VMware Horizon Community
Balaji78
Contributor
Contributor
‎07-15-2018 04:37 AM

Are wild card certificates mandatory?

Hi,

My organization does not allow the use of wild card certificates. How do I go about configuring direct connections to my virtual desktops without using wild card certificates?

Thanks.

4 Replies
LarryBlanco2
Expert
Expert
‎07-15-2018 10:25 PM

No, they not required.  You can use an internal or external CA and the certificate can be the fqdn of the server, but the "friendly name" must be 'VDM'.

Only catch is that u need 1 cert for each server where a wildcard serves all the servers,

VMware Knowledge Base

Larry

0 Kudos
Balaji78
Contributor
Contributor
‎07-16-2018 03:38 AM

Thanks, Larry. Let me check if this works and get back.

0 Kudos
cbaptiste
Hot Shot
Hot Shot
‎07-16-2018 06:51 AM

You can also use a CN cert.  Let's say your fqdn is horizonview.corp.local and your view brokers are broker1.corp.local, broker2.corp.local. You can dump all of the brokers fqdn names as subject alternative names. Deploy the same cert to all your brokers. That works as well.

amr12
Enthusiast
Enthusiast
‎07-16-2018 08:32 AM

I had a wildcard cert for all of my sites (5) and while it did work, View Admin reported all of the servers being untrusted because the name didn't match.  I had to get a 30 UCC cert which i put all of my FQDN and DNS entries in the cert itself and everything is green in View Admin.