5.0
Table Of Contents
- VMware View Installation
- Contents
- VMware View Installation
- System Requirements for Server Components
- System Requirements for Client Components
- Supported Operating Systems for View Agent
- Supported Operating Systems for Windows-Based View Client and View Client with Local Mode
- Hardware Requirements for Local Mode Desktops
- Client Browser Requirements for View Portal
- Remote Display Protocol and Software Support
- Adobe Flash Requirements
- Smart Card Authentication Requirements
- Preparing Active Directory
- Configuring Domains and Trust Relationships
- Creating an OU for View Desktops
- Creating OUs and Groups for Kiosk Mode Client Accounts
- Creating Groups for View Users
- Creating a User Account for vCenter Server
- Create a User Account for View Composer
- Configure the Restricted Groups Policy
- Using View Group Policy Administrative Template Files
- Prepare Active Directory for Smart Card Authentication
- Installing View Composer
- Installing View Connection Server
- Installing the View Connection Server Software
- Installation Prerequisites for View Connection Server
- Install View Connection Server with a New Configuration
- Install a Replicated Instance of View Connection Server
- Configure a Security Server Pairing Password
- Install a Security Server
- Microsoft Windows Installer Command-Line Options
- Uninstalling View Products Silently by Using MSI Command-Line Options
- Configuring User Accounts for vCenter Server and View Composer
- Where to Use the vCenter Server User and Domain User for View Composer
- Configure a vCenter Server User for View Manager, View Composer, and Local Mode
- View Manager Privileges Required for the vCenter Server User
- View Composer Privileges Required for the vCenter Server User
- Local Mode Privileges Required for the vCenter Server User
- Configuring View Connection Server for the First Time
- Configuring View Client Connections
- Sizing Windows Server Settings to Support Your Deployment
- Installing the View Connection Server Software
- Installing View Transfer Server
- Configuring SSL Certificates for View Servers
- Configuring SSL Certificates for View Connection Server and Security Server
- Configuring SSL Certificates for View Transfer Server
- Prepare an Existing Certificate in PKCS#12 Format for Use with View Transfer Server
- Obtain a Signed Certificate from a CA for Use with a View Transfer Server Instance
- Generate a Self-Signed Certificate for View Transfer Server
- Configure a View Transfer Server Instance to Use a Certificate
- Configure SSL for View Transfer Server Communications
- Configuring Certificate Checking in View Client for Windows
- Appendix: Additional SSL Configuration Tasks
- Creating an Event Database
- Installing and Starting View Client
- Index
Import a Signed Server Certificate into a Keystore File
If you obtained a signed server certificate from a CA, use keytool to import the certificate into your keystore
file.
Procedure
1 Copy the text file that contains your server certificate to the directory that contains your keystore file and
save it as certificate.p7.
For example:
-----BEGIN PKCS7-----
MIIF+AYJKoZIhvcNAQcCoIIF6TCCBeUCAQExADALBgk
LDCCApWgAwIBAgIQTpY7DsV1n1HeMGgMjMR2PzANBgk
i7coVx71/lCBOlFmx66NyKlZK5mObgvd2dlnsAP+nnS
EhCsdpikSpbtdo18jUubV6z1kQ71CrRQtbi/WtdqxQE
-----END PKCS7-----
2 Open a command prompt and use keytool to import the server certificate into the keystore file.
For example:
keytool -importcert -keystore keys.jks -storepass secret -keyalg "RSA" -trustcacerts -file
certificate.p7
3 If you specified a temporary certificate, type yes when you receive the message ... is not trusted.
Install reply anyway?.
keytool generates this message because temporary certificates are not meant for production use.
What to do next
Configure your View Connection Server instance or security server to use the certificate. See “Configure a
View Connection Server Instance or Security Server to Use a New Certificate,” on page 81.
Configure a View Connection Server Instance or Security Server to Use a New
Certificate
To configure a View Connection Server instance or security server to use a new SSL server certificate, you must
set properties in the locked.properties file on the View Connection Server or security server host.
Prerequisites
Obtain an existing PKCS#12 file, export an existing Microsoft IIS SSL server certificate, or create a new SSL
server certificate.
Procedure
1 Copy the keystore file that contains your certificate to the SSL gateway configuration directory on the
View Connection Server or security server host.
For example:
install_directory
\VMware\VMware View\Server\sslgateway\conf\
keystore_file
keystore_file is the name of the keystore file.
For example, your keystore file might be keys.jks if you imported your certificate with the keytool utility.
Your keystore file might be keys.pfx if you have an existing PKCS#12 file or you exported an existing
Microsoft IIS SSL server certificate.
Chapter 7 Configuring SSL Certificates for View Servers
VMware, Inc. 81