To configure a View Connection Server instance or security server to use a new SSL server certificate, you must set properties in the locked.properties file on the View Connection Server or security server host.

Obtain an existing PKCS#12 file, export an existing Microsoft IIS SSL server certificate, or create a new SSL server certificate.

1

Copy the keystore file that contains your certificate to the SSL gateway configuration directory on the View Connection Server or security server host.

For example: install_directory\VMware\VMware View\Server\sslgateway\conf\keystore_file

keystore_file is the name of the keystore file.

For example, your keystore file might be keys.jks if you imported your certificate with the keytool utility.

Your keystore file might be keys.pfx if you have an existing PKCS#12 file or you exported an existing Microsoft IIS SSL server certificate.

2

Add the keyfile, keypass, and storetype properties to the locked.properties file in the SSL gateway configuration directory on the View Connection Server or security server host.

If the locked.properties file does not already exist, you must create it.

a

Set the keyfile property to the name of your keystore file.

For example: keyfile=keys.jks or keyfile=keys.pfx

b

Set the keypass property to the password for your keystore file.

For example: keypass=MY_PASS

c

Set the storetype property to match the type of the keystore file.

Option

Description

PKCS#12 or PFX file

Set the value of storetype to pkcs12:

storetype=pkcs12

Java keystore file

Set the value of storetype to jks:

storetype=jks

You must specify the storetype property for a Java keystore file.

3

Restart the View Connection Server service or Security Server service to make your changes take effect.

In View Administrator, configure settings to use SSL for client connections. See Configure SSL for Client Connections.

If your SSL certificates are signed by a CA that is not well known, install the root certificate (if not already present) and intermediate certificate in Active Directory. See Add SSL Certificates in Active Directory.