By default, View Connection Server uses AES-128 to encrypt the virtual disk (.vmdk) file when users check in and check out a local desktop. If you prefer stronger encryption, you can change the encryption key cipher to AES-192 or AES-256 by editing a global property in View LDAP on your View Connection Server host.

After you change the encryption key cipher for local desktops, the new cipher is used for new key generation, for example, when a local desktop is checked out for the first time. Previously generated keys are not changed. To change the encryption key cipher for existing local desktops, see Change the Encryption Key Cipher for an Existing Local Desktop.

You use the ADSI Edit utility to modify View LDAP. The ADSI Edit utility is installed with View Connection Server. When you change View LDAP on a View Connection Server instance, the change is propagated to all replicated View Connection Server instances.

See the Microsoft TechNet Web site for information on how to use the ADSI Edit utility on your Windows operating system version.

1

Start the ADSI Edit utility on your View Connection Server host.

2

In the Connection Settings dialog box, select or connect to DC=vdi, DC=vmware, DC=int.

3

In the Computer pane, select or type localhost:389 or the fully qualified domain name (FQDN) of the View Connection Server host followed by port 389.

For example: localhost:389 or mycomputer.mydomain.com:389

4

On the object CN=Common, OU=Global, OU=Properties, set the pae-OVDIKeyCipher attribute to the new encryption key cipher value.

You can set the encryption key cipher value to AES-128, AES-192 or AES-256. The default value is AES-128.