In order for the Horizon View Enrollment Server (ES) to be able to issue certificates for users in a specific domain these basic requirements must be met:

• The ES must be installed on a system that is a member of the user domain, or a domain that has a two-way trust to the domain where the users are located. It can’t be installed on a Domain Controller or the Connection Server, but it may be co-installed with the CA.
• A Certificate Template with Smartcard Logon usage must be configured, and the ES must be given Enroll permission on this Template.
• An enterprise CA must be configured to issue certificates for the wanted Template.
• An Enrollment Certificate generated by an Enterprise CA from the forest where the users are located must be installed into the \ certificate store of the ES.
• A Horizon View Connection server (pod) must be paired with the ES. Please refer to the Horizon View Admin Guide and Deployment Guide for detailed information of how to install and configure True SSO.

Copy the True SSO diagnostic utility to the Horizon 7 Enrollment Server, and then simply run the utility from a command prompt. See Horizon 7 True SSO Enrollment Server Diagnostics Tool (PDF)

Version 2.2

• The tool has been updated to allow performance-testing of the enrollment-server.

Version 2.0

• Updated to support VMware Horizon 7.4 and later
• Added LogonTest method; Performs basic validation of generated certificates
• Display expiry time for Enrollment and CA certificates
• Display additional information of generated certificates