Your server infrastructure should be your strongest defense, armed with the latest infrastructure security innovations to guard against and recover from security attacks. Limiting security to firewalls is no longer enough. Protect your enterprise with innovations in firmware protection, malware detection, and firmware recovery — right down to the silicon.

Before View 4.6, PCoIP was not a very good choice for View desktops; neither the View Security Server nor the View Connection Server was able to proxy the PCoIP connection. Meaning, that the external client needed a direct connection (and DNS resolution) to the View desktop, therefore, opening up the internal structures to the external network. Administrators use Horizon Console to configure Horizon Connection Server, deploy and manage remote desktops and applications, control user authentication, initiate and examine system events, and carry out analytical activities. Client systems that run Horizon Console must meet certain requirements. View Composer Requirements Check that the following network ports are opened on the firewall for the security server or View Connection Server host. In View Administrator, make sure that the PCoIP Secure Gateway is enabled. Click View Configuration> Servers. Select the View Connection Server instance on the Connection Serverstab and click Edit. Every View server should synchronize its time clock from a time synchronization server. Having an incorrect time clock on a security server makes SSL server certificate validation periods inaccurate and log analysis difficult. Configure all View security servers to use the same secure and trusted internal or external time synchronization server. By default, since View 5.3, traffic between the Security Server and Connection Server is governed by IPSEC rules. When you complete an upgrade of a View Security Server, these rules will need to be recreated, and if the existing rules still exist, this will fail. To allow a security server to communicate with each View Connection Server instance that resides within the internal network, the back-end firewall must allow inbound traffic on certain TCP ports. Behind the back-end firewall, internal firewalls must be similarly configured to allow remote desktops applications and View Connection Server


Sep 19, 2011 How to install Connection and Security servers with VMware Jan 28, 2010

A typical network configuration that provides secure connections for external clients includes a security server. To use View Administrator to enable or disable the secure tunnel and PCoIP Secure Gateway on a security server, you must edit the View Connection Server instance that is paired with the security server.

Tips for implementing a VMware Horizon View Security Server Mar 22, 2013 View Security Server in DMZ |VMware Communities Sep 19, 2011