User manual
Table Of Contents
- Using VMware Horizon Client for Android
- Contents
- Using VMware Horizon Client for Android
- Setup and Installation
- System Requirements
- System Requirements for Thin Clients
- System Requirements for Real-Time Audio-Video
- Smart Card Authentication Requirements
- Configure Smart Card Authentication
- Fingerprint Authentication Requirements
- Supported Desktop Operating Systems
- Preparing Connection Server for Horizon Client
- Install or Upgrade Horizon Client
- Configure Horizon Client in Thin Client Mode
- Using Embedded RSA SecurID Software Tokens
- Configure Advanced TLS/SSL Options
- Configure VMware Blast Options
- Configure the Horizon Client Default View
- Configure AirWatch to Deliver Horizon Client to Mobile Devices
- Horizon Client Data Collected by VMware
- Using URIs to Configure Horizon Client
- Managing Remote Desktop and Application Connections
- Connect to a Remote Desktop or Application
- Certificate Checking Modes for Horizon Client
- Share Access to Local Storage
- Create a Desktop or Application Shortcut for the Android Home Screen
- Manage Server Shortcuts
- Select a Favorite Remote Desktop or Application
- Disconnecting from a Remote Desktop or Application
- Log Off from a Remote Desktop
- Manage Desktop and Application Shortcuts
- Using a Microsoft Windows Desktop or Application
- Feature Support Matrix for Android
- Input Devices, Keyboards, and Keyboard Settings
- Enable the Japanese 106/109 Keyboard Layout
- Using the Real-Time Audio-Video Feature for Microphones
- Using Native Operating System Gestures with Touch Redirection
- Using the Unity Touch Sidebar with a Remote Desktop
- Using the Unity Touch Sidebar with a Remote Application
- Horizon Client Tools on a Mobile Device
- Gestures
- Multitasking
- Saving Documents in a Remote Application
- Screen Resolutions and Using External Displays
- PCoIP Client-Side Image Cache
- Internationalization and International Keyboards
- Troubleshooting Horizon Client
- Index
Certificate Checking Modes for Horizon Client
Administrators and sometimes end users can configure whether client connections are rejected if any or
some server certificate checks fail.
Certificate checking occurs for SSL connections between Connection Server and Horizon Client. Certificate
verification includes the following checks:
n
Is the certificate intended for a purpose other than verifying the identity of the sender and encrypting
server communications? That is, is it the correct type of certificate?
n
Has the certificate expired, or is it valid only in the future? That is, is the certificate valid according to
the computer clock?
n
Does the common name on the certificate match the host name of the server that sends it? A mismatch
can occur if a load balancer redirects Horizon Client to a server that has a certificate that does not match
the host name entered in Horizon Client. Another reason a mismatch can occur is if you enter an IP
address rather than a host name in the client.
n
Is the certificate signed by an unknown or untrusted certificate authority (CA)? Self-signed certificates
are one type of untrusted CA.
To pass this check, the certificate's chain of trust must be rooted in the device's local certificate store.
IMPORTANT For instructions about distributing a self-signed root certificate that users can install on their
Android devices, as well as instructions for installing a certificate on an Android device, see documentation
on the Google Web site, such as the Android 3.0 User's Guide.
To set the security mode, open Settings. If you are connected to a remote desktop or application in full-
screen mode, tap the Horizon Client Tools radial menu icon and tap the gear icon. If you are not using full-
screen mode, Settings is in the menu in the upper right corner of the Horizon Client toolbar. If you are not
connected to a remote desktop or application, tap the gear icon in the upper right corner of the
Horizon Client screen. In Settings, tap Security options and tap Security mode. You have three choices:
n
Never connect to untrusted servers. If any of the certificate checks fails, the client cannot connect to the
server. An error message lists the checks that failed.
n
Warn before connecting to untrusted servers. If a certificate check fails because the server uses a self-
signed certificate, you can click Continue to ignore the warning. For self-signed certificates, the
certificate name is not required to match the server name you entered in Horizon Client.
n
Do not verify server identity certificates. This setting means that no certificate checking occurs.
If the certificate checking mode is set to Warn, you can still connect to a Connection Server instance that uses
a self-signed certificate.
If an administrator later installs a security certificate from a trusted certificate authority, so that all certificate
checks pass when you connect, this trusted connection is remembered for that specific server. In the future,
if that server ever presents a self-signed certificate again, the connection fails. After a particular server
presents a fully verifiable certificate, it must always do so.
Share Access to Local Storage
You can configure Horizon Client to share local storage with a remote desktop or application. This feature is
called client drive redirection.
In a Windows remote desktop or remote application, local storage appears in the Devices and drives section
in the This PC folder, or in the Other section in the Computer folder. The folders and storage devices that
you select for sharing use the naming format name on HorizonClient.
Using VMware Horizon Client for Android
32 VMware, Inc.