PCoIP Zero Client and Host Administrator Guide (Issue 5)

Zero clients themselves also employ encryption to ensure that information is protected. In

the media stream, all media data is encrypted as it moves from the server to the client. This

includes display data, USB data, and audio network traffic. In the management channel, all

management data is encrypted.

802.1x Network Authentication

PCoIP zero clients support 802.1x network device authentication using EAP-TLS

certificates. With 802.1x network authentication, all network end devices must be

authenticated before they are granted access to the network. This is a typical method of

device authentication for high security environments, providing an additional layer of

security beyond username and password credentials.

See Configuring 802.1x Network Device Authentication in the "How To" section for

instructions on how to configure zero clients for this type of authentication.

6.6.2 Security Settings Checklist

The table below provides a list of zero client security settings that are frequently used in

high security deployments. Your network administrator or your security advisor must

determine whether these settings are appropriate for your own network environment.

The links in the Configuration Category column below take you to the Management

Console page where you can configure the setting for a zero client profile. For instructions

on how to enable and configure a setting, see MC Manage Profiles Page.

Note: Many of these settings can also be configured through the AWI or OSD.

Zero Client MC Security Settings

Table 3-2: PCoIP Zero Client Security Settings Checklist

Configuration