6.4

TLS Configuration Properties
The TLS protocols and ciphers for the desktop and broker message servers are specied in properties in the
msgserver.properties le. The TLS protocols and ciphers for the desktop and broker agents are specied in
properties in the msgclient.properties le.
Table 31. SSL/TLS Configuration Properties
Property Default Value
sslProtocols List of accepted TLS protocols,
separated by commas.
TLSv1.2
sslCiphers List of accepted TLS ciphers, separated
by commas.
TLS_DHE_DSS_WITH_AES_128_GCM_SHA256
TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256
TLS_DHE_RSA_WITH_AES_128_GCM_SHA256
TLS_ECDHE_RSA_WITH_AES_128_GCM_SHA256
Change the Default TLS Configuration for Servers
You can change the default TLS conguration that the desktop message server and broker message server
use by modifying the msgserver.properties le on the server where the Horizon adapter is running.
Prerequisites
n
Verify that you can connect to the node where the Horizon adapter is running.
n
Become familiar with the SSL/TLS conguration properties. See “TLS Conguration Properties,” on
page 12.
Procedure
1 Log in to the node where the Horizon adapter is running.
2 In a text editor, open the msgserver.properties le.
Platform File Location
Linux
/usr/lib/vmware-
vcops/user/plugins/inbound/V4V_adapter3/work/msgserver.prop
erties
Windows
C:\vmware\vcenter-
operations\user\plugins\inbound\V4V_adapter3\work\msgserver
.properties
3 Modify the TLS conguration properties.
4 Save your changes and close the msgserver.properties le.
Change the Default TLS Configuration for Agents
You can change the TLS conguration that the desktop and broker agents use to connect to the desktop and
broker message servers by modifying the msgclient.properties le.
For desktop agents, you modify the msgclient.properties le on the desktop virtual machine or RDS server
where Horizon Agent is running. For a broker agent, you modify the msgclient.properties le on the
Horizon Connection server host where the broker agent is installed.
VMware vRealize Operations for Horizon Security
12 VMware, Inc.