[ovirt-users] Re: oVirt noVNC

Hi Anton, Don´t worry, it had me tearing out hair for a while. But, Paul managed to save my remaining hair, so hopefully he has a suggestion that will sort things out for you too 😊 By the way, is Vox using ovirt as their cloud system for customers? Just curious of course. Kind regards Kim From: Anton Louw <Anton.Louw(a)voxtelecom.co.za&gt; Date: Friday, 12 June 2020 at 11:36 To: Kim Kargaard <Kim.Kargaard(a)noroff.no&gt;, "Staniforth, Paul" <P.Staniforth(a)leedsbeckett.ac.uk&gt;, &quot;users(a)ovirt.org&quot; <users(a)ovirt.org&gt; Subject: RE: [ovirt-users] Re: oVirt noVNC Hi Kim, Thanks for the reply. I double checked the permissions on the cert files now, and they are exactly the same as my other environment. But, the other environment does not have a CA, these are the default certs from ovirt. The other environment is working as expected though. I have checked the websocket service and config, and it seems to be correct. The port is also open on the firewall. I can telnet to my FQDN on port 6100. This is breaking my spirit 😊 Anton Louw Cloud Engineer: Storage and Virtualization at Vox ________________________________ T: 087 805 0000 | D: 087 805 1572 M: N/A E: anton.louw@voxtelecom.co.za<mailto:anton.louw@voxtelecom.co.za> A: Rutherford Estate, 1 Scott Street, Waverley, Johannesburg www.vox.co.za<http://www.vox.co.za> [F]<https://www.facebook.com/voxtelecomZA> [T]<https://www.twitter.com/voxtelecom> [I]<https://www.instagram.com/voxtelecomza/> [L]<https://www.linkedin.com/company/voxtelecom> [Y]<https://www.youtube.com/user/VoxTelecom> From: Kim Kargaard <Kim.Kargaard(a)noroff.no&gt; Sent: 12 June 2020 10:51 To: Anton Louw <Anton.Louw(a)voxtelecom.co.za>; Staniforth, Paul <P.Staniforth(a)leedsbeckett.ac.uk>; users(a)ovirt.org Subject: Re: [ovirt-users] Re: oVirt noVNC Have you checked that websocket proxy is configured and running? Is the port open on the firewall? And finally, have you checked the ownerships and permissions of the cert files on the engine server? The permissions was where we came unstuck for a while 😊 The individual users should not need to download the CA, the novnc browser option should just open the VM, if the settings are right. From: Anton Louw via Users <users@ovirt.org<mailto:users@ovirt.org>> Reply to: Anton Louw <Anton.Louw@voxtelecom.co.za<mailto:Anton.Louw@voxtelecom.co.za>> Date: Friday, 12 June 2020 at 10:48 To: "Staniforth, Paul" <P.Staniforth@leedsbeckett.ac.uk<mailto:P.Staniforth@leedsbeckett.ac.uk>>, "users@ovirt.org<mailto:users@ovirt.org>" <users@ovirt.org<mailto:users@ovirt.org>> Subject: [ovirt-users] Re: oVirt noVNC Hi Paul, Thanks for the reply. Apologies, I should have added that I have installed our own certificates. The main problem I am facing is that the noVNC console just refuses to open, I get the attached error with any VM I try and access. I should have perhaps started with this issue in my first mail, apologies 😊 Thanks Anton Louw Cloud Engineer: Storage and Virtualization at Vox ________________________________ T: 087 805 0000 | D: 087 805 1572 M: N/A E: anton.louw@voxtelecom.co.za<mailto:anton.louw@voxtelecom.co.za> A: Rutherford Estate, 1 Scott Street, Waverley, Johannesburg www.vox.co.za<http://www.vox.co.za> [F]<https://www.facebook.com/voxtelecomZA> [T]<https://www.twitter.com/voxtelecom> [I]<https://www.instagram.com/voxtelecomza/> [L]<https://www.linkedin.com/company/voxtelecom> [Y]<https://www.youtube.com/user/VoxTelecom> From: Staniforth, Paul <P.Staniforth@leedsbeckett.ac.uk<mailto:P.Staniforth@leedsbeckett.ac.uk>> Sent: 12 June 2020 10:29 To: users@ovirt.org<mailto:users@ovirt.org>; Anton Louw <Anton.Louw@voxtelecom.co.za<mailto:Anton.Louw@voxtelecom.co.za>> Subject: Re: oVirt noVNC Hello Anton, if your organisation has it's own CA you can install your own certificates or get certificates from a trusted CA. https://www.ovirt.org/documentation/admin-guide/appe-oVirt_and_SSL.html Paul S. ________________________________ From: Anton Louw via Users <users@ovirt.org<mailto:users@ovirt.org>> Sent: 12 June 2020 08:56 To: users@ovirt.org<mailto:users@ovirt.org> <users@ovirt.org<mailto:users@ovirt.org>> Subject: [ovirt-users] oVirt noVNC Caution External Mail: Do not click any links or open any attachments unless you trust the sender and know that the content is safe. Hi Everybody, With regards to noVNC, is it a requirement to install the CA into your local browser? I would like users to access their VM console, but with no additional work from their side, ie. Downloading the CA and importing it. Thank you Anton Louw Cloud Engineer: Storage and Virtualization at Vox ________________________________ T: 087 805 0000 | D: 087 805 1572 M: N/A E: anton.louw@voxtelecom.co.za<mailto:anton.louw@voxtelecom.co.za> A: Rutherford Estate, 1 Scott Street, Waverley, Johannesburg www.vox.co.za<https://eur02.safelinks.protection.outlook.com/?url=http... [Image removed by sender. F]<https://eur02.safelinks.protection.outlook.com/?url=https%3A%2F%2Fw... [Image removed by sender. T]<https://eur02.safelinks.protection.outlook.com/?url=https%3A%2F%2Fw... [Image removed by sender. I]<https://eur02.safelinks.protection.outlook.com/?url=https%3A%2F%2Fw... [Image removed by sender. L]<https://eur02.safelinks.protection.outlook.com/?url=https%3A%2F%2Fw... [Image removed by sender. Y]<https://eur02.safelinks.protection.outlook.com/?url=https%3A%2F%2Fw... [Image removed by sender. #VoxBrand]<https://eur02.safelinks.protection.outlook.com/?url=https%3A%2F%2Fwww.vox.co.za%2Ffibre%2Ffibre-to-the-home%2F%3Fprod%3DHOME&data=02%7C01%7Cp.staniforth%40leedsbeckett.ac.uk%7Cce5db7db325f4eccd7ce08d80ea6e86e%7Cd79a81124fbe417aa112cd0fb490d85c%7C0%7C0%7C637275457324018374&sdata=tSzRaAr5LBd1TYdIflh5aNIhbR0wKD7s6LQp%2Bvw4CeI%3D&reserved=0> Disclaimer The contents of this email are confidential to the sender and the intended recipient. Unless the contents are clearly and entirely of a personal nature, they are subject to copyright in favour of the holding company of the Vox group of companies. Any recipient who receives this email in error should immediately report the error to the sender and permanently delete this email from all storage devices. This email has been scanned for viruses and malware, and may have been automatically archived by Mimecast Ltd, an innovator in Software as a Service (SaaS) for business. Providing a safer and more useful place for your human generated data. Specializing in; Security, archiving and compliance. To find out more Click Here<https://eur02.safelinks.protection.outlook.com/?url=https%3A%2F%2...;. To view the terms under which this email is distributed, please go to:- http://leedsbeckett.ac.uk/disclaimer/email/