User manual
Table Of Contents
- Using VMware Horizon Client for Android
- Contents
- Using VMware Horizon Client for Android
- Setup and Installation
- System Requirements
- System Requirements for Thin Clients
- System Requirements for Chromebooks
- System Requirements for Real-Time Audio-Video
- Smart Card Authentication Requirements
- Configure Smart Card Authentication
- Fingerprint Authentication Requirements
- Supported Desktop Operating Systems
- Preparing Connection Server for Horizon Client
- Install or Upgrade Horizon Client
- Configure Horizon Client in Thin Client Mode
- Using Embedded RSA SecurID Software Tokens
- Configure Advanced TLS/SSL Options
- Configure VMware Blast Options
- Configure the Horizon Client Default View
- Configure AirWatch to Deliver Horizon Client to Android Devices
- Configure AirWatch to Deliver Horizon Client to Android for Work Devices
- Horizon Client Data Collected by VMware
- Using URIs to Configure Horizon Client
- Managing Remote Desktop and Application Connections
- Connect to a Remote Desktop or Application
- Setting the Certificate Checking Mode for Horizon Client
- Share Access to Local Storage
- Create a Desktop or Application Shortcut for the Android Home Screen
- Manage Server Shortcuts
- Select a Favorite Remote Desktop or Application
- Disconnecting From a Remote Desktop or Application
- Log Off from a Remote Desktop
- Manage Desktop and Application Shortcuts
- Using Android 7.0 Nougat Multi-Window Modes with Horizon Client
- Using a Microsoft Windows Desktop or Application
- Feature Support Matrix for Android
- Input Devices, Keyboards, and Keyboard Settings
- Enable the Japanese 106/109 Keyboard Layout
- Using the Real-Time Audio-Video Feature for Microphones
- Using Native Operating System Gestures with Touch Redirection
- Using the Unity Touch Sidebar with a Remote Desktop
- Using the Unity Touch Sidebar with a Remote Application
- Horizon Client Tools on a Mobile Device
- Gestures
- Multitasking
- Copying and Pasting Text and Images
- Saving Documents in a Remote Application
- Screen Resolutions and Using External Displays
- PCoIP Client-Side Image Cache
- Internationalization and International Keyboards
- Troubleshooting Horizon Client
- Index
Using Embedded RSA SecurID Software Tokens
If you create and distribute RSA SecurID software tokens to end users, they need enter only their PIN, rather
than PIN and token code, to authenticate.
Setup Requirements
You can use Compressed Token Format (CTF) or dynamic seed provisioning, which is also called CT-KIP
(Cryptographic Token Key Initialization Protocol), to set up an easy-to-use RSA authentication system. With
this system, you generate a URL to send to end users. To install the token, end users paste this URL directly
into Horizon Client on their client devices. The dialog box for pasting this URL appears when end users
connect to Connection Server with Horizon Client.
Horizon Client also supports le-based provisioning. When a le-based software token is issued to a user,
the authentication server generates an XML-format token le, which is called an SDTID le for its .sdtid
extension. Horizon Client can import the SDTID le directly. Users can also launch Horizon Client by
tapping the SDTID le in a le browser.
After the software token is installed, end users enter a PIN to authenticate. With external RSA tokens, end
users must enter a PIN and the token code generated by a hardware or software authentication token.
The following URL prexes are supported if end users will be copying and pasting the URL into
Horizon Client when Horizon Client is connected to an RSA-enabled Connection Server instance:
n
viewclient-securid://
n
http://127.0.0.1/securid/
End users can install the token by tapping the URL. Both prexes viewclient-securid:// and
http://127.0.0.1/securid/ are supported. Note that not all browsers support hyperlinks that begin with
http://127.0.0.1. Also some le browsers, such as the File Manager app on the ASUS Transformer Pad,
cannot link the SDTID le with Horizon Client.
For information about using dynamic seed provisioning or le-based (CTF) provisioning, see the Web page
RSA SecurID Software Token for iPhone Devices at hp://www.rsa.com/node.aspx?id=3652 or RSA SecurID
Software Token for Android at hp://www.rsa.com/node.aspx?id=3832.
Instructions to End Users
When you create a CTFString URL or CT-KIP URL to send to end users, you can generate a URL with or
without a password or activation code. You send this URL to end users in an email that must include the
following information:
n
Instructions for navigating to the Install Software Token dialog box.
Tell end users to tap External Token in the Horizon Client dialog box that prompts them for RSA
SecurID credentials when they connect to a Connection Server instance.
n
CTFString URL or CT-KIP URL in plain text.
If the URL has formaing on it, end users will get an error message when they try to use it in
Horizon Client.
n
Activation code, if the CT-KIP URL that you create does not already include the activation code.
End users must enter this activation code in a text eld of the dialog box.
n
If the CT-KIP URL includes an activation code, tell end users that they need not enter anything in the
Password or Activation Code text box in the Install Software Token dialog box.
Using VMware Horizon Client for Android
16 VMware, Inc.