True SSO Diagnostic Utility

version 2.2 — October 29, 2020

Contributors 3

Per Larsson
Peter Brown
Enterprise Desktop
Tarique Chowdhury
Enterprise Desktop

Comments 1

Horizon View True SSO uses Microsoft Enterprise Certificate Servers to issue certificates that are used when the user logs on to the desktop. The Horizon View Enrollment Server (ES) is responsible for sending a certificate request to certificate servers, and for monitoring the PKI configuration settings in the Active Directory.

This Fling, True SSO Diagnostic Utility, is a diagnostic utility that allows you to perform basic validation of the Horizon (Certificate) Enrollment server, the Active Directory PKI settings, and Enterprise Certificate Authorities (CA).”

Requirements

In order for the Horizon View Enrollment Server (ES) to be able to issue certificates for users in a specific domain these basic requirements must be met:

The ES must be installed on a system that is a member of the user domain, or a domain that has a two-way trust to the domain where the users are located. It can’t be installed on a Domain Controller or the Connection Server, but it may be co-installed with the CA.
A Certificate Template with Smartcard Logon usage must be configured, and the ES must be given Enroll permission on this Template.
An enterprise CA must be configured to issue certificates for the wanted Template.
An Enrollment Certificate generated by an Enterprise CA from the forest where the users are located must be installed into the \ certificate store of the ES.
A Horizon View Connection server (pod) must be paired with the ES. Please refer to the Horizon View Admin Guide and Deployment Guide for detailed information of how to install and configure True SSO.

Instructions

Copy the True SSO diagnostic utility to the Horizon 7 Enrollment Server, and then simply run the utility from a command prompt. See Horizon 7 True SSO Enrollment Server Diagnostics Tool (PDF)

Changelog

Version 2.2

The tool has been updated to allow performance-testing of the enrollment-server.

Version 2.0

Updated to support VMware Horizon 7.4 and later
Added LogonTest method; Performs basic validation of generated certificates
Display expiry time for Enrollment and CA certificates
Display additional information of generated certificates

Contributors

Per Larsson

Peter Brown

Enterprise Desktop

Tarique Chowdhury

Enterprise Desktop

Similar Flings

No similar flings found. Check these out instead...

Dec 06, 2014

ViewDbChk

version 6.0

The ViewDbChk tool allows administrators to scan for, and fix provisioning errors that can not be addressed using View Administrator. Provisioning errors occur when there are inconsistencies between the LDAP, vCenter and View Composer databases. These can be caused by: direct editing of the vCenter inventory, restoring a backup, or a long term network problem.

vCenter™

View Connection Server

VMware View

Oct 16, 2014

ESXtopNGC Plugin

version 1.0

ESXtopNGC Plugin is an enhanced, plugin-version of ESXtop for the vSphere Web Client. The plugin displays ESX server stats in new and more powerful ways by tapping into the GUI capabilities of the Web Client.

VMware vSphere™

Jan 13, 2021

DRS Dump Insight

version 2.0

DRS Dump Insight is a service portal where users can upload drmdump files and it provides a summary of the DRS run, with a breakup of all the possible moves along with the changes in ESX hosts resource consumption before and after DRS run.

drs

service

Jun 18, 2018

Load Analysis Tool

version 1.0

May 04, 2017

vCenter Cluster Performance Tool

version 2.0

vCenter Cluster Performance Tool is a Powershell script that uses vSphere PowerCLI to obtain performance data for a cluster by aggregating information from individual hosts.

Apr 11, 2017

vRealize Operations Email Template Manager

version 1.1.0

This Fling helps vRealize Operations Manager users better manage custom email notification templates.

vRealize Operations