6.0
Table Of Contents
- View Security
- Contents
- View Security
- View Security Reference
- View Accounts
- View Security Settings
- View Resources
- View Log Files
- View TCP and UDP Ports
- Services on a View Connection Server Host
- Services on a Security Server
- Configuring Security Protocols and Cipher Suites on a View Connection Server Instance or on a Security Server
- Index
Table 1‑3. Security-Related Global Settings
Setting Description
Change data recovery
password
The password is required when you restore the View LDAP configuration from an
encrypted backup.
When you install View Connection Server version 5.1 or later, you provide a data recovery
password. After installation, you can change this password in View Administrator.
When you back up View Connection Server, the View LDAP configuration is exported as
encrypted LDIF data. To restore the encrypted backup with the vdmimport utility, you
must provide the data recovery password. The password must contain between 1 and 128
characters. Follow your organization's best practices for generating secure passwords.
Message security mode Determines if signing and verification of the JMS messages passed between View
components takes place.
If set to Disabled, message security mode is disabled.
If set to Enabled, View components reject unsigned messages.
If set to Mixed, message security mode is enabled, but not enforced for View components
that predate View Manager 3.0.
The default setting is Enabled for new installations.
Reauthenticate secure
tunnel connections after
network interruption
Determines if user credentials must be reauthenticated after a network interruption when
Horizon Clients use secure tunnel connections to View desktops and applications.
This setting offers increased security. For example, if a laptop is stolen and moved to a
different network, the user cannot automatically gain access to the View desktops and
applications because the network connection was temporarily interrupted.
This setting is enabled by default.
Forcibly disconnect users Disconnects all desktops and applications after the specified number of minutes has passed
since the user logged in to View. All desktops and applications will be disconnected at the
same time regardless of when the user opened them.
The default is 600 minutes.
For clients that support
applications.
If the user stops using the
keyboard and mouse,
disconnect their
applications and discard
SSO credentials
Protects application sessions when there is no keyboard or mouse activity on the client
device. If set to After ... minutes, View disconnects all applications and discards SSO
credentials after the specified number of minutes without user activity. Desktop sessions
are disconnected. Users must log in again to reconnect to the applications that were
disconnected or launch a new desktop or application.
If set to Never, View never disconnects applications or discards SSO credentials due to user
inactivity.
The default is Never.
Other clients.
Discard SSO credentials
Discards the SSO credentials after a certain time period. This setting is for clients that do
not support application remoting. If set to After ... minutes, users must log in again to
connect to a desktop after the specified number of minutes has passed since the user logged
in to View, regardless of any user activity on the client device.
The default is After 15 minutes.
Enable IPSec for Security
Server pairing
Determines whether to use Internet Protocol Security (IPSec) for connections between
security servers and View Connection Server instances.
By default, IPSec for security server connections is enabled.
View Administrator
session timeout
Determines how long an idle View Administrator session continues before the session
times out.
IMPORTANT Setting the View Administrator session timeout to a high number of minutes
increases the risk of unauthorized use of View Administrator. Use caution when you allow
an idle session to persist a long time.
By default, the View Administrator session timeout is 30 minutes. You can set a session
timeout from 1 to 4320 minutes.
Chapter 1 View Security Reference
VMware, Inc. 9