Hi Everyone,
a client of mine is running a View 5.2 infrastructe. They provide external VDI access with a Juniper SSL VPN Gateway. The employees establish a connection to this Juniper Gateway. After a sucessfull authentication they get a shortcut in the Juniper frontend presented. This shortcut is linked on thair production View Connection Server (https://view5.XXX.de). If a user is clicking on this shortcut he will be redirected to his VD over the blast protocol. Everthing works very well.
At the moment we started to install a parallel View 6.2 environment with a couple of test desktops. After we tested each function we want to migrate the existing Desktops. At the moment we run into problems with our Blast sessions. We configured the same Shortcut in our Juniper SSL GW which is linked on the new Connection Broker. If a user wants to access his desktop this way he receives an error message
"The View agent reports that this desktop source is unable to accept connections"
We configured everything the same. From internal access HTML Blast works very well. This error occurs vir Juniper SSL GW only. Are there some major changes in security with the latest release of Blast?
We opened the necessary Ports for communication 443, 8443, 22443.
Our connection server logs the following error message:
2015-10-14T17:05:46.066+02:00 INFO (0C10-10FC) <ajp-nio-8009-exec-1> [SessionLaunchContext] (SESSION:c1f9_***_9999) XXX\XXfert, Desktop=win7-adm: Session request failed.
(SESSION:c1f9_***_9999) [XXX\XXfert, Desktop=win7-adm] (7ms): User has 1 possible sessions to analyze.
(SESSION:c1f9_***_9999) [XXX\XXfert, Desktop=win7-adm] (7ms): Possible session match found on server cn=661d961a-bd6d-41a0-8561-0bc8e63d4838,ou=servers,dc=vdi,dc=vmware,dc=int.
(SESSION:c1f9_***_9999) [XXX\XXfert, Desktop=win7-adm] (7ms): Found matching capid 22BB_***_F235 for server 661d961a-bd6d-41a0-8561-0bc8e63d4838
(SESSION:c1f9_***_9999) [XXX\XXfert, Desktop=win7-adm] (5121ms): Application launch failed, exception was: The agent returned an error response [ERROR-CODE=AGENT_ERR_FAILURE]
Inside the agent log I found the following error message:
2015-10-16T12:38:24.685+02:00 INFO (0404-0408) <Main Thread> [wsnm_desktop] Session DISCONNECTED: sessionId=1, user XXX\XXfert, client=(null), connectionId=58F2FD30_4EE5_4503_993F_B0E27A060D4D, userDn=cn=s-1-5-21-332934923-1231229598-1233803906-7229,cn=foreignsecurityprincipals,dc=vdi,dc=vmware,dc=int
2015-10-16T12:38:24.685+02:00 WARN (0404-0560) <StopConnectionsThread> [wsnm_desktop] BLAST: No cached connection for token LFvKB6*****
2015-10-16T12:38:24.685+02:00 WARN (0404-0560) <StopConnectionsThread> [wsnm_desktop] No BLAST connection found for token LFvKB6*****
Does anybody have a solution for this behavior or know a reason.
Thanks and regards!
Florian