It is possible to access the VNC console form the WEB browser and without having VNC client installed. For that purpose websockify proxy is used (formerly named wsproxy) and it part of the noVNC project. At the most basic level, websockify just translates WebSockets traffic to normal socket traffic. Websockify accepts the WebSockets handshake, parses it, and then begins forwarding traffic between the client and the target in both directions.
In this example we will configure the access to qemu-kvm virtual machine console using noVNC service:
The installation procedure is quite simple:
--web - doc root for mini-webserver in wensockify (default path is: /usr/share/novnc)
--certs - the certificates that has been generated on step 2.
6080 - points the port that is listen for incoming connections from clients
localhost:5900 - points to VNC host and port where where redirect incoming requests to
-D - to run service in a daemon mode. For testing purposes, this option can be replaced with -v option, that run instruct service to run in verbose mode and produce diagnostic output on console.
-vnc 0.0.0.0:0,password - configure VNC service listen on any host address (0.0.0.0) and port 5900 (in a format 590X, where :0 is 5900, :1 is 5901 and etc ...). Password authentification (the "password" option) must be used here as a requirement for noVNC service .
Now you are able to connect to VNC console of the host with your browser. Open URL https://YOUR_HOST:6080/vnc.html
Enter the password we set up on previous step and you will get connected to VNC console.