6.1
Table Of Contents
- View Security
- Contents
- View Security
- View Security Reference
- View Accounts
- View Security Settings
- View Resources
- View Log Files
- View TCP and UDP Ports
- Services on a View Connection Server Host
- Services on a Security Server
- Configuring Security Protocols and Cipher Suites on a View Connection Server Instance or on a Security Server
- Default Global Policies for Security Protocols and Cipher Suites
- Updating JCE Policy Files to Support High-Strength Cipher Suites
- Configuring Global Acceptance and Proposal Policies
- Configure Acceptance Policies on Individual View Servers
- Internet Engineering Task Force Standards
- Perfect Forward Secrecy
- SSLv3 Is Disabled in View
- Deploying USB Devices in a Secure View Environment
- Index
View Resources
View includes several configuration files and similar resources that must be protected.
Table 1‑9. View Connection Server and Security Server Resources
Resource Location Protection
LDAP settings Not applicable. LDAP data is protected automatically
as part of role-based access control.
LDAP backup files
<Drive
Letter>:\Programdata\VMWare\VDM\backups
(Windows Server 2008)
Protected by access control.
locked.properties
(Certificate
properties file)
install_directory\VMware\VMware
View\Server\sslgateway\conf
Can be protected by access control.
Ensure that this file is secured against
access by any user other than View
administrators.
Log files See “View Log Files,” on page 17 Protected by access control.
web.xml
(Tomcat
configuration file)
install_directory\VMware
View\Server\broker\web apps\ROOT\Web INF
Protected by access control.
View Log Files
View creates log files that record the installation and operation of its components.
NOTE View log files are intended for use by VMware Support. VMware recommends that you configure
and use the event database to monitor View. For more information, see the View Installation and View
Integration documents.
Table 1‑10. View Log Files
View Component File Path and Other Information
All components
(installation logs)
%TEMP%\vminst.log_date_timestamp
%TEMP%\vmmsi.log_date_timestamp
View Agent
<Drive Letter>:\ProgramData\VMware\VDM\logs
To access View log files that are stored in <Drive
Letter>:\ProgramData\VMware\VDM\logs, you must open the logs from a program with
elevated administrator privileges. Right-click the program file and select Run as
administrator.
If a User Data Disk (UDD) is configured, <Drive Letter> might correspond to the UDD.
The logs for PCoIP are named pcoip_agent*.log and pcoip_server*.log.
View Applications View Event Database configured on an SQL Server or Oracle database server.
Windows Application Event logs. Disabled by default.
View Composer
%system_drive%\Windows\Temp\vmware-viewcomposer-ga-new.log on the linked-clone
desktop.
The View Composer log contains information about the execution of QuickPrep and Sysprep
scripts. The log records the start time and end time of script execution, and any output or
error messages.
Chapter 1 View Security Reference
VMware, Inc. 17