We are rolling out Horizon 7.13 servers with Unified Access Gateway to handle connections from the untrusted Internet. These servers will be handling a mix of both internal and external users. I have two questions. When using UAG and external clients, do I need to give the UAG & View servers SSL certificates from a public certificate authority Or can I give the View servers certificates from our internal PKI while our UAG has certificate from a public certified authority
Public only on the UAG is fine, the UAG to connection server connection isn't public meaning the ssl cert is just meant to encrypt that communication, you don't need to worry about that being accepted by client devices.