Specifications
Table Of Contents
- View Manager Administration Guide
- Contents
- About This Book
- Introduction
- Installation
- View Administrator
- Virtual Desktop Deployment
- Client Management
- Installing and Running View Client and View Portal
- Client Connections from the Internet
- Creating SSL Server Certificates
- Using Existing SSL Certificates
- Smart Card Authentication
- RSA SecurID Authentication
- View Client Command Line Options
- Virtual Printing
- Adobe Flash Bandwidth Reduction
- Client Computer Information
- Using PCoIP Display Protocol
- Using HP RGS Display Protocol
- View Composer
- Overview of View Composer
- Preparing vCenter Server for View Composer
- Preparing a Parent VM
- Deploying Linked Clone Desktops from View Manager
- Refreshing, Recomposing, and Rebalancing Linked Clone Desktops
- Using an Existing View Composer Database
- Using the SviConfig Tool for View Composer
- Offline Desktop
- Component Policies
- Unified Access
- Troubleshooting
- Appendix: The locked.properties File
- Glossary
- Index
VMware, Inc. 103
Chapter 5 Client Management
To create a certificate signing request (CSR)
Fromacommandprompt,enterthefollowingwhere<secret>isthekeystore
password:
keytool -certreq -keyalg "RSA" -file certificate.csr -keystore keys.p12
-storetype pkcs12 -storepass <secret>
Thecertificate.csrfileiscreatedinthesamelocation.Thecontentsofthefile
shouldresembleaslightlylongerversionofthefollowingexample:
-----BEGIN NEW CERTIFICATE REQUEST-----
MIIBuDCCASECAQAweDELMAkGA1UEBhMCR0IxEDAOBgNV
BAgTB1Vua25vd24xEDAOBgNVBAcTB1Vua25vd24xFDAS
BgNVBAoTC1ZNd2FyZSBJbmMuMRMwEQYDVQQLEwp2bXdh
XU8/2jEUL5DocLDLnygsUD2g7cUMYdz/HeECAwEAAaAA
AeHnsPs7a1Q0JH6OZvdU
-----END NEW CERTIFICATE REQUEST-----
To submit the CSR and import the certificate
1SendtheCSRfiletoacertificateauthorityinaccordancewiththeirenrollment
processandrequestacertificateinPKCS#7format.Aspartofthisprocess,you
mayneedtoprovideproofofidentity,proofofdomainownership,andsoforth.
Fortestingpurposes,manycertificateauthoritiesalsoprovideafree
temporary
SSLcertificatebasedonanuntrustedroot:
Thawte—https://www.thawte.com/cgi/server/try.exe
VeriSign—http://verisign.com/ssl/buy‐ssl‐certificates/free‐ssl‐certificate‐trial
GlobalSign—http://globalsign.com/free‐ssl‐certificate/free‐ssl.htm
SomeCAsonlyprovidecertificatesinPKCS#12format.Ifyoudownloadthistype
ofcertificateyoumustreferto“ToconvertaPKCS#12certificatetoPKCS#7”on
page 104forinformationon
howtoconvertthecertificatefiletoPKCS#7before
proceeding.
2Ifyouhav ereceivedeither atemporaryorfullcertificatefromtheCA,copythe
contentsofthefileintoatexteditorandsav eitascertificate.p7.Thecontentsof
thefilewillresem bleaslightlylongerversionofthe
followingex ample:
-----BEGIN PKCS7-----
MIIF+AYJKoZIhvcNAQcCoIIF6TCCBeUCAQExADALBgk
LDCCApWgAwIBAgIQTpY7DsV1n1HeMGgMjMR2PzANBgk
i7coVx71/lCBOlFmx66NyKlZK5mObgvd2dlnsAP+nnS
EhCsdpikSpbtdo18jUubV6z1kQ71CrRQtbi/WtdqxQE
-----END PKCS7-----