To connect to a remote desktop or application, you must provide the name of a server and supply credentials for your user account.
About this task
Before you have end users access their remote desktops and applications, test that you can connect to a remote desktop or application from a client device. You might need to specify a server and supply credentials for your user account.
Obtain login credentials, such as a user name and password, RSA SecurID user name and passcode, RADIUS authentication user name and passcode, or smart card personal identification number (PIN).
Obtain the NETBIOS domain name for logging in. For example, you might use mycompany rather than mycompany.com.
Perform the administrative tasks described in Preparing Connection Server for Horizon Client.
If you are outside the corporate network and require a VPN connection to access remote desktops and applications, verify that the client device is set up to use a VPN connection and turn on that connection.
Verify that you have the fully qualified domain name (FQDN) of the server that provides access to the remote desktop or application. Underscores (_) are not supported in server names. If the port is not 443, you also need the port number.
If you plan to use embedded RSA SecurID software, verify that you have the correct CT-KIP URL and activation code. See Using Embedded RSA SecurID Software Tokens.
Configure the certificate checking mode for the SSL certificate presented by the server. See Setting the Certificate Checking Mode in Horizon Client.
If you plan to use fingerprint authentication, verify that the Fingerprint Authentication option is enabled and at least one fingerprint is enrolled on the Android device. For complete fingerprint authentication requirements, see Fingerprint Authentication Requirements.
- If a VPN connection is required, turn on the VPN.
- On the Android device, tap the Horizon app icon.
- Connect to a server.
Connect to a new server
Enter the name of a server, enter a description (optional), and tap Connect.
Connect to an existing server
Tap the server shortcut on the Servers tab.
Connections between Horizon Client and servers always use SSL. The default port for SSL connections is 443. If the server is not configured to use the default port, use the format shown in this example: view.company.com:1443.
- If a smart card is required or optional, select the smart card certificate to use and enter your PIN.
If your smart card has only one certificate, that certificate is already selected. If there are many certificates, you can scroll through the certificates.
- If you are prompted for RSA SecurID credentials or RADIUS authentication credentials, either type your credentials or, if you plan to use an embedded RSA SecurID token, install an embedded token.
If you use a hardware authentication token or software authentication token on a smart phone, enter your user name and passcode. The passcode might include both a PIN and the generated number on the token.
Install software token
Tap External Token. In the Install Software Token dialog box, paste the CT-KIP URL or CTFString URL that your administrator sent to you in email. If the URL contains an activation code, you do not need to enter anything in the Password or Activation Code text box.
- If you are prompted a second time for RSA SecurID credentials or RADIUS authentication credentials, enter the next generated number on the token.
Do not enter your PIN, and do not enter the same generated number that you entered before. If necessary, wait until a new number is generated.
If this step is required, it is required only when you mistype the first passcode or when configuration settings in the RSA server change.
- If you are prompted for a user name and password, supply your Active Directory credentials.
- Type the user name and password of a user who is entitled to use at least one desktop or application pool.
- Select a domain.
If the Domain drop-down menu is hidden, type the user name as username@domain or domain\username.
- (Optional) If the Enable Fingerprint check box is available, select it to use fingerprint authentication.
The Enable Fingerprint check box is available only if biometric authentication is enabled on the server and you have not previously authenticated with fingerprint authentication.
- (Optional) Select the Save Password check box if your administrator has enabled this feature and if the server certificate can be fully verified.
If this is the first time you are saving a password, you are prompted to activate the device administrator, which is required to save a password on Android devices.
- Tap Connect.
If fingerprint authentication is enabled and you are logging in for the first time, your Active Directory credentials are stored securely in the Android device's database for future use.
- If you are prompted for fingerprint authentication, place your finger on the fingerprint sensor.
If you do not want to use fingerprint authentication, tap Cancel. You can connect to the server again and tap Use password to enter a user name and password.
- (Optional) Tap the display protocol settings icon in the upper-right corner of the window to select the display protocol to use.
VMware Blast provides better battery life and is the best protocol for high-end 3D and mobile device users.
- Tap a desktop or application to connect to it.
If you are connecting to a published desktop, and if the desktop is already set to use the Microsoft RDP display protocol, you cannot connect immediately. You are prompted to have the system log you off the remote operating system so that a connection can be made with the PCoIP display protocol or the VMware Blast display protocol.
After you connect to a desktop or application for the first time, a shortcut for the desktop or application is saved to the Recent tab. The next time you want to connect to the remote desktop or application, you can tap the shortcut instead of tapping the server icon.