The AES-128 cipher suite will be available. The endpoint will use certificates Certification Authority certificates from the machine account's "MY" store and Certification Authority certificates from the "ROOT" store.Ģ. The PCoIP Connection Managers certificate configuration is in the Tomcat server config file, located in /opt/Teradici/thirdparty/tomcat/conf/server.xml. If this 'Configure SSL connections' setting is disabled or not configured:ġ. The resulting PCoIP Client will satisfy Security Tools such as port scanners. If the Personal store for the Local Machine is used, leave the CA Certificate store name unchanged with the value, "ROOT" (without the quotes), unless a different store location was used in step 1.
In Horizon 7, the PSG service creates a default, self-signed TLS.
To comply with industry or jurisdiction security regulations, you can replace the default TLS certificate that is generated by the PCoIP Secure Gateway (PSG) service with a certificate that is signed by a CA. Configure the agent to load certificates only from the Certificate Store. Configure the PCoIP Secure Gateway to Use a New TLS Certificate. Store the certificate for the Certificate Authority that signed any Server certificate to be used with PCoIP in the Trusted Root certificate store.Ģ. In order to satisfy port scanners, enable this 'Configure SSL connections' setting and do the following:ġ. Specifies how SSL session negotiation connections are established. Registry Hive, HKEYLOCALMACHINE Registry Path, SoftwarePoliciesTeradiciClientPCoIPpcoipadmin Value Name, pcoip.ssldisableaes128 Value Type. Configure SSL connections to satisfy Security Tools
0 kommentar(er)
