Security-related server settings are accessible under in the Horizon console.
| Setting | Description |
|---|---|
| Use PCoIP Secure Gateway for PCoIP connections to machine | Determines whether Horizon Client makes a further secure connection to the connection broker host when users connect to VMware Horizon desktops and applications with the PCoIP display protocol. If this setting is disabled, the desktop or application session is established directly between the client and the VMware Horizon desktop or the Remote Desktop Services (RDS) host, bypassing the connection broker host. This setting is disabled by default. |
| Use Secure Tunnel connection to machine | Determines whether Horizon Client makes a further HTTPS connection to the connection broker host when users connect to an VMware Horizon desktop or an application. If this setting is disabled, the desktop or application session is established directly between the client and the VMware Horizon desktop or the Remote Desktop Services (RDS) host, bypassing the connection broker host. This setting is enabled by default. |
| Use Blast Secure Gateway for Blast connections to machine | Determines whether clients that use a Web browser or the Blast Extreme display protocol to access desktops use Blast Secure Gateway to establish a secure tunnel to the connection broker. If not enabled, clients using a Blast Extreme session and Web browsers make direct connections to VMware Horizon desktops, bypassing the connection broker. This setting is disabled by default. |
For more information about these settings and their security implications, see the Horizon Administration document.
