# Apache Guacamole Setup
## Pre-Requisite
1. Ubuntu v20.04 or later
2. openjdk v11 or later
Once you have installed Ubuntu, you'll need to install java. Please run the command below.
NOTE: To install the latest version of the JDK use appropriate commands.
{% code title="InstallOpenJdk8.sh" %}
```
$ sudo apt install openjdk-17-jdk
```
{% endcode %}
Once you're Set the environmental variables for ubuntu in the \~/.bashrc file. Enter into the file (nano \~/.bashrc) add the following lines at the end of the file enough, save the world:
{% code title="SetEnvironmentVars.sh" %}
```bash
export JAVA_HOME=/usr/lib/jvm/java-17-openjdk-amd64
export PATH=$PATH:HOME/bin:$JAVA_HOME/bin
```
{% endcode %}
Save the file by pressing ctrl + o and exit from the nano editor by pressing ctrl + x and run the command to refresh the environmental variables
```bash
source ~/.bashrc
```
Move to the root folder by using “su –“. If you are new, set the root password by using the command “sudo passwd”
Move the Automated script in current location to the root folder by using the command “mv CloudAssert-InstallGuacamole1-0-0.sh /root/”
Run the following script by using the command “sh CloudAssert-InstallGuacamole1-0-0.sh"
**Guacamole Setup**
{% file src="/files/GOJwUy7AnVXL1FHBTLQp" %}
{% hint style="info" %}
If you are unable to download the above CloudAssert-InstallGuacamole1-0-0.sh, Please copy paste this script on your shell and execute.
*Port access*: Guac uses 8080 port as part of Tomcat server. If you enable SSL (https) for tomcat. Please make sure to allow the port 443 in guac server.
The default guac portal cred is set as admin in `authorize` tag at line# 45. Please feel free to change it before you run.
{% endhint %}
{% code title="CloudAssert-InstallGuacamole1-0-0.sh" %}
```bash
ufw enable
ufw allow 22
ufw allow 8080
eval "apt-get update"
eval "apt-get install git -y"
eval "apt-get install autoconf -y"
eval "apt-get install libavcodec-dev -y"
eval "apt-get install libavcodec-extra -y"
eval "apt-get install libtool-bin -y"
eval "apt-get install fail2ban build-essential htop libcairo2-dev libjpeg62-dev libossp-uuid-dev tomcat8 -y"
eval "apt-get install libfreerdp-dev libpango1.0-dev libssh2-1-dev libtelnet-dev libvncserver-dev libpulse-dev libssl-dev libvorbis-dev -y"
eval "wget https://downloads.apache.org/guacamole/1.0.0/source/guacamole-server-1.0.0.tar.gz"
eval "git clone https://github.com/cloudassert/guacamole-client"
eval "tar -xzf guacamole-server-1.0.0.tar.gz"
eval "tar -xzf guacamole-client-1.0.0.tar.gz"
eval "apt-get install tomcat8 -y"
cd guacamole-server-1.0.0
eval "autoreconf -fi"
eval "./configure --with-init-dir=/etc/init.d && make && make install"
eval "ldconfig && update-rc.d guacd defaults"
eval "mkdir /etc/guacamole"
echo "guacd-hostname: localhost\nguacd-port: 4822\nuser-mapping: /etc/guacamole/user-mapping.xml\nauth-provider: com.aiden0z.guacamole.net.jwt.JwtAuthenticationProvider\nbasic-user-mapping: /etc/guacamole/user-mapping.xml\nsecret-key: secure string for encryption needs to be high" | sudo tee -a /etc/guacamole/guacamole.properties
echo "\n\n\nrdp\n192.168.1.142\n3389\n\n\nssh\n192.168.5.88\n22\n\n\n" | sudo tee -a /etc/guacamole/user-mapping.xml
eval "mkdir /usr/share/tomcat8/.guacamole"
eval "ln -s /etc/guacamole/guacamole.properties /usr/share/tomcat8/.guacamole"
cd
eval "sudo apt install openjdk-17-jdk -y"
eval "JAVA_HOME=/usr/lib/jvm/java-17-openjdk-amd64"
eval "PATH=$PATH:$HOME/bin:$JAVA_HOME/bin"
eval "export JAVA_HOME"
eval "export PATH"
eval "sudo apt install maven -y"
cd guacamole-client-1.0.0
eval "mvn install"
eval "cp guacamole/target/guacamole-1.0.0.war /var/lib/tomcat8/webapps/guacamole.war"
eval "sudo chmod 600 /etc/guacamole/user-mapping.xml"
eval "sudo chown tomcat8:tomcat8 /etc/guacamole/user-mapping.xml"
eval "chown -R tomcat8:tomcat8 /etc/guacamole/"
eval "sudo ln -s /etc/guacamole/user-mapping.xml /usr/share/tomcat8/.guacamole/"
echo "guacamole.home=/etc/guacamole" | sudo tee -a /etc/tomcat8/catalina.properties
cd /etc/guacamole/
mkdir extensions
cd /etc/guacamole/extensions
eval "wget https://cadownloads.blob.core.windows.net/plugins/guacamole-auth-jwt-1.0.0.jar"
cd /etc/guacamole/
mkdir lib
cd /etc/guacamole/lib
eval "wget https://repository.liferay.com/nexus/content/groups/public/com/fasterxml/jackson/core/jackson-annotations/2.8.0/jackson-annotations-2.8.0.jar"
eval "wget https://repo1.maven.org/maven2/com/fasterxml/jackson/core/jackson-databind/2.8.2/jackson-databind-2.8.2.jar"
eval "wget https://repository.liferay.com/nexus/content/groups/public/com/fasterxml/jackson/core/jackson-core/2.8.2/jackson-core-2.8.2.jar"
eval "wget https://repository.mulesoft.org/nexus/content/groups/public/io/jsonwebtoken/jjwt/0.7.0/jjwt-0.7.0.jar"
cd /etc/guacamole/
echo "\n\t\n\t/etc/guacamole/GuacamoleLog.log\n\t\n\t\t%date %level [%thread] %logger{10} [file:%line] %msg%n\n\t\n\t\n\t\n\t\t\n\t\n" | sudo tee -a /etc/guacamole/logback.xml
```
{% endcode %}
---
# Agent Instructions: Querying This Documentation
If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.
Perform an HTTP GET request on the current page URL with the `ask` query parameter:
```
GET https://docs.cloudassert.com/hybr/installation/hybr-pre-requisites/services/remote-connect/apache-guacamole-setup.md?ask=
```
The question should be specific, self-contained, and written in natural language.
The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.
Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.