VMware Horizon View Client 4.10 and TLS1.0

Since version 4.10 of the VMware Horizon View Client, TLS 1.0 has been disabled and is not supported anymore (See Release Notes)

To ensure that clients can still connect, change the locked.properties file located at C:\Program Files\VMware\VMware View\Server\sslgateway\conf\ on all VMware Horizon View Connection servers to the below and restart the VMware Horizon View Connection Server service:

# The following list should be ordered with the latest protocol first:
secureProtocols.1=TLSv1.2
secureProtocols.2=TLSv1.1
secureProtocols.3=TLSv1
 
# This setting must be the latest protocol given in the list above:
preferredSecureProtocol=TLSv1.2
 
# The order of the following list is unimportant unless honorClientOrder is false:
enabledCipherSuite.1=TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256
enabledCipherSuite.2=TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA
enabledCipherSuite.3=TLS_RSA_WITH_AES_128_CBC_SHA256
enabledCipherSuite.4=TLS_RSA_WITH_AES_128_CBC_SHA
 
# Use the ordering of cipher suites given above:
honorClientOrder=false

References:
https://docs.vmware.com/en/VMware-Horizon-7/7.2/com.vmware.horizon-view.security.doc/GUID-134A15A5-3D57-43D2-91C3-CCCCDDC65E7C.html
https://docs.vmware.com/en/VMware-Horizon-7/7.2/com.vmware.horizon-view.security.doc/GUID-7FA3EE31-2DFD-4979-A972-87B40695FFC5.html

 

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.