VMRC Error unable to open console

The console is not opening, is there any other log to check?

ubuntu-20.04.4 installed

Running Vcenter 6.7 u3
ESXI 6.7

fireedge, Log
[01/Jun/2022:16:27:12 +0000] “GET /fireedge/api/vcenter/token/6?csrftoken=51530a11a67729c748da46b299d3c43a81d491febcee4f542d06113569483ca1 HTTP/1.1” 500 89 “http://192.168.XX.XX:9869/” "Mozilla/5.0 (Windows NT 6.3; Win64; x64; rv:100.0) Gecko/20100101 Firefox/100.0

Hi @coreyman2000,

which OpenNebula version are you using?

The common checks assuming you are using Ruby Sunstone and OpenNebula 6.4:

Bests,
Sergio

Yes running 6.4,

Fireedge is correct configured at least to what I know it seems to be correctly working. I can connect directly to it as well. Trying to open the console same 500 error.

The only error I’m getting is what I posted, I check all the logs.

Hello,

Thanks for the info. Could you share the Sunstone and FireEdge configuration files?

  • sunstone-server.conf
  • fireedge-server.conf

Please be aware that OpenNebual 6.4.0 is not tested over vSphere 6.7: Platform Notes 6.4.0 — OpenNebula 6.4.0 documentation.

If VMRC doesn’t work in FireEdge Sunstone please consider upgrading your vSphere install

Bests,
Sergio

root@vonecloud:/etc/one# cat fireedge-server.conf
################################################################################

Server Configuration

################################################################################

System log (Morgan) prod or dev

log: prod

Enable cors (cross-origin resource sharing)

cors: true

FireEdge server IP

host: ‘0.0.0.0’

FireEdge server port

port: 2616

OpenNebula: use it if you have oned and fireedge on different servers

one_xmlrpc: ‘h ttp://localhost:2633/RPC2’

Flow Server: use it if you have flow-server and fireedge on different servers

oneflow_server: ‘h ttp://localhost:2474’

JWT expiration time (minutes)

session_expiration: 180

JWT expiration time when using remember check box (minutes)

session_remember_expiration: 3600

Minimum time to reuse previously generated JWTs (minutes)

minimun_opennebula_expiration: 30

Endpoint to subscribe for OpenNebula events must match those in

oned.conf

subscriber_endpoint: tcp://localhost:2101

Log debug level: GitHub - winstonjs/winston: A logger for just about everything.

0 = ERROR, 1 = WARNING, 2 = INFO, 5 = DEBUG

debug_level: 2

Guacamole daemon

guacd:
port: 4822
host: ‘localhost’

root@vonecloud:/etc/one# cat sunstone-server.conf

--------------------------------------------------------------------------

Copyright 2002-2022, OpenNebula Project, OpenNebula Systems

Licensed under the Apache License, Version 2.0 (the “License”); you may

not use this file except in compliance with the License. You may obtain

a copy of the License at

h ttp://www.apache.org/licenses/LICENSE-2.0

Unless required by applicable law or agreed to in writing, software

distributed under the License is distributed on an “AS IS” BASIS,

WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.

See the License for the specific language governing permissions and

limitations under the License.

#--------------------------------------------------------------------------- #

################################################################################

Server Configuration

################################################################################

Directory to store temp files when uploading images

:tmpdir: /var/tmp

OpenNebula sever contact information

:one_xmlrpc: h ttp://localhost:2633/RPC2
:one_xmlrpc_timeout: 60

:subscriber_endpoint to subscribe for OpenNebula events must match those in

oned.conf

:subscriber_endpoint: tcp://localhost:2101

Server Configuration

:host: 0.0.0.0
:port: 9869

Place where to store sessions, this value can be memory, memcache or memcache-dalli

Use memcache when starting multiple server processes, for example,

with passenger

NOTE. memcache needs a separate memcached server to be configured. Refer

to memcached documentation to configure the server.

:sessions: memory

Memcache configuration

:memcache_host: localhost
:memcache_port: 11211
:memcache_namespace: opennebula.sunstone

Excution environment for Sunstone

dev, Instead of pulling the minified js all the files will be pulled (app/main.js)

Check the Building from Source guide in the docs, for details on how to run

Sunstone in development

prod, the minified js will be used (dist/main.js)

:env: ‘prod’

Maximum allowed size of uploaded images (in bytes). Leave commented for

unlimited size

:max_upload_file_size: 10737418240 # 10 GiB

################################################################################

Log

################################################################################

Log debug level

0 = ERROR, 1 = WARNING, 2 = INFO, 3 = DEBUG

:debug_level: 3

################################################################################

Proxy

################################################################################

Enable an h ttp proxy for the support portal and to download MarketPlaceApps

from the MarketPlace to the user’s desktop.

:proxy: h ttp://:

:no_proxy: localhost, 127.0.0.0/8

################################################################################

Auth

################################################################################

Authentication driver for incoming requests

sunstone: for OpenNebula’s user-password scheme

x509: for x509 certificates based authentication

opennebula: the authentication will be done by the opennebula core using the

driver defined for the user

remote: performs the login based on a Kerberos REMOTE_USER variable or

X-Auth-Username header provided by authentication backend

:auth: opennebula

Authentication driver to communicate with OpenNebula core

cipher, for symmetric cipher encryption of tokens

x509, for x509 certificate encryption of tokens

:core_auth: cipher

Two Factor Authentication Issuer Label

:two_factor_auth_issuer: opennebula

################################################################################

WebAuthn

################################################################################

This value needs to match window.location.origin evaluated by the User Agent

during registration and authentication ceremonies. Remember that WebAuthn

requires TLS on anything else than localhost.

:webauthn_origin: h ttp://localhost:9869

Relying Party name for display purposes

:webauthn_rpname: ‘OpenNebula Cloud’

Optional client timeout hint, in milliseconds. Specifies how long the browser

should wait for any interaction with the user.

:webauthn_timeout: 60000

Optional differing Relying Party ID

See h ttps://www.w3.org/TR/webauthn/#relying-party-identifier

:webauthn_rpid: example.com

Supported cryptographic algorithms

See h ttps://www.iana.org/assignments/jose/jose.xhtml

Possible is any list of

ES256 | ES384 | ES512 | PS256 | PS384 | PS512 | RS256 | RS384 | RS512 | RS1

:webauthn_algorithms: [ES256, PS256, RS256]

################################################################################

UI Settings

################################################################################

:vnc_proxy_

port: port where the vnc proxy will listen. Could be prefixed with

an address on which the sever will be listening (ex: 127.0.0.1:29876).

support_wss: no | yes | only. For yes and only, provide path to

cert and key. “yes” means both ws and wss connections will be

supported.

cert: Certificate to encrypt wss connections.

key: Key for wss connections. Only necessary if not included in cert.

ipv6: Enable ipv6 support for novnc-server

:vnc_client_port: port where the vnc JS client will connect

If not set, will use the port section of :vnc_proxy_port

:vnc_request_password: true | false

Request VNC password for external windows, by default it will not be requested

:allow_vnc_federation: yes | no

Allow VNC functionality in remote OpenNebula in a federation (needs special setup)

:vnc_proxy_port: 29876
:vnc_proxy_support_wss: no
:vnc_proxy_cert:
:vnc_proxy_key:
:vnc_proxy_ipv6: false
:vnc_request_password: false
:allow_vnc_federation: no

Login Session Length in seconds, defaults to 1 hour.

#:session_expire_time: 3600

True to display ‘Keep me logged in’ option.

:keep_me_logged: true

Default language setting

:lang: en_US

Default table order

:table_order: desc

Default views directory

:mode: ‘mixed’

Retrieve extended information from OpenNebula

:get_extended_vm_info: false

Retrieve extended information about monitoring from OpenNebula

:get_extended_vm_monitoring: false

this is for custom paginate

:paginate: “[[6, 12, 36, 72], [6, 12, 36, 72]]”

this display button and clock icon in table of vm

:leases:
suspend:
time: “+1209600”
color: “#000000
warning:
time: “-86400”
color: “#085aef
terminate:
time: “+1209600”
color: “#e1ef08
warning:
time: “-86400”
color: “#ef2808

This disable the information sending via URL to Guacamole console

:disable_guacamole_info_header: no

This change the thresholds of dashboard resource usage

:threshold_min: 0
:threshold_low: 33
:threshold_high: 66

#support filesystem
:support_fs:

  • ext4
  • ext3
  • ext2
  • xfs

################################################################################

Check Official support

################################################################################

#:token_remote_support:

################################################################################

OneFlow

################################################################################

OneFlow endpoint

:oneflow_server: h ttp://localhost:2474/

################################################################################

Routes

################################################################################

Array of files containing ruby code to extend the default sunstone-server

routes. These files must be placed inside the custom_routes directory

in the sunstone root dir (/usr/lib/one/sunstone/routes)

Example:

$ ls /usr/lib/one/sunstone/routes

custom.rb other.rb

$ cat /usr/lib/one/sunstone/routes/example.rb

get ‘/custom’ do

body “It works”

end

#:routes:

- custom

- other

:routes:

  • oneflow
  • vcenter
  • support
  • nsx

################################################################################

FireEdge

################################################################################

:private_fireedge_endpoint: h ttp://192.168.130.139:2616
:public_fireedge_endpoint: h ttp://192.168.130.139:2616

Blockquote

Hello!

I have the same error. on the web browser side I see this:

also I see error message in sunstone.log
it appears when I log in to sunstone web interface. every time I reload a web page it appears again.

[OneFlow] Error connecting to server (Failed to open TCP connection to localhost:2474 (Connection refused - connect(2) for “localhost” port 2474)).
Server: localhost:2474

however I changed every configuration file to replace localhost with an IP address of the server.
there is no such configuration in any file:
root@openstack:/home/anton# grep -rnw ‘/etc/one’ -e ‘localhost:2474’
root@openstack:/home/anton#

it looks like it is hardcoded somewhere and therefore sunstone looks to localhost.
anyway every service listening on 0.0.0.0 and should be able to process this request.
but it fails. and it may be related to the issue coreyman2000 and my issue with console. and may be not.

Hy community,

Nobody has resolve this issue without upgrading the vcenter ?

Kind regard