CentOSRHEL Based

How To Install VNC Server on CentOS Stream 10

r00t

Install VNC Server on CentOS Stream 10

Remote desktop access is essential for many administrators and users who need a graphical user interface for tasks on Linux servers. VNC (Virtual Network Computing) allows individuals to log in from anywhere and manage systems with ease. CentOS Stream 10 is a forward-looking distribution that provides newer packages and an evolving platform, making configuration and updates more seamless. By installing a VNC Server, anyone can launch and control graphical sessions remotely, helping developers, system administrators, and regular users save time and reduce the complexity of command-line-only activities.

Below is a comprehensive guide that covers every step needed to install and configure a VNC Server on CentOS Stream 10. From setting up the desktop environment, configuring essential security, to testing and troubleshooting, these instructions deliver a stable and secure remote desktop solution. Follow them carefully for a smooth experience, and enjoy the flexibility of managing CentOS Stream 10 machines graphically from virtually any location.

Prerequisites

Before proceeding, ensure the following conditions are met to guarantee a successful VNC Server setup:

  • Root Access or Sudo Privileges: Having privileged access is crucial for installing packages and modifying system configurations.
  • Stable Internet Connection: Required to download and install additional repositories and packages.
  • Hardware Requirements: A modestly powered server (1-2 GB of RAM recommended) to comfortably run both the desktop environment and VNC.
  • Firewall and SELinux Awareness: Adjusting security parameters is often necessary for VNC connections to function properly.
  • Desktop Environment: A GUI such as Xfce, GNOME, or KDE is required. In this guide, Xfce is chosen for its efficiency and lightweight nature.

Verifying your server’s resources and confirming that CentOS Stream 10 is properly installed typically prevent unnecessary complications later on. Additionally, always keep the system up to date and check that you have enough available storage for the new packages. With these prerequisites in mind, the process of installing and configuring VNC Server becomes much more streamlined, ensuring a secure and stable remote environment for all your CentOS Stream 10 needs.

Initial System Preparation

Properly preparing your CentOS Stream 10 system is vital for minimizing installation errors and conflicts. The following steps focus on updating existing packages and setting up essential repositories, which helps maintain a reliable environment for your VNC configuration.

Step 1: Update System Packages

Start by synchronizing your package index to ensure your machine has the latest updates:

sudo dnf update -y

Executing this command retrieves and installs available updates for already installed packages. It reduces the likelihood of dependency issues later.

Step 2: Install EPEL Repository

The Extra Packages for Enterprise Linux (EPEL) repository provides a variety of additional software packages that are not included in the default CentOS Stream repositories. Sometimes, the VNC-related packages and dependencies are maintained here:

sudo dnf install epel-release -y

Once EPEL is enabled, an extensive range of supported packages becomes accessible, which simplifies searching and installing relevant utilities for your remote desktop session.

Step 3: Install Necessary Dependencies

Depending on your environment, you may need additional utilities. Commonly used tools like nano or wget can be installed with:

sudo dnf install nano wget -y

At this stage, confirm no errors were reported. The server is now more robust and ready for the next steps, including installing a desktop environment and the VNC Server itself. By keeping the system fully patched, conflicts that typically arise from outdated libraries are kept to a minimum.

Desktop Environment Setup

CentOS Stream 10 generally favors a server-centric environment by default, which means it might lack a full desktop interface. Nonetheless, a desktop environment is necessary for any kind of remote desktop services like VNC. Xfce is a popular choice due to its lower resource usage, straightforward interface, and reliability. This section covers installing and configuring Xfce as your default GUI.

Step 1: Install Xfce Desktop Environment

Install Xfce and any standard X Windows components using the following command:

sudo dnf groupinstall "Xfce" "base-x" -y

This command fetches the required packages to allow a complete graphical environment on the server. If you prefer GNOME or KDE Plasma, ensure to adjust the groupinstall command accordingly (for instance, "Server with GUI" for GNOME).

Step 2: Set the Default Graphical Target

Once the installation finishes, specify that the system should boot directly into a graphical target:

sudo systemctl set-default graphical.target

Later, if you need to revert to multi-user mode—commonly used for headless servers—execute:

sudo systemctl set-default multi-user.target

Step 3: Configure Display Manager

A display manager (like LightDM or GDM) handles the login screen. Depending on your Xfce installation, LightDM might be installed automatically. Check its status or install if necessary:

sudo dnf install lightdm -y
sudo systemctl enable lightdm --now

Verifying that the service is active ensures a proper login interface is ready.

With Xfce installed, the server is now equipped to host a graphical session remotely over VNC. This lightweight environment provides a responsive experience even when connecting over slower networks. The foundation is set for the next critical step: installing and configuring your VNC Server.

VNC Server Installation

A VNC Server manages remote desktop sessions on a server, forwarding the graphical display to clients. CentOS Stream 10 supports a variety of server packages, but TigerVNC is a popular, stable choice. Its ease of configuration and straightforward customizability make it suitable for brand-new setups and more complex environments alike.

Step 1: Install TigerVNC

Begin by installing TigerVNC:

sudo dnf install tigervnc-server -y

This command pulls in the main VNC server components, enabling you to run multiple sessions. It also includes tools like vncviewer for local testing.

Step 2: Create a VNC User (If Necessary)

If you plan on using a dedicated user for remote sessions, create and set a password for that account. For example:

sudo adduser vncuser
sudo passwd vncuser

This ensures that the VNC sessions remain contained to a separate environment, boosting security and simplifying user management.

Step 3: Prepare System Services

Although the vncserver command can function without systemd integration, creating a system service file leads to greater reliability. In the upcoming configuration steps, you will see how to set up and manage these sessions automatically.

At this point, the essential pieces of TigerVNC are in place. The process now moves to configuring VNC to start your preferred desktop environment and controlling authentication behind the scenes.

VNC Server Configuration

These steps focus on customizing VNC to accommodate multiple users, secure password management, and important systemd service options. Proper configuration ensures stable and user-friendly remote sessions.

Step 1: Set the VNC Password

Switch to the vncuser (or the user you plan to run VNC sessions under) and run:

su - vncuser
vncpasswd

Enter a strong password when prompted. This password protects the connection at the VNC protocol level. After you finish, return to your privileged account using exit if necessary.

Step 2: Create the xstartup File

The ~/.vnc/xstartup file dictates which desktop environment is launched for VNC sessions. Use a text editor:

nano ~/.vnc/xstartup

Then, add lines to start Xfce:

#!/bin/bash
xrdb $HOME/.Xresources
startxfce4 &

Save and close the file, then make it executable:

chmod +x ~/.vnc/xstartup

Step 3: Create VNC Service Files

For each user who needs a VNC session, create a systemd service file. For example:

sudo nano /etc/systemd/system/vncserver@:1.service

Place the following contents inside:

[Unit]
Description=VNC Server for %i
After=syslog.target network.target

[Service]
Type=forking
User=vncuser
Group=vncuser
WorkingDirectory=/home/vncuser
ExecStart=/usr/bin/vncserver -geometry 1280x800 -depth 24 :1
ExecStop=/usr/bin/vncserver -kill :1

[Install]
WantedBy=multi-user.target

The :1 indicates display port 5901 by default. Adjust geometry and color depth as needed. Create additional units for :2, :3, etc., if multiple sessions are required.

Enable the service:

sudo systemctl daemon-reload
sudo systemctl enable vncserver@:1.service
sudo systemctl start vncserver@:1.service

If everything is correct, your VNC session should now launch the Xfce desktop environment when connecting on port 5901.

Security Configuration

Guarding a remote desktop solution is extremely important. While VNC handles its own password-based authentication, additional security layers help protect data in transit and minimize intrusion risks.

Firewall Configuration

By default, CentOS Stream 10 blocks incoming connections on new ports. Add a rule for port 5901 (or a custom port if you used a different display number):

sudo firewall-cmd --permanent --add-port=5901/tcp
sudo firewall-cmd --reload

SELinux Settings

In some cases, SELinux blocks VNC connections or prevents certain types of user sessions. Temporarily disable SELinux or configure it properly if you notice errors:

sudo setsebool -P vnc_disable_trans 1

SSH Tunneling

For robust security, many administrators tunnel VNC traffic through SSH. In that scenario, you do not need to expose port 5901 on the firewall. Simply forward traffic to the remote server via an SSH tunnel:

ssh -L 5901:localhost:5901 vncuser@server_ip

After tunneling, connect your VNC client to localhost on port 5901, and traffic remains encrypted end to end. These steps collectively harden a VNC deployment, ensuring only trusted connections gain access.

Testing and Verification

Once the installation and security configurations are in place, confirming that your VNC Server runs correctly becomes crucial. Start by checking the service status:

sudo systemctl status vncserver@:1.service

A green “active (running)” label indicates that the service started successfully. If errors appear, inspect logs using journalctl -xe for clues regarding misconfigurations.

Then, from a local workstation, install a VNC client (such as RealVNC Viewer or TigerVNC Viewer) and connect to server_ip:1. Enter the VNC password created earlier, and it should load your Xfce desktop. If any issues arise, double-check firewall rules, SELinux settings, and your xstartup file’s configuration.

Successful testing affirms that the foundation is sound and the server is fully prepared to host remote desktop sessions.

Advanced Configuration

Once you have a functional VNC Server on CentOS Stream 10, consider enhancing it for multi-user support, automatic startup, and advanced performance optimization.

Multiple User Sessions

Repeat the service file creation steps for different display ports (e.g., 5902, 5903) if multiple users need individual sessions. Provide each user with their own xstartup file, ensuring unique geometry and resource settings to avoid conflicts.

Automatic Startup Upon Reboot

Ensure each service starts at boot time by enabling them:

sudo systemctl enable vncserver@:1.service

Include additional lines for other services if you have multiple sessions. This way, remote sessions come online without manual intervention after reboots.

Performance Optimization

Options like -geometry and -depth in the service file significantly impact performance. Lower resolutions and reduced color depths can dramatically speed up responsiveness on slower connections. You might also explore x11vnc or alternative compression settings if optimized performance is necessary.

These advanced tweaks extend usability and maintain a flexible environment that aligns with varied user requirements. Coupled with robust security and stable connections, such refinements ensure that CentOS Stream 10 efficiently services multiple tasks.

Client Connection Guide

Accessing the server’s GUI requires a VNC client on the local machine. Many options exist for Windows, macOS, and Linux, such as:

  • RealVNC Viewer
  • TigerVNC Viewer
  • UltraVNC (Windows platform)

To connect, make sure the client is installed. Then, specify the server’s IP address or hostname with the port :1 (for display 1). For example:

192.168.1.100:1

When prompted, enter the password you set with vncpasswd. If you opted for SSH tunneling, instead connect to localhost:1 while the tunnel is active. Managing sessions effectively usually involves properly disconnecting before shutting down the server or the viewer. This ensures no stale processes remain in the background.

Congratulations! You have successfully installed VNC Server. Thanks for using this tutorial for installing the VNC Server on your CentOS Stream 10 system. For additional help or useful information, we recommend you check the official VNC website.

VPS Manage Service Offer
If you don’t have time to do all of this stuff, or if this is not your area of expertise, we offer a service to do “VPS Manage Service Offer”, starting from $10 (Paypal payment). Please contact us to get the best deal!
Tags
r00t
Photo of r00t

r00t

r00t is an experienced Linux enthusiast and technical writer with a passion for open-source software. With years of hands-on experience in various Linux distributions, r00t has developed a deep understanding of the Linux ecosystem and its powerful tools. He holds certifications in SCE and has contributed to several open-source projects. r00t is dedicated to sharing her knowledge and expertise through well-researched and informative articles, helping others navigate the world of Linux with confidence.
Copyright © 2025 idroot.us | All Rights Reserved.
Back to top button