We want to set up a training room (physical XP SP3 computers) with the VMware View 4.6 client installed.
Users using this training room will be entitled to a Virtual pool for training. (most likley a linked clone)
We do not want these same users to be able to access VMware View from any other computer or floor in the buildeing except the training room PCs.
Note:All people use there regular LAN ID and passwords, a special training ID is not an option for other reasons that are not in this scope.
How can we accomplish this in AD?
I don't think View has such an option.
Not sure if thers is options to map between client and agents in view.
One option is to setup kiosk mode to hide all details from users.
or else use the same firewall option but configure on view desktops. create rules for dispaly protocol used. also disable tunnel/PSG connection.
Set up another connection broker and configure your training PC's to connect to that broker that is tagged as 'training'. Then tag your pool as 'training', then bingo, only traning room pc's allowed to connect to that pool.
But this can't prevent users from accessing tagged connection broker from another machine. Tagging is for grouping/limitting pools to connection broker, you still need a way to prevent users from accessing that broker outside training room.
But this can't prevent users from accessing tagged connection broker from another machine.
Not on its own, but combined with firewall rules it can. Combining tagging with firewall rules in this way is quite a common way to apply access restrictions for situations like this.