Hi All,
I am referring to Page-16 on VMware View Security Guide v5.0 which is available at
http://pubs.vmware.com/view-50/topic/com.vmware.ICbase/PDF/view-50-security.pdf
On this page, there are 3 settings to be done in AD/LDAP:
Name-value pair | Attribute | Setting |
csallowunencryptedstartsession | pae-NameValuePair | 1 |
pae-OVDIKeyCipher | AES-128 | |
pae-SSOCredentialCacheTimeout | 15 |
All View Components are added to a domain controller. But, I could not find these settings in AD schema. Also, I could not find
cn=common,ou=global,ou=properties,dc=vdi,dc=vmware,dc=int and neither could I connect to
dc=vdi,dc=vmware,dc=int through ADSI utility.
Any help please?
Thanks and regards,
Pravin Goyal
Hi there,
Are you sure you're using adsi edit on one of the Connection Servers?
From that page...
"Security-related settings are provided in View LDAP under the object path cn=common,ou=global,ou=properties,dc=vdi,dc=vmware,dc=int.
You can use the ADSI Edit utility to change the value of these settings on a View Connection Server instance.
The change propagates automatically to all other View Connection Server instances in a group."
Wm
Hi William,
I am more than sure that I am not seeing these properties from ADSI on View Connection Server. Additionaly, I even logged on the domain controller and there is no such property present ANYWHERE.
Are there special cases or do we need to configure something somewhere to be able to see/edit these properties?
Please help.
Thanks and regards,
Pravin Goyal
Finally,
I could connect. Below is what I had to do:
Then, I could see the contents. Also, these settings seem to be specific to Connection Server and these settings are not stored on Domain Controller to which connection Server is attached. Right?
Thanks all for your time.
Hi Pravin,
>Also, these settings seem to be specific to Connection Server and these settings are not stored on Domain Controller to which connection Server is attached. Right?
Yes, you are connecting to View connection server's database stored in an ADAM instance, which is located in each connection server.
-Noble