To enable smart card authentication, you must modify View Connection Server configuration properties on your View Connection Server or security server host.

Add the root certificate for all trusted users to a server truststore file.

1

Create or edit the locked.properties file in SSL gateway configuration folder on the View Connection Server or security server host.

For example: install_directory\VMware\VMware View\Server\sslgateway\conf\locked.properties

2

Add the trustKeyfile, trustStoretype, and useCertAuth properties to the locked.properties file.

a

Set trustKeyfile to the name of your truststore file.

b

Set trustStoretype to JKS.

c

Set useCertAuth to true to enable certificate authentication.

3

Restart the View Connection Server service or security server service to make your changes take effect.

The file shown specifies that the root certificate for all trusted users is located in the file lonqa.key, sets the trust store type to JKS, and enables certificate authentication.

trustKeyfile=lonqa.key
trustStoretype=JKS
useCertAuth=true

If you configured smart card authentication for a View Connection Server instance, configure smart card authentication settings in View Administrator. You do not need to configure smart card authentication settings for a security server. A security server that has been configured for smart card authentication always requires users to authenticate with a smart card and PIN during login.