You can configure the Horizon Client certificate verification mode by adding the CertCheckMode value name to a registry key on the Windows client computer.
On 32-bit Windows systems, the registry key is HKEY_LOCAL_MACHINE\Software\VMware, Inc.\VMware VDM\Client\Security. On 64-bit Windows systems, the registry key is HKLM\SOFTWARE\Wow6432Node\VMware, Inc.\VMware VDM\Client\Security.
Use one of the following values in the registry key:
- 0 - implements the Do not verify server identity certificates option.
- 1 - implements the Warn before connecting to untrusted servers option.
- 2 - implements the Never connect to untrusted servers option.
You can also configure the Horizon Client certificate verification mode by configuring the Certificate verification mode group policy setting. If you configure both the group policy setting and the CertCheckMode setting in the registry key, the group policy setting takes precedence over the registry key value.
When either the group policy setting or the registry setting is configured, users can view the selected certificate verification mode in Horizon Client, but they cannot configure the setting.
For information about configuring the Certificate verification mode group policy setting, see Security Settings in the Horizon Client Configuration Templates.