To install Horizon Agent for Linux, you must meet certain requirements for the Linux operating system, Linux virtual machine, VMware Horizon system components, and vSphere platform.
Supported Linux Versions for Horizon Agent
The following table lists the Linux operating systems that are supported for Horizon Agent.
|Ubuntu 20.04 and 18.04||x64|
|Red Hat Enterprise Linux (RHEL) Workstation 7.2, 7.3, 7.4, 7.5, 7.6, 7.7, 7.8, 7.9, 8.0, 8.1, 8.2, and 8.3||x64|
|Red Hat Enterprise Linux (RHEL) Server 7.8, 7.9, 8.2, and 8.3||x64|
|CentOS 7.2, 7.3, 7.4, 7.5, 7.6, 7.7, 7.8, 7.9, 8.0, 8.1, 8.2, and 8.3||x64|
|SUSE Linux Enterprise Desktop (SLED) 12 SP3, 15 SP1, and 15 SP2||x64|
|SUSE Linux Enterprise Server (SLES) 12 SP3, 12 SP5, 15 SP1, and 15 SP2||x64|
Required Platform and Software Versions
To install and use Horizon Agent for Linux, your deployment must meet certain requirements for the vSphere platform, Horizon Connection Server, and Horizon Client software.
|Platform and Software||Supported Versions|
|vSphere platform version||
|Horizon Client software||
TCP/UDP Ports Used by Linux Virtual Machines
Horizon 8 Agent and Horizon Clients use TCP or UDP ports for network access between each other and various Horizon 8 server components.
|Horizon Client||*||Linux Agent||22443||TCP/UDP||Blast if Blast Security Gateway is used|
|Horizon 8 Connection Server or Unified Access Gateway appliance||*||Linux Agent||22443||TCP/UDP||Blast if Blast Security Gateway is used|
|Horizon 8 Agent||*||Horizon 8 Connection Server||4001, 4002||TCP||JMS SSL traffic|
To allow users to connect to their Linux desktops, the desktops must be able to accept incoming TCP connections from Horizon Client devices, Unified Access Gateway, and Horizon Connection Server.
On Ubuntu distributions, the iptables firewall is configured by default with an input policy of ACCEPT.
On RHEL and CentOS distributions, where possible, the Horizon Agent installer script configures the iptables firewall with an input policy of ACCEPT.
Make sure that iptables on an RHEL or CentOS guest operating system has an input policy of ACCEPT for new connections from the Blast port, 22443.
When the BSG is enabled, client connections are directed from a Horizon Client device through the BSG on the Horizon Connection Server to the Linux desktop. When the BSG is not enabled, connections are made directly from the Horizon Client device to the Linux desktop.
Verify the Linux Account Used by Linux Virtual Machines
The following table lists the account name and account type used by Linux virtual machines.
|Account Name||Account Type||Used By|
|root||Linux OS built-in||Java Standalone Agent, mksvchanserver, shell scripts|
|vmwblast||Created by Linux Agent installer||VMwareBlastServer|
|<current login user>||Linux OS built-in or AD user or LDAP user||Python script|
|Linux Distribution||Default Desktop Environment||Desktop Environments Supported by Horizon Agent for Linux|
|Ubuntu 20.04/18.04||Gnome||Gnome Ubuntu, K Desktop Environment (KDE), MATE|
|RHEL/CentOS 7.x||Gnome||Gnome, KDE|
Single sign-on (SSO) for KDE and the MATE Desktop Environment only works when your Linux desktop is using the GDM3 greeter (login screen). You must install KDE and MATE using the commands listed in Commands to Install Desktop Environments.
When using RHEL/CentOS 7.x and Ubuntu distributions, SSO fails to unlock a locked KDE session. You must manually enter your password to unlock the locked session.
To change the default desktop environment used on one of the supported Linux distributions, you must use the following steps and commands appropriate for your Linux desktop.
- Install the supported Linux distribution's operating system with the default desktop environment setting.
- Run the appropriate commands described in the following table for your specific Linux distribution.
Table 6. Commands to Install Desktop Environments Linux Distribution New Default Desktop Environment Commands to Change the Default Desktop Environment RHEL/CentOS 7.x KDE
# yum groupinstall "KDE Plasma Workspaces"
Ubuntu 20.04/18.04 KDE
# apt install plasma-desktop
Ubuntu 20.04/18.04 MATE 1.225
# apt install ubuntu-mate-desktop
- To begin using the new default desktop environment, restart the desktop.
- For Ubuntu 20.04/18.04 and RHEL/CentOS 7.x, use the information in the following table to set the SSODesktopType option in the /etc/vmware/viewagent-custom.conf file to specify the desktop environment to use with SSO.
Table 7. SSODesktopType Option Desktop Type SSODesktopType Option Setting MATE SSODesktopType=UseMATE GnomeUbuntu SSODesktopType=UseGnomeUbuntu GnomeFlashback SSODesktopType=UseGnomeFlashback KDE SSODesktopType=UseKdePlasma GnomeClassic SSODesktopType=UseGnomeClassic
- For RHEL/CentOS 8.x, for the SSO login session to use Gnome Classic, remove all the desktop startup files, except for the Gnome Classic startup file, from the /usr/share/xsession directory. Use the following set of commands as an example.
# cd /usr/share/xsessions # mkdir backup # mv *.desktop backup # mv backup/gnome-classic.desktop ./After the initial setup, the end user must log out or reboot their Linux desktop to use Gnome Classic as the default desktop in their next SSO session.
If you deactivate SSO on a Linux desktop that has multiple desktop environments installed, you do not need to perform any of the previously described steps. The end users have to select their desired desktop environment when they log in to that Linux desktop.
- Select TCP if the network condition is good, such as in a local area network (LAN) environment.
- Select UDP if the network condition is poor, such as in a wide area network (WAN) environment with packet loss and time delay.
- Download and install Wireshark on your Linux VM.
sudo yum install wiresharkFor Ubuntu:
sudo apt install tshark
- Connect to the Linux desktop using VMware Horizon Client.
- Open a terminal window and run the following command, which displays the TCP package or UDP package used by VMware Blast Extreme.
sudo tshark -i any | grep 22443
- Copying remote files can be slow. In this situation, transmit smaller sized files instead.
- USB device does not appear in the remote Linux desktop.
- USB data does not transfer completely. For example, if you copy a large file, you might get a file smaller in size than the original file.
VHCI Driver for USB Redirection
The USB redirection feature has a dependency on the USB Virtual Host Controller Interface (VHCI) kernel driver. To support USB 3.0 and the USB redirection feature, you must perform the following steps:
- Download the USB VHCI source code from https://sourceforge.net/projects/usb-vhci/files/linux%20kernel%20module/.
- To compile the VHCI driver source code and install the resulting binary on your Linux system, use the commands listed in the following table.
For example, if you unpack the installation file VMware-horizonagent-linux-x86_64-YYMM-y.y.y-xxxxxxx.tar.gz under the /install_tmp/ directory, the full-path_to_patch-file is /install_tmp/VMware-horizonagent-linux-x86_64-YYMM-y.y.y-xxxxxxx/resources/vhci/patch/vhci.patch and the patch command to use is
# patch -p1 < /install_tmp/VMware-horizonagent-linux-x86_64-YYMM-y.y.y-xxxxxxxi/resources/vhci/patch/vhci.patch
|Linux Distribution||Steps to Compile and Install USB VHCI Driver|
In addition, follow these guidelines:
- If your Linux kernel changes to a new version, you must recompile and reinstall the VHCI driver, but you do not need to reinstall Horizon for Linux.
- You can also add Dynamic Kernel Module Support (DKMS) to the VHCI driver using steps similar to the following example for an Ubuntu system.
- Install the kernel headers.
# apt install linux-headers-`uname -r`
- Install dkms using the following command.
# apt install dkms
- Extract and patch the VHCI TAR file.
# tar xzvf vhci-hcd-1.15.tar.gz # cd vhci-hcd-1.15 # patch -p1 <full-path_to_patch-file> # cd ..
- Copy the extracted VHCI source files to the /usr/src directory.
# cp -r vhci-hcd-1.15 /usr/src/usb-vhci-hcd-1.15
- Create a file named dkms.conf and place it in the /usr/src/usb-vhci-hcd-1.15 directory.
# touch /usr/src/usb-vhci-hcd-1.15/dkms.conf
- Add the following contents to the dkms.conf file.
PACKAGE_NAME="usb-vhci-hcd" PACKAGE_VERSION=1.15 MAKE_CMD_TMPL="make KVERSION=$kernelver" CLEAN="$MAKE_CMD_TMPL clean" BUILT_MODULE_NAME="usb-vhci-iocifc" DEST_MODULE_LOCATION="/kernel/drivers/usb/host" MAKE="$MAKE_CMD_TMPL" BUILT_MODULE_NAME="usb-vhci-hcd" DEST_MODULE_LOCATION="/kernel/drivers/usb/host" MAKE="$MAKE_CMD_TMPL" AUTOINSTALL="YES"
- Add this VHCI driver in dkms.
# dkms add usb-vhci-hcd/1.15
- Build the VHCI driver.
# dkms build usb-vhci-hcd/1.15
- Install the VHCI driver.
# dkms install usb-vhci-hcd/1.15
- Install the kernel headers.