votes)
Rate this article
    Attached Files
    There are no attachments for this article.
    Related Articles RSS Feed
    How do I prevent the root password of the target server that i add from being changed?
    Viewed 1090 times since Wed, Jun 14, 2017
    Assigning user group for LDAP users?
    Viewed 1318 times since Wed, Jun 14, 2017
    configure ssh-tunnel on jump server or bastion host
    Viewed 568 times since Fri, May 11, 2018
    Unable to login into cpanel/whm with one click
    Viewed 2325 times since Wed, Jun 14, 2017
    How to grant Parallel Shell privilege for a user?
    Viewed 1898 times since Wed, Nov 22, 2017
    How to configure Yubikey two factor authentication in ssh ?
    Viewed 2670 times since Thu, Jun 15, 2017
    how do i access the ssh logs history that was recorded for the ssh user ?
    Viewed 1177 times since Thu, Jun 15, 2017
    Can Network switches be added as a device and managed?
    Viewed 1037 times since Thu, Jun 15, 2017
    Password management and the different options.
    Viewed 1185 times since Wed, Jun 14, 2017
    default ssh public key to add in target server or Linux instances for ssh key based authentication
    Viewed 1162 times since Wed, Jun 14, 2017