Add windows server for rdp via browser

Add windows server into Ezeelogin GUI for one-click RDP via the web browser.

 
Recording RDP session feature is available from Ezeelogin version 7.10.0  
Ensure that the desktop browser has enough CPU( 2GHZ) and RAM( 2- 4 GB ). Close out browser tabs so as to reduce the cpu footprint so that the browser-based rdp works without slowness.
Web RDP will work only if the web interface is accessed via HTTPS

On the gateway server, make sure to install nodejs.

In CentOS 6

[root@camry ~]# curl -sL https://rpm.nodesource.com/setup_14.x |bash -

[root@camry ~]# yum install -y nodejs

[root@camry ~]# node -v
v14.8.0


In CentOS 7

  [root@cen7 /]#  curl -sL https://rpm.nodesource.com/setup_14.x |bash -

  [root@cen7 /]#  yum -y install nodejs

  [root@cen7 /]#  /usr/bin/node -v

v14.8.0

 

In Centos 8

[root@cen8 /]#  curl -sL https://rpm.nodesource.com/setup_14.x |bash -

[root@cen8 /]#  yum -y install nodejs
[root@cen7 /]#  /usr/bin/node -v

v14.8.0

In Ubuntu 14.04

root@ubu14-04:/# curl -sL  https://deb.nodesource.com/setup_14.x  |bash -

root@ubu14-04:/#  apt-get install nodejs

root@ubu14:~#  /usr/bin/nodejs -v

v14.8.0

 

In Ubuntu 16.1

root@ubu16-04:/# curl -sL  https://deb.nodesource.com/setup_14.x  |bash -

root@ubu16-04:/#  apt-get install nodejs

root@ubu14:~#  /usr/bin/nodejs  -v

v14.8.0

 

In Ubuntu 18

 In Ubuntu 20

root@ubu20:~# curl -sL  https://deb.nodesource.com/setup_14.x  |bash -
root@ubu20:~# apt-get install nodejs
root@ubu20:~# node -v
v14.8.0


Once installed, ensure that the path to the node binary is specified correctly under Settings->General->Miscellaneous->Nodejs Command.



The nodejs command field should have the path to the
node / nodejs binary which usually is /usr/bin/node in the case of Centos7 and /usr/bin/nodejs in the case of Ubuntu 14-04

Ensure that inbound TCP traffic on port 52555 is open as nodejs server listens on this port.

Ensure that outbound TCP traffic on port 3389 is open as RDP listens on this port.

 

To ensure ssl for the browser tab that opens up for the web rdp, generate a self-signed cert with the following command. Web Shell will work only if the web interface is accessed via HTTPS

openssl req -new -days 365 -x509 -nodes -newkey rsa:2048 -out /usr/local/etc/ezlogin/tls_cert.pem -keyout /usr/local/etc/ezlogin/tls_key.pem

Or put a valid ca, cert and key in the files: /usr/local/etc/ezlogin/tls_ca.pem, /usr/local/etc/ezlogin/tls_cert.pem & /usr/local/etc/ezlogin/tls_key.pem respectively. You can rename your current .crt / .key file to .pem file.

 

Also, make sure that the .pem files are readable by the webserver user such as nobody/www-root/apache, etc. An easy way to grant the web user read privileges would be chmod 644 /usr/local/etc/ezlogin/*.pem

 

Make sure that users has privilege to access ’ Windows RDP Login

acl-rdp

 

Click on the windows icon to rdp into the remote machine

windows-rdp

 

  Ensure that Network Level Authentication ( NLA ) is disabled on the remote windows machine as shown.

network-level-authentication

 1. You can add the windows-servers by clicking the add button as shown below

 

2. You need to enable RDP and specify the RDP port as shown below

 

Pros of browser based RDP

  • Easily RDP via browser in one click
  • Dont have to remember the administrator passwords
  • No RDP client needed

Cons of browser based RDP

  • Unable to copy and paste the document to remote desktop.
     
    RDP sessions recording is available from version 7.10.0

 If you are getting protocol error, after upgrading Node version you just need to add --tls-min-v1.0 to the nodejs command in Settings->General->Miscellaneous>Nodejs Command.

0 (0)
Article Rating (No Votes)
Rate this article
    Attached Files
    There are no attachments for this article.
    Related Articles RSS Feed
    How to grant a user access to control panel
    Viewed 1877 times since Thu, Jun 15, 2017
    server root password mass reset - Is there any risks for corruption?
    Viewed 1893 times since Thu, Jun 15, 2017
    Create more admin users in jump server?
    Viewed 2655 times since Wed, Jun 14, 2017
    how do i access the ssh logs history that was recorded for the ssh user ?
    Viewed 3132 times since Thu, Jun 15, 2017
    How to enforce 2 Factor Authentication on user login?
    Viewed 1973 times since Wed, Sep 19, 2018
    internal command ezinfo not displaying server details
    Viewed 3065 times since Wed, Jun 14, 2017
    Webportals unavailable for user
    Viewed 3450 times since Fri, Dec 8, 2017
    In parallel shell i get "An error occurred. Please contact administrator"
    Viewed 3598 times since Wed, Jun 14, 2017
    Ezsh shell disallowed
    Viewed 996 times since Mon, Jul 1, 2019
    Assigning user group for LDAP users?
    Viewed 2207 times since Wed, Jun 14, 2017