This information is now withheld by default but can be provided by enabling the Accept logon as current user setting in Horizon Administrator. In order for the Logon as current user feature to work, the broker must provide the Connection Server’s Server Principal Name (Windows identity) to the clients prior to user authentication. For this reason, and because the older clients expect some value in the domain list, we have created settings so our customers can select a balance between ease of use and security. It will take time to train end users to change the login process they have been doing every day for years.
There are a variety of use cases, but the highlights are: In other words, they will no longer select the correct domain from a drop down. However, this improvement will require that end users provide their domain information during logon. The default settings for the servers will be not to send a list of domains, safeguarding company environment information. To improve the security of the Horizon environment, we are making some changes in the upcoming Horizon 7.8 release.
0 kommentar(er)
