FAQ

Why is secondary verification required to view passwords/keys?

For security reasons, viewing passwords/keys requires secondary authentication. Bind OTP or Passkey first.

RealVNC shows authentication failure. What should I do?

1. Set password type to VNC
2. Set encryption type to Prefer On
3. Check Allow connections from legacy VNC Viewer users

References:

1. https://help.realvnc.com/hc/en-us/community/posts/7565341003805-Can-t-connect-to-VNC-server-using-Guacamole-client
2. https://help.realvnc.com/hc/en-us/articles/6661259023389-VNC-Password-storage-in-RealVNC-Server

RDP to Windows 7 / Windows Server 2008 disconnects immediately

This is caused by a FreeRDP issue. Enable Disable Glyph Caching in Settings -> RDP.

See: https://issues.apache.org/jira/browse/GUACAMOLE-1191

SSH RSA key login fails with ssh: no key found

Keys generated by PuTTY cannot always be used directly. Export to OpenSSH format first.

How to upgrade native installation?

Download the packaged archive and replace the next-terminal binary.

Grafana does not work through Web Asset proxy

If WSS fails with origin not allowed:

Edit Grafana Web Asset -> Custom Header -> enable Retain hostname -> Save.

How does asset status detection work?

Next Terminal performs TCP connection checks to target IP:port. Default timeout is 3 seconds. Scheduled checks run every hour. If an asset is shown offline, test connectivity from the Next Terminal host with telnet.

SSH file manager is empty

SSH file management depends on SFTP. Ensure SFTP is enabled on target host.

SFTP is usually enabled as an SSH subsystem. Check with:

grep Subsystem /etc/ssh/sshd_config

Expected output includes:

Subsystem sftp /usr/lib/openssh/sftp-server

or:

Subsystem sftp internal-sftp

If the line is commented out (#) or missing, SFTP may be disabled.

Chinese characters are garbled when connecting to macOS

Edit asset -> Advanced Settings -> Connection Settings, and add environment variable:

LANG=zh_CN.UTF-8

SSH disconnects after about 5 seconds / cannot type after connecting to network devices

This is usually caused by SSH keepalive detection. Edit asset -> Advanced Settings -> Connection Settings -> enable Disable Keepalive Check.

Known systems with this issue: RouterOS and some switch devices.

How to migrate from SQLite to PostgreSQL?

Run:

docker run --rm -it \
  -v ./data/nt.db:/db/nt.db \
  ghcr.io/dimitri/pgloader:latest \
  pgloader "sqlite:///db/nt.db" \
           "pgsql://PG_USER:PG_PASSWORD@PG_HOST/PG_DATABASE"

How to migrate from MySQL to PostgreSQL?

Run:

docker run --rm -it \
  ghcr.io/dimitri/pgloader:latest \
  pgloader "mysql://MYSQL_USER:MYSQL_PASSWORD@MYSQL_HOST/MYSQL_DATABASE" \
           "pgsql://PG_USER:PG_PASSWORD@PG_HOST/PG_DATABASE"

SSH connection failed?

If you see an error like below, your password/key is likely incorrect:

ssh:hindshake failed: ssh: unable to authenticate, attempted methds [none],no supported methods remain

Docker IPv6 setup is too complex. Any easier way?

Use a dual-stack Linux host as an SSH gateway, or deploy a Security Gateway on that host, then access assets through the gateway.

WOL cannot wake devices in LAN?

Usually this is because containerized NT and assets are not in the same broadcast domain.

Options:

1. Deploy NT with native installation.
2. Change docker-compose network mode to host.
3. Deploy an external Security Gateway and access assets through it.