View API


Data Object - GlobalSettingsSecurityData

Class
VMware.Hv.SecurityData
Property of
GlobalSettingsInfo
See also
GlobalSettingsCertificateAuthenticationData, GlobalSettingsCrlPrefetchConfiguration
Since
Horizon View 6.0

Data Object Description

Global security settings determine whether clients are reauthenticated after interruptions, message security mode is enabled, IPSec is used for security server connections, and SSO is used for local resource operations.

Data Object Properties

Properties

Name Type Description
reauthSecureTunnelAfterInterruptionxsd:boolean

Reauthenticate secure tunnel connections after network interruption Determines if user credentials must be reauthenticated after a network interruption when View clients use secure tunnel connections to View resources. When you select this setting, if a secure tunnel connection ends during a session, View Client requires the user to reauthenticate before reconnecting. This setting offers increased security. For example, if a laptop is stolen and moved to a different network, the user cannot automatically gain access to the remote resource because the network connection was temporarily interrupted. When this setting is not selected, the client reconnects to the resource without requiring the user to reauthenticate. This setting has no effect when you use direct connection.
disallowEnhancedSecurityModexsd:boolean

Reserved for future use Default value: false

Since Horizon 8.6
  • This property cannot be updated.
noManagedCertsxsd:boolean

Reserved for future use Default value: false

Since Horizon 8.6
  • This property cannot be updated.
messageSecurityModexsd:string

Determines if signing and verification of the JMS messages passed between View Manager components takes place. This value can only be changed from ENHANCED if the disallowEnhancedSecurityMode is set to true.
  • This property will be one of:
    Value Description
    "DISABLED"Message security mode is disabled.
    "MIXED"Message security mode is enabled but not enforced. You can use this mode to detect components in your View environment that predate View Manager 3.0. The log files generated by View Connection Server contain references to these components.
    "ENABLED"Message security mode is enabled. Unsigned messages are rejected by View components. Message security mode is enabled by default. Note: View components that predate View Manager 3.0 are not allowed to communicate with other View components
    "ENHANCED"Message Security mode is Enhanced. Message signing and validation is performed based on the current Security Level and desktop Message Security mode.
messageSecurityStatusxsd:string

The status of the JMS message security. This tracks the application of changes to messageSecurityMode.

Since Horizon View 6.1
  • This property cannot be updated.
  • This property will be one of:
    Value Description
    "NOTSET"The cluster is performing at Enabled/Mixed/DISABLED message security mode.
    "ENHANCED"The cluster is performing at the Enhanced message security mode.
    "WAITING_FOR_BUS_RESTARTS"The cluster is waiting for a bus restart to transition to ENHANCED message security mode or from ENHANCED message security mode .
    "PENDING_ENHANCED"The cluster is propogating the change to ENHANCED message security mode to all nodes.
    "LEAVING_ENHANCED"The cluster is leaving the ENHANCED message security mode.
    "PREPARING_ENHANCED"The cluster is preparing to go in ENHANCED message security mode.
enableIPSecForSecurityServerPairingxsd:booleanDeprecated. This property is being deprecated since Security Server will no longer be supported in future releases. Please consider using Unified Access Gateway (UAG) instead.

Determines whether to use Internet Protocol Security (IPSec) for connections between security servers and View Connection Server instances. By default, secure connections (using IPSec) for security server connections is enabled.
certAuthDataGlobalSettingsCertificateAuthenticationData

Certificate authentication Data.

Since Horizon 8.10
crlPrefetchConfigurationGlobalSettingsCrlPrefetchConfiguration

CRL Prefetch Service Configuration

Since Horizon 8.11