6.4
Table Of Contents
- VMware vRealize Operations for Horizon Security
- Contents
- VMware vRealize Operations for Horizon Security
- Managing RMI Communication in vRealize Operations for Horizon
- Changing the Default TLS Configuration in vRealize Operations for Horizon
- Managing Authentication in vRealize Operations for Horizon
- Index
TLS Configuration Properties
The TLS protocols and ciphers for the desktop and broker message servers are specied in properties in the
msgserver.properties le. The TLS protocols and ciphers for the desktop and broker agents are specied in
properties in the msgclient.properties le.
Table 3‑1. SSL/TLS Configuration Properties
Property Default Value
sslProtocols List of accepted TLS protocols,
separated by commas.
TLSv1.2
sslCiphers List of accepted TLS ciphers, separated
by commas.
TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
Change the Default TLS Configuration for Servers
You can change the default TLS conguration that the desktop message server and broker message server
use by modifying the msgserver.properties le on the server where the Horizon adapter is running.
Prerequisites
n
Verify that you can connect to the node where the Horizon adapter is running.
n
Become familiar with the SSL/TLS conguration properties. See “TLS Conguration Properties,” on
page 12.
Procedure
1 Log in to the node where the Horizon adapter is running.
2 In a text editor, open the msgserver.properties le.
Platform File Location
Linux
/usr/lib/vmware-
vcops/user/plugins/inbound/V4V_adapter3/work/msgserver.prop
erties
Windows
C:\vmware\vcenter-
operations\user\plugins\inbound\V4V_adapter3\work\msgserver
.properties
3 Modify the TLS conguration properties.
4 Save your changes and close the msgserver.properties le.
Change the Default TLS Configuration for Agents
You can change the TLS conguration that the desktop and broker agents use to connect to the desktop and
broker message servers by modifying the msgclient.properties le.
For desktop agents, you modify the msgclient.properties le on the desktop virtual machine or RDS server
where Horizon Agent is running. For a broker agent, you modify the msgclient.properties le on the
Horizon Connection server host where the broker agent is installed.
VMware vRealize Operations for Horizon Security
12 VMware, Inc.