Changing the View Connection Server Ciphers

by | VMware Horizon View | 0 comments

Have you ever wanted to control your cipher suite or enforce a certain tls protocol in VMware View? Changing your cipher suite can be warranted for a few reasons. Maybe one cipher suite is to weak, or maybe development on a particular endpoint does not support this type of cipher. Or maybe your CISO requreirs you to do so. Whatever the reason may be you can control it with VMware at the server level forcing the clients to negotiate on only a few ciphers or protocols

To change the view connection server ciphers and negotiation protocol open a notepad and enter the following below. After you are done editing make sure you save as locked.properties

#should be ordered with the latest protocol first:

secureProtocols.1=TLS1.2

#this setting must be the latest protocol givin in the list above:

preferredSecureProtocol=TLSv1.2

# The order of the following list is unimportant:

enabledCipherSuite.1=TLS_ECDHE_RSA_WITH_AES128_CBCSHA

enabledCipherSuite.2=TLS_RSA_WITH_AES_128_CBC_SHA

copy this into: C:\program files\vmware\vmware view\server\sslgateway\conf