3.0.1
Table Of Contents
- Administration Guide
- Contents
- About This Book
- Introduction
- Installation
- View Administrator
- Virtual Desktop Deployment
- Client Management
- View Client and View Portal
- Client Connections from the Internet
- Creating SSL Server Certificates
- Using Existing SSL Certificates
- Smart Card Authentication
- RSA SecurID Authentication
- View Client Command Line Options
- Virtual Printing
- View Composer
- Offline Desktop
- Component Policies
- Unified Access
- Troubleshooting
- Glossary
- Index
VMware, Inc. 75
Chapter 5 Client Management
Bydefault,theclientHost,clientPort,andclientProtocolpropertiesdefaultto
thoseexhibitedbythesecurityserver;theserversettingsthemselvescanbeexplicitly
configuredusingtheserverName,serverPort,andserverProtocolproperties.
If thesevaluesareexplicitlyset,theportandprotocolvaluesshouldcorrelatebetween
clientandserver.
Onescenariowhereyo
umayneedtospecifydifferentportandprotocolsettingsis
whereanintermediarySSLacceleratorexistsbetweentheclientandsecurityserver.
In anarrangementsuchasthis,theclientPortandclientProtocolcouldbesetto
443andhttps,buttheback‐endcommunicationsbetweentheacceleratorandthe
serv
ercouldtakeplaceoverhttpusingport80.
Creating SSL Server Certificates
ASecureSocketsLayer(SSL)certificateisacryptographicallysealeddataobjectthat
containstheidentityofaserver,publicandprivateencryptionkeys,andthedigital
signatureofthecertificateissuer.Certificatesservetwomajorpurposes:
Theycanprovideauthenticatedprooftoaclientthatthewebsitetheyvisitis
ownedbythecompanyorindividualwhohasinstalledthecertificate.
Theycontainthepublickeythattheclientusestoestablishanencrypted
connectiontoaserver.
Table 5-1. locked.properties—Client and Server properties
Property Description
clientHost Theexternallyresolvablehostnamethattheclientisinstructedtouse
whencontactingthesecurityserver.
Ifnotspecified,thisissettothevaluespecifiedbyserverNameorthe
systemdefault.
clientPort Theportthattheclientisinstructedtousewhencontactingthesecurity
server.
Ifnotspecified,thisissettoth
evaluespecifiedbyserverPortorthe
systemdefault.
clientProtocol Theprotocolthattheclientisinstructedtousewhencontactingthe
securityserver—thiscanbehttporhttps.
Ifnotspecified,thisissettothevaluespecifiedbyserverProtocolorthe
systemdefault.
serverName Theuniqueidentityofth
esecurityserver.
serverPort Theportthatthesecurityserverlistenson.Defaultis80.
serverProtocol Theprotocolthatthesecurityserv eruses—thiscanbeeitherhttporhttps.
Defaultishttp.