<?xml version="1.0" encoding="UTF-8"?>
<rss xmlns:content="http://purl.org/rss/1.0/modules/content/" xmlns:dc="http://purl.org/dc/elements/1.1/" xmlns:rdf="http://www.w3.org/1999/02/22-rdf-syntax-ns#" xmlns:taxo="http://purl.org/rss/1.0/modules/taxonomy/" version="2.0">
  <channel>
    <title>topic Re: Horizon View Self-Signed Certs Green in the Dashboard in Horizon Desktops and Apps</title>
    <link>https://communities.vmware.com/t5/Horizon-Desktops-and-Apps/Horizon-View-Self-Signed-Certs-Green-in-the-Dashboard/m-p/2699207#M72955</link>
    <description>&lt;HTML&gt;&lt;HEAD&gt;&lt;/HEAD&gt;&lt;BODY&gt;&lt;P&gt;* PING *&lt;/P&gt;&lt;/BODY&gt;&lt;/HTML&gt;</description>
    <pubDate>Wed, 11 Mar 2015 21:01:12 GMT</pubDate>
    <dc:creator>caddo</dc:creator>
    <dc:date>2015-03-11T21:01:12Z</dc:date>
    <item>
      <title>Horizon View Self-Signed Certs Green in the Dashboard</title>
      <link>https://communities.vmware.com/t5/Horizon-Desktops-and-Apps/Horizon-View-Self-Signed-Certs-Green-in-the-Dashboard/m-p/2699202#M72950</link>
      <description>&lt;HTML&gt;&lt;HEAD&gt;&lt;/HEAD&gt;&lt;BODY&gt;&lt;P&gt;Hi all,&lt;/P&gt;&lt;P&gt;&lt;/P&gt;&lt;P&gt;this is a very simple question as i want to "convince" Horizon View Dashboard to give me all green lights about SSL Certs using the self-signed certificates.&lt;/P&gt;&lt;P&gt;&lt;/P&gt;&lt;P&gt;I'm running Horizon View 6.0.1.&lt;/P&gt;&lt;P&gt;&lt;/P&gt;&lt;P&gt;The components that can be red are:&lt;/P&gt;&lt;P&gt;- vCenter&lt;/P&gt;&lt;P&gt;- Composer&lt;/P&gt;&lt;P&gt;- Connection Servers&lt;/P&gt;&lt;P&gt;- Security Servers&lt;/P&gt;&lt;P&gt;&lt;/P&gt;&lt;P&gt;For the first two it's pretty straightforward since you can just accept the thumbprint fro the View Administrationg Dashboard.&lt;/P&gt;&lt;P&gt;For the Connection Servers all you have to do is to import the all Connection Servers certificates into the certificate stores of all &lt;SPAN style="font-size: 13.3333330154419px;"&gt;Connection Servers under the trusted CA.&lt;/SPAN&gt;&lt;/P&gt;&lt;P&gt;&lt;SPAN style="font-size: 13.3333330154419px;"&gt;I still can't find a way to make the security server green.&lt;/SPAN&gt;&lt;/P&gt;&lt;P&gt;&lt;/P&gt;&lt;P&gt;Anyone managed to make it green using the self-signed certs?&lt;/P&gt;&lt;P&gt;&lt;/P&gt;&lt;P&gt;Thank you!&lt;/P&gt;&lt;/BODY&gt;&lt;/HTML&gt;</description>
      <pubDate>Mon, 09 Mar 2015 20:47:15 GMT</pubDate>
      <guid>https://communities.vmware.com/t5/Horizon-Desktops-and-Apps/Horizon-View-Self-Signed-Certs-Green-in-the-Dashboard/m-p/2699202#M72950</guid>
      <dc:creator>caddo</dc:creator>
      <dc:date>2015-03-09T20:47:15Z</dc:date>
    </item>
    <item>
      <title>Re: Horizon View Self-Signed Certs Green in the Dashboard</title>
      <link>https://communities.vmware.com/t5/Horizon-Desktops-and-Apps/Horizon-View-Self-Signed-Certs-Green-in-the-Dashboard/m-p/2699203#M72951</link>
      <description>&lt;HTML&gt;&lt;HEAD&gt;&lt;/HEAD&gt;&lt;BODY&gt;&lt;P&gt;If I understand your question correctly you need to add all view servers certificate root ca to its trusted certificate.&lt;/P&gt;&lt;/BODY&gt;&lt;/HTML&gt;</description>
      <pubDate>Tue, 10 Mar 2015 03:21:14 GMT</pubDate>
      <guid>https://communities.vmware.com/t5/Horizon-Desktops-and-Apps/Horizon-View-Self-Signed-Certs-Green-in-the-Dashboard/m-p/2699203#M72951</guid>
      <dc:creator>kgsivan</dc:creator>
      <dc:date>2015-03-10T03:21:14Z</dc:date>
    </item>
    <item>
      <title>Re: Horizon View Self-Signed Certs Green in the Dashboard</title>
      <link>https://communities.vmware.com/t5/Horizon-Desktops-and-Apps/Horizon-View-Self-Signed-Certs-Green-in-the-Dashboard/m-p/2699204#M72952</link>
      <description>&lt;HTML&gt;&lt;HEAD&gt;&lt;/HEAD&gt;&lt;BODY&gt;&lt;P&gt;Hi,&lt;/P&gt;&lt;P&gt;&lt;/P&gt;&lt;P&gt;thank you for your answer but this doesn't solve my problem.&lt;/P&gt;&lt;P&gt;&lt;/P&gt;&lt;P&gt;When you use default self-signed certificate every connection server or security server will generate a certificate and be its own ca, so in this case you don't end up with a chain of certificates (as with the tipical rootca &amp;gt; sub ca &amp;gt; certificate) but you get one cert that will work as both cert and ca.&lt;/P&gt;&lt;P&gt;&lt;/P&gt;&lt;P&gt;In the case of connection servers I just proceed as you described and the View Administrator Dashboard will be happy:&lt;/P&gt;&lt;P&gt;&lt;/P&gt;&lt;P&gt;&lt;span class="lia-inline-image-display-wrapper" image-alt="Screen Shot 2015-03-10 at 18.09.29.png"&gt;&lt;img src="https://communities.vmware.com/t5/image/serverpage/image-id/58184iFC654461E235FC0E/image-size/large?v=v2&amp;amp;px=999" role="button" title="Screen Shot 2015-03-10 at 18.09.29.png" alt="Screen Shot 2015-03-10 at 18.09.29.png" /&gt;&lt;/span&gt;&lt;/P&gt;&lt;P&gt;&lt;/P&gt;&lt;P&gt;But if I do the same with the security server it won't be enough to convince the dashboard it's a valid SSL Certificate:&lt;/P&gt;&lt;P&gt;&lt;/P&gt;&lt;P&gt;&lt;span class="lia-inline-image-display-wrapper" image-alt="Screen Shot 2015-03-10 at 18.11.01.png"&gt;&lt;img src="https://communities.vmware.com/t5/image/serverpage/image-id/58185i4923E5775836A86F/image-size/large?v=v2&amp;amp;px=999" role="button" title="Screen Shot 2015-03-10 at 18.11.01.png" alt="Screen Shot 2015-03-10 at 18.11.01.png" /&gt;&lt;/span&gt;&lt;/P&gt;&lt;P&gt;&lt;/P&gt;&lt;P&gt;In this demo environment there is one connection server (which trusts its own certificate and the security server certificate) and one security server (which trusts its own certificate and the connection server certificate)&lt;/P&gt;&lt;P&gt;&lt;/P&gt;&lt;P&gt;So since I did already what you suggested, what else is left to try?&lt;/P&gt;&lt;P&gt;&lt;/P&gt;&lt;P&gt;Thank you.&lt;/P&gt;&lt;/BODY&gt;&lt;/HTML&gt;</description>
      <pubDate>Tue, 10 Mar 2015 17:13:13 GMT</pubDate>
      <guid>https://communities.vmware.com/t5/Horizon-Desktops-and-Apps/Horizon-View-Self-Signed-Certs-Green-in-the-Dashboard/m-p/2699204#M72952</guid>
      <dc:creator>caddo</dc:creator>
      <dc:date>2015-03-10T17:13:13Z</dc:date>
    </item>
    <item>
      <title>Re: Horizon View Self-Signed Certs Green in the Dashboard</title>
      <link>https://communities.vmware.com/t5/Horizon-Desktops-and-Apps/Horizon-View-Self-Signed-Certs-Green-in-the-Dashboard/m-p/2699205#M72953</link>
      <description>&lt;HTML&gt;&lt;HEAD&gt;&lt;/HEAD&gt;&lt;BODY&gt;&lt;P&gt;Check out the registry key in this article: &lt;A href="http://kb.vmware.com/kb/2000063" title="http://kb.vmware.com/kb/2000063"&gt;http://kb.vmware.com/kb/2000063&lt;/A&gt;&lt;/P&gt;&lt;P&gt;&lt;/P&gt;&lt;P&gt;I think that is what you're looking for.&lt;/P&gt;&lt;/BODY&gt;&lt;/HTML&gt;</description>
      <pubDate>Tue, 10 Mar 2015 17:16:13 GMT</pubDate>
      <guid>https://communities.vmware.com/t5/Horizon-Desktops-and-Apps/Horizon-View-Self-Signed-Certs-Green-in-the-Dashboard/m-p/2699205#M72953</guid>
      <dc:creator>nzorn</dc:creator>
      <dc:date>2015-03-10T17:16:13Z</dc:date>
    </item>
    <item>
      <title>Re: Horizon View Self-Signed Certs Green in the Dashboard</title>
      <link>https://communities.vmware.com/t5/Horizon-Desktops-and-Apps/Horizon-View-Self-Signed-Certs-Green-in-the-Dashboard/m-p/2699206#M72954</link>
      <description>&lt;HTML&gt;&lt;HEAD&gt;&lt;/HEAD&gt;&lt;BODY&gt;&lt;P&gt;Nope,&amp;nbsp; I tried that KB already because I was sure it would solve my problem but with no luck, still the same behaviour you can see in the screenshot.&lt;/P&gt;&lt;/BODY&gt;&lt;/HTML&gt;</description>
      <pubDate>Tue, 10 Mar 2015 19:42:37 GMT</pubDate>
      <guid>https://communities.vmware.com/t5/Horizon-Desktops-and-Apps/Horizon-View-Self-Signed-Certs-Green-in-the-Dashboard/m-p/2699206#M72954</guid>
      <dc:creator>caddo</dc:creator>
      <dc:date>2015-03-10T19:42:37Z</dc:date>
    </item>
    <item>
      <title>Re: Horizon View Self-Signed Certs Green in the Dashboard</title>
      <link>https://communities.vmware.com/t5/Horizon-Desktops-and-Apps/Horizon-View-Self-Signed-Certs-Green-in-the-Dashboard/m-p/2699207#M72955</link>
      <description>&lt;HTML&gt;&lt;HEAD&gt;&lt;/HEAD&gt;&lt;BODY&gt;&lt;P&gt;* PING *&lt;/P&gt;&lt;/BODY&gt;&lt;/HTML&gt;</description>
      <pubDate>Wed, 11 Mar 2015 21:01:12 GMT</pubDate>
      <guid>https://communities.vmware.com/t5/Horizon-Desktops-and-Apps/Horizon-View-Self-Signed-Certs-Green-in-the-Dashboard/m-p/2699207#M72955</guid>
      <dc:creator>caddo</dc:creator>
      <dc:date>2015-03-11T21:01:12Z</dc:date>
    </item>
    <item>
      <title>Re: Horizon View Self-Signed Certs Green in the Dashboard</title>
      <link>https://communities.vmware.com/t5/Horizon-Desktops-and-Apps/Horizon-View-Self-Signed-Certs-Green-in-the-Dashboard/m-p/2699208#M72956</link>
      <description>&lt;HTML&gt;&lt;HEAD&gt;&lt;/HEAD&gt;&lt;BODY&gt;&lt;P&gt;You cannot trust a self signed certificate and make all the lights green. However, you can very easily get a certificate from ANY root CA that you create, internal, external or otherwise. Even if it's just for View. The only requirement is that it's not self signed but rather issued from a CA, any CA.&lt;/P&gt;&lt;/BODY&gt;&lt;/HTML&gt;</description>
      <pubDate>Thu, 12 Mar 2015 14:34:01 GMT</pubDate>
      <guid>https://communities.vmware.com/t5/Horizon-Desktops-and-Apps/Horizon-View-Self-Signed-Certs-Green-in-the-Dashboard/m-p/2699208#M72956</guid>
      <dc:creator>JackMac4</dc:creator>
      <dc:date>2015-03-12T14:34:01Z</dc:date>
    </item>
    <item>
      <title>Re: Horizon View Self-Signed Certs Green in the Dashboard</title>
      <link>https://communities.vmware.com/t5/Horizon-Desktops-and-Apps/Horizon-View-Self-Signed-Certs-Green-in-the-Dashboard/m-p/2699209#M72957</link>
      <description>&lt;HTML&gt;&lt;HEAD&gt;&lt;/HEAD&gt;&lt;BODY&gt;&lt;P&gt;I was afraid this would be the answer I would get.&lt;/P&gt;&lt;P&gt;&lt;/P&gt;&lt;P&gt;Just out of curiosity, can you explain how is the process of validating certificates between connection server and security server? I mean, I managed to trust the self-signed certs from the connection server (green light) but not the one for the security server.&lt;/P&gt;&lt;P&gt;&lt;/P&gt;&lt;P&gt;Thank you for your help.&lt;/P&gt;&lt;/BODY&gt;&lt;/HTML&gt;</description>
      <pubDate>Thu, 12 Mar 2015 14:38:07 GMT</pubDate>
      <guid>https://communities.vmware.com/t5/Horizon-Desktops-and-Apps/Horizon-View-Self-Signed-Certs-Green-in-the-Dashboard/m-p/2699209#M72957</guid>
      <dc:creator>caddo</dc:creator>
      <dc:date>2015-03-12T14:38:07Z</dc:date>
    </item>
    <item>
      <title>Re: Horizon View Self-Signed Certs Green in the Dashboard</title>
      <link>https://communities.vmware.com/t5/Horizon-Desktops-and-Apps/Horizon-View-Self-Signed-Certs-Green-in-the-Dashboard/m-p/2699210#M72958</link>
      <description>&lt;HTML&gt;&lt;HEAD&gt;&lt;/HEAD&gt;&lt;BODY&gt;&lt;P&gt;Oh I'm sorry, I misunderstood your question. I think there might be a way to force the issue like you want, but I don't think so. Let me look into it real quick and I'll try to get something back to you.&lt;/P&gt;&lt;/BODY&gt;&lt;/HTML&gt;</description>
      <pubDate>Thu, 12 Mar 2015 14:48:58 GMT</pubDate>
      <guid>https://communities.vmware.com/t5/Horizon-Desktops-and-Apps/Horizon-View-Self-Signed-Certs-Green-in-the-Dashboard/m-p/2699210#M72958</guid>
      <dc:creator>JackMac4</dc:creator>
      <dc:date>2015-03-12T14:48:58Z</dc:date>
    </item>
    <item>
      <title>Re: Horizon View Self-Signed Certs Green in the Dashboard</title>
      <link>https://communities.vmware.com/t5/Horizon-Desktops-and-Apps/Horizon-View-Self-Signed-Certs-Green-in-the-Dashboard/m-p/2699211#M72959</link>
      <description>&lt;HTML&gt;&lt;HEAD&gt;&lt;/HEAD&gt;&lt;BODY&gt;&lt;P&gt;Did you turn off revocation checking on the SS?&lt;/P&gt;&lt;/BODY&gt;&lt;/HTML&gt;</description>
      <pubDate>Thu, 12 Mar 2015 14:53:55 GMT</pubDate>
      <guid>https://communities.vmware.com/t5/Horizon-Desktops-and-Apps/Horizon-View-Self-Signed-Certs-Green-in-the-Dashboard/m-p/2699211#M72959</guid>
      <dc:creator>JackMac4</dc:creator>
      <dc:date>2015-03-12T14:53:55Z</dc:date>
    </item>
    <item>
      <title>Re: Horizon View Self-Signed Certs Green in the Dashboard</title>
      <link>https://communities.vmware.com/t5/Horizon-Desktops-and-Apps/Horizon-View-Self-Signed-Certs-Green-in-the-Dashboard/m-p/2699212#M72960</link>
      <description>&lt;HTML&gt;&lt;HEAD&gt;&lt;/HEAD&gt;&lt;BODY&gt;&lt;BLOCKQUOTE&gt;
&lt;P&gt;caddo wrote:&lt;/P&gt;
&lt;P&gt;&lt;/P&gt;
&lt;P&gt;I was afraid this would be the answer I would get.&lt;/P&gt;
&lt;P&gt;&lt;/P&gt;
&lt;P&gt;Just out of curiosity, can you explain how is the process of validating certificates between connection server and security server? I mean, I managed to trust the self-signed certs from the connection server (green light) but not the one for the security server.&lt;/P&gt;
&lt;P&gt;&lt;/P&gt;
&lt;P&gt;Thank you for your help.&lt;/P&gt;
&lt;/BLOCKQUOTE&gt;&lt;P&gt;There isn't a process of validating between them, but they are both trying to validate the certificate they have been assigned. More than likely you have have a mismatch on the SS from the name it's attempting to use versus the name that's in the self signed certificate.&lt;/P&gt;&lt;/BODY&gt;&lt;/HTML&gt;</description>
      <pubDate>Thu, 12 Mar 2015 14:56:37 GMT</pubDate>
      <guid>https://communities.vmware.com/t5/Horizon-Desktops-and-Apps/Horizon-View-Self-Signed-Certs-Green-in-the-Dashboard/m-p/2699212#M72960</guid>
      <dc:creator>JackMac4</dc:creator>
      <dc:date>2015-03-12T14:56:37Z</dc:date>
    </item>
    <item>
      <title>Re: Horizon View Self-Signed Certs Green in the Dashboard</title>
      <link>https://communities.vmware.com/t5/Horizon-Desktops-and-Apps/Horizon-View-Self-Signed-Certs-Green-in-the-Dashboard/m-p/2699213#M72961</link>
      <description>&lt;HTML&gt;&lt;HEAD&gt;&lt;/HEAD&gt;&lt;BODY&gt;&lt;P&gt;I already check that without finding any mismatch, but I don't remember what I saw in there so I will check again and report back to me.&lt;/P&gt;&lt;P&gt;&lt;/P&gt;&lt;P&gt;What's strange is that these are the default self-signed certificates that are created by the Horizon View installer so I don't see how this would be happening to me only.&lt;/P&gt;&lt;/BODY&gt;&lt;/HTML&gt;</description>
      <pubDate>Thu, 12 Mar 2015 15:18:02 GMT</pubDate>
      <guid>https://communities.vmware.com/t5/Horizon-Desktops-and-Apps/Horizon-View-Self-Signed-Certs-Green-in-the-Dashboard/m-p/2699213#M72961</guid>
      <dc:creator>caddo</dc:creator>
      <dc:date>2015-03-12T15:18:02Z</dc:date>
    </item>
    <item>
      <title>Re: Horizon View Self-Signed Certs Green in the Dashboard</title>
      <link>https://communities.vmware.com/t5/Horizon-Desktops-and-Apps/Horizon-View-Self-Signed-Certs-Green-in-the-Dashboard/m-p/2699214#M72962</link>
      <description>&lt;HTML&gt;&lt;HEAD&gt;&lt;/HEAD&gt;&lt;BODY&gt;&lt;P&gt;Yes, revocation checking is turned off on both SS and CS.&lt;/P&gt;&lt;/BODY&gt;&lt;/HTML&gt;</description>
      <pubDate>Thu, 12 Mar 2015 15:18:36 GMT</pubDate>
      <guid>https://communities.vmware.com/t5/Horizon-Desktops-and-Apps/Horizon-View-Self-Signed-Certs-Green-in-the-Dashboard/m-p/2699214#M72962</guid>
      <dc:creator>caddo</dc:creator>
      <dc:date>2015-03-12T15:18:36Z</dc:date>
    </item>
    <item>
      <title>Re: Horizon View Self-Signed Certs Green in the Dashboard</title>
      <link>https://communities.vmware.com/t5/Horizon-Desktops-and-Apps/Horizon-View-Self-Signed-Certs-Green-in-the-Dashboard/m-p/2699215#M72963</link>
      <description>&lt;HTML&gt;&lt;HEAD&gt;&lt;/HEAD&gt;&lt;BODY&gt;&lt;P&gt;*** PING ***&lt;/P&gt;&lt;/BODY&gt;&lt;/HTML&gt;</description>
      <pubDate>Wed, 25 Mar 2015 09:20:32 GMT</pubDate>
      <guid>https://communities.vmware.com/t5/Horizon-Desktops-and-Apps/Horizon-View-Self-Signed-Certs-Green-in-the-Dashboard/m-p/2699215#M72963</guid>
      <dc:creator>caddo</dc:creator>
      <dc:date>2015-03-25T09:20:32Z</dc:date>
    </item>
    <item>
      <title>Re: Horizon View Self-Signed Certs Green in the Dashboard</title>
      <link>https://communities.vmware.com/t5/Horizon-Desktops-and-Apps/Horizon-View-Self-Signed-Certs-Green-in-the-Dashboard/m-p/2699216#M72964</link>
      <description>&lt;HTML&gt;&lt;HEAD&gt;&lt;/HEAD&gt;&lt;BODY&gt;&lt;P&gt;Have you imported the SS's self signed cert info the CS's trusted root store?&lt;/P&gt;&lt;/BODY&gt;&lt;/HTML&gt;</description>
      <pubDate>Wed, 25 Mar 2015 15:29:25 GMT</pubDate>
      <guid>https://communities.vmware.com/t5/Horizon-Desktops-and-Apps/Horizon-View-Self-Signed-Certs-Green-in-the-Dashboard/m-p/2699216#M72964</guid>
      <dc:creator>JackMac4</dc:creator>
      <dc:date>2015-03-25T15:29:25Z</dc:date>
    </item>
    <item>
      <title>Re: Horizon View Self-Signed Certs Green in the Dashboard</title>
      <link>https://communities.vmware.com/t5/Horizon-Desktops-and-Apps/Horizon-View-Self-Signed-Certs-Green-in-the-Dashboard/m-p/2699217#M72965</link>
      <description>&lt;HTML&gt;&lt;HEAD&gt;&lt;/HEAD&gt;&lt;BODY&gt;&lt;P&gt;Yes, I did.&lt;/P&gt;&lt;/BODY&gt;&lt;/HTML&gt;</description>
      <pubDate>Wed, 25 Mar 2015 17:02:07 GMT</pubDate>
      <guid>https://communities.vmware.com/t5/Horizon-Desktops-and-Apps/Horizon-View-Self-Signed-Certs-Green-in-the-Dashboard/m-p/2699217#M72965</guid>
      <dc:creator>caddo</dc:creator>
      <dc:date>2015-03-25T17:02:07Z</dc:date>
    </item>
  </channel>
</rss>

