https://communities.vmware.com/t5/Horizon-Cloud/Replace-self-signed-router-certificate/m-p/2977906#M286 <P>I was told it is not possible to replace these certificates but using them seems to be the most secure method. They can be turned off:&nbsp;</P><P>&nbsp;</P><P><A href="https://gbr01.safelinks.protection.outlook.com/?url=https%3A%2F%2Fdocs.vmware.com%2Fen%2FVMware-Horizon%2F2303-and-later%2Fhorizon-security%2FGUID-4BBC13C6-900A-44B9-B4A3-C90EE3F3BCA9.html&amp;data=05%7C01%7CScott.Mcgilvray956%40mod.gov.uk%7Ca6036e68a22048ea240108db8215409e%7Cbe7760ed5953484bae95d0a16dfa09e5%7C0%7C0%7C638246800012725334%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C3000%7C%7C%7C&amp;sdata=4b1fEtedhdZnqUjj4%2FCval%2BEAqQ7uB4T2IHiDjMIYuA%3D&amp;reserved=0" target="_blank"><STRONG>Message Security Mode for Horizon Components in VMware Horizon 8</STRONG></A></P> Tue, 18 Jul 2023 08:50:28 GMT ScobyD000 2023-07-18T08:50:28Z https://communities.vmware.com/t5/Horizon-Cloud/Replace-self-signed-router-certificate/m-p/2976697#M285 <P>Hi All,&nbsp;</P><P>We have a policy to replace self-signed certificates in our environment with our own PKI certificates (wherever possible). Our Horizon connection servers are presenting self-signed certificates issued to "router/&lt;servername&gt;" on ports 4101 and 4002. From what I can see these are for replication between the servers and not used for clients but is it possible to replace them? I cannot find them in the certificate store.&nbsp; &nbsp;</P><P>Thanks</P> Tue, 11 Jul 2023 09:56:11 GMT https://communities.vmware.com/t5/Horizon-Cloud/Replace-self-signed-router-certificate/m-p/2976697#M285 ScobyD000 2023-07-11T09:56:11Z https://communities.vmware.com/t5/Horizon-Cloud/Replace-self-signed-router-certificate/m-p/2977906#M286 <P>I was told it is not possible to replace these certificates but using them seems to be the most secure method. They can be turned off:&nbsp;</P><P>&nbsp;</P><P><A href="https://gbr01.safelinks.protection.outlook.com/?url=https%3A%2F%2Fdocs.vmware.com%2Fen%2FVMware-Horizon%2F2303-and-later%2Fhorizon-security%2FGUID-4BBC13C6-900A-44B9-B4A3-C90EE3F3BCA9.html&amp;data=05%7C01%7CScott.Mcgilvray956%40mod.gov.uk%7Ca6036e68a22048ea240108db8215409e%7Cbe7760ed5953484bae95d0a16dfa09e5%7C0%7C0%7C638246800012725334%7CUnknown%7CTWFpbGZsb3d8eyJWIjoiMC4wLjAwMDAiLCJQIjoiV2luMzIiLCJBTiI6Ik1haWwiLCJXVCI6Mn0%3D%7C3000%7C%7C%7C&amp;sdata=4b1fEtedhdZnqUjj4%2FCval%2BEAqQ7uB4T2IHiDjMIYuA%3D&amp;reserved=0" target="_blank"><STRONG>Message Security Mode for Horizon Components in VMware Horizon 8</STRONG></A></P> Tue, 18 Jul 2023 08:50:28 GMT https://communities.vmware.com/t5/Horizon-Cloud/Replace-self-signed-router-certificate/m-p/2977906#M286 ScobyD000 2023-07-18T08:50:28Z