5.2
Table Of Contents
- VMware Horizon View Security
- Contents
- VMware Horizon View Security
- VMware Horizon View Security Reference
- View Accounts
- View Security Settings
- View Resources
- View Log Files
- View TCP and UDP Ports
- Services on a View Connection Server Host
- Services on a Security Server
- Services on a View Transfer Server Host
- Configuring Security Protocols and Cipher Suites on a View Connection Server Instance or on a Security Server
- Index
Table 1-3. Security-Related Global Settings (Continued)
Setting Description
Use IPSec for Security Server connections Determines whether to use Internet Protocol Security (IPSec)
for connections between security servers and View
Connection Server instances.
By default, IPSec for security server connections is enabled.
View Administrator session timeout Determines how long an idle View Administrator session
continues before the session times out.
IMPORTANT Setting the View Administrator session timeout
to a high number of minutes increases the risk of
unauthorized use of View Administrator. Use caution when
you allow an idle session to persist a long time.
By default, the View Administrator session timeout is 30
minutes. You can set a session timeout from 1 to 4320
minutes.
For more information about these settings and their security implications, see the VMware Horizon View
Administration document.
NOTE SSL is required for all View Client connections and View Administrator connections to View. If your
View deployment uses load balancers or other client-facing, intermediate servers, you can off-load SSL to them
and then configure non-SSL connections on individual View Connection Server instances and security servers.
See "Off-load SSL Connections to Intermediate Servers" in the VMware Horizon View Administration document.
Security-Related Server Settings in View Administrator
Security-related server settings are accessible under View Configuration > Servers in View Administrator.
Table 1-4. Security-Related Server Settings
Setting Description
Use PCoIP Secure Gateway for PCoIP connections to
desktop
Determines whether View Client makes a further secure
connection to the View Connection Server or security server
host when users connect to a View desktop with the PCoIP
display protocol.
If this setting is disabled, the desktop session is established
directly between the client system and the View desktop
virtual machine, bypassing the View Connection Server or
security server host.
This setting is disabled by default.
Use secure tunnel connection to desktop Determines whether View Client makes a further HTTPS
connection to the View Connection Server or security server
host when users connect to a View desktop.
If this setting is disabled, the desktop session is established
directly between the client system and the View desktop
virtual machine, bypassing the View Connection Server or
security server host.
This setting is enabled by default.
Use secure tunnel connection for Local Mode operations Determines whether local desktops use tunneled
communications.
If this setting is enabled, network traffic is routed through
View Connection Server or a security server if one is
configured.
If this setting is disabled, data transfers take place directly
between local desktops and View Transfer Server.
This setting is disabled by default.
VMware Horizon View Security
10 VMware, Inc.