You should import certain types of certificates onto the client host if they are not stored on the Horizon FLEX Policy Server or configured on the source virtual machine.

Note

If the certificate is not imported on the Horizon FLEX client host, then the client user must select the Always Trust this host checkbox option when first connecting to the Horizon FLEX server. Even if a self-signed root certificate has been imported into the client's certificate store, the security warning might still display when first connecting to the Horizon FLEX server. In this case, the client user must select the Always Trust this host checkbox for the Horizon FLEX to work properly.

If you do not configure the self-signed certificate into the source virtual machine being prepared, you should import the certificate on each end-user host for Horizon FLEX virtual machines to function correctly.

If you use a certificate from an internal CA instead of from a commercial CA such as Entrust or Go Daddy, and you do not configure the certificate into the source virtual machine being prepared, you should import the root CA certificate on each end-user host for Horizon FLEX virtual machines to function correctly.