Third-party solutions such as load balancers and gateways can perform smart card authentication by passing a SAML assertion that contains the smart card's X.590 certificate and encrypted PIN.

This topic outlines the tasks involved in setting up third-party solutions to provide the relevant X.590 certificate to View Connection Server after the certificate has been validated by the partner device. Because this feature uses SAML authentication, one of the tasks is to create a SAML authenticator in View Administrator.

Note: For the Horizon 6 version 6.2 release, using smart cards with VMware Access Point appliances is a Tech Preview feature. For information about configuring smart card authentication on Access Point, see Deploying and Configuring Access Point.


  1. Create a SAML authenticator for the third-party gateway or load balancer.
  2. Extend the expiration period of the View Connection Server metadata so that remote sessions are not terminated after only 24 hours.
  3. If necessary, configure the third-party device to use service provider metadata from View Connection Server.
    See the product documentation for the third-party device.
  4. Configure smart card settings on the third-party device.
    See the product documentation for the third-party device.