When you deploy Horizon Client 3.5 or later and View Agent 6.2 or later or Horizon Agent 7.0 or later with client drive redirection, folders and files are sent across the network with encryption. Client drive redirection connections between clients and the View Secure Gateway and connections from the View Secure Gateway to desktop machines are secure.
For Horizon Client 4.2 or Horizon 7 version 7.0.2 or later, if VMware Blast Extreme is enabled, files and folders are transferred across a virtual channel with encryption.
With earlier client or agent releases, client drive redirection folders and files are sent across the network without encryption and might contain sensitive data, depending on the content being redirected. If the secure tunnel is enabled, client drive redirection connections between Horizon Client and the View Secure Gateway are secure, but connections from the View Secure Gateway to desktop machines are not encrypted. If the secure tunnel is disabled, client drive redirection connections from Horizon Client to the desktop machines are not encrypted. To ensure that this data cannot be monitored on the network, use client drive redirection only on a secure network if Horizon Client is earlier than version 3.5 or agent is earlier than version 6.2.
The Client Drive Redirection setup option in the agent installer is selected by default. As a best practice, enable the Client Drive Redirection setup option only in desktop pools where users require this feature.