Horizon DaaS Platform 6.1 Patch 2

Similar documents
Horizon DaaS Platform 6.1 Patch 3

Horizon DaaS Platform 6.1 Release Notes. This document describes changes to the Horizon DaaS Platform for Version 6.1.

Cloud Pod Architecture with VMware Horizon 6.1

Installing and Configuring vcloud Connector

vrealize Production Test Upgrade Assessment Guide

Horizon DaaS Platform 6.1 Service Provider Installation - vcloud

ARCHITECTURAL OVERVIEW REVISED 6 NOVEMBER 2018

VMWARE VSPHERE FEATURE COMPARISON

VMWARE HORIZON CLOUD WITH VMWARE IDENTITY MANAGER QUICK START GUIDE WHITE PAPER MARCH 2018

INSTALLATION AND SETUP VMware Workspace ONE

Horizon Air 16.6 Release Notes. This document describes changes to Horizon Air for version 16.6

Running Intellicus under SSL. Version: 16.0

Configuring OneSign 4.9 Virtual Desktop Access with Horizon View HOW-TO GUIDE

REVISED 6 NOVEMBER 2018 COMPONENT DESIGN: UNIFIED ACCESS GATEWAY ARCHITECTURE

Workspace ONE UEM Integration with RSA PKI. VMware Workspace ONE UEM 1810

VMware vrealize Configuration Manager SQL Migration Helper Tool User's Guide vrealize Configuration Manager 5.8

CLOUD PROVIDER POD RELEASE NOTES

EXPLORING MONITORING AND ANALYTICS VMware Horizon

Port Adapter Installation and Configuration Guide

Using VMware Horizon Workspace to Enable SSO in VMware vcloud Director 5.1

What s New in VMware vsphere Availability

VMware Horizon Migration Tool User Guide

VMware AirWatch Integration with RSA PKI Guide

REVISED 6 NOVEMBER 2018 COMPONENT DESIGN: VMWARE IDENTITY MANAGER ARCHITECTURE

Configuring Single Sign-on from the VMware Identity Manager Service to Bonusly

Branch Office Desktop

Workspace ONE UEM Certificate Authority Integration with JCCH. VMware Workspace ONE UEM 1810

Avaya Callback Assist Application Notes for HTTPS Configuration

CLOUD PROVIDER POD. for VMware. Release Notes. VMware Cloud Provider Pod January 2019 Check for additions and updates to these release notes

Mobile Secure Desktop Implementation with Pivot3 HOW-TO GUIDE

Bitnami JFrog Artifactory for Huawei Enterprise Cloud

Using VMware View Client for Mac

Getting Started with ESXi Embedded

Compatibility Matrixes for VMware vcenter Site Recovery Manager 4.0 and Later

Tomcat SSL Certificate Deployment Guide (generate CSR by customer)

vfabric AppInsight Security Reference

VMware AppCatalyst Technical Preview June 2015 TECHNICAL WHITE PAPER

Genesys Administrator Extension Migration Guide. Prerequisites

A: SETTING UP VMware Horizon

vrealize Orchestrator Load Balancing

Cloud Provider Pod Designer User Guide. November 2018 Cloud Provider Pod 1.0.1

How to Configure the Sakai Integration - Admin

Service Description VMware NSX Cloud

Steel-Belted Radius Installation Instructions for EAP-FAST Security Patch

CLOUD PROVIDER POD RELEASE NOTES

NSX-T Upgrade Guide. VMware NSX-T 2.0

TECHNICAL WHITE PAPER DECEMBER 2017 VMWARE HORIZON CLOUD SERVICE ON MICROSOFT AZURE SECURITY CONSIDERATIONS. White Paper

Reconfiguring VMware vsphere Update Manager. 17 APR 2018 VMware vsphere 6.7 vsphere Update Manager 6.7

Migrating vrealize Automation 6.2 to 7.1

Certified Reference Design for VMware Cloud Providers

SOURCEFIRE 3D SYSTEM RELEASE NOTES

Reconfiguring VMware vsphere Update Manager. Update 1 VMware vsphere 6.5 vsphere Update Manager 6.5

PROVIDING SECURE ACCESS TO VMWARE HORIZON 7 AND VMWARE IDENTITY MANAGER WITH THE VMWARE UNIFIED ACCESS GATEWAY REVISED 2 MAY 2018

Advanced Architecture Design for Cloud-Based Disaster Recovery WHITE PAPER

ProgrammableFlow Controller Trial Reference Guide. Set up instructions

Configuring Single Sign-on from the VMware Identity Manager Service to Vizru

Multi-Tenancy in vrealize Orchestrator. vrealize Orchestrator 7.4

GlobalForms SSL Installation Tech Brief

Using the vcenter Orchestrator Perspectives Plug-In

vcloud Automation Center Reference Architecture vcloud Automation Center 5.2

VMware vcenter Configuration Manager and VMware vcenter Application Discovery Manager Integration Guide

Installing and Configuring vcloud Connector

Notes on Using the Beta VMware Importer Tool on Your Mac VMware Importer 1 Beta 2

Manually Installing Jamf Pro or Later

Install the ExtraHop session key forwarder on a Windows server

VMware Cloud Provider Pod Designer User Guide. October 2018 Cloud Provider Pod 1.0

What s New in VMware vsphere 5.1 Platform

Using the Horizon vcenter Orchestrator Plug-In. VMware Horizon 6 6.0

VMware vcloud Director Configuration Maximums vcloud Director 9.1 and 9.5 October 2018

Table of Contents. Configure and Manage Logging in to the Management Portal Verify and Trust Certificates

VMware vrealize Suite and vcloud Suite

Advanced Integration TLS Certificate on the NotifySCM Server

Upgrading to VMware Identity Manager 3.3 (Linux) SEPT 2018 VMware Identity Manager 3.3

Using vrealize Operations Tenant App as a Service Provider

VVD for Cloud Providers: Scale and Performance Guidelines. October 2018

PowerSchool Student Information System

Configure the DNS server. Secure communications for both the application server and the meeting server (HTTP and RTMP).

INTEGRATING OKTA: VMWARE WORKSPACE ONE OPERATIONAL TUTORIAL VMware Workspace ONE

vcenter CapacityIQ Installation Guide

VMware vsphere Data Protection TECHNICAL WHITE PAPER JUNE 2012

VMWARE PIVOTAL CONTAINER SERVICE

VMware Infrastructure 3 Primer Update 2 and later for ESX Server 3.5, ESX Server 3i version 3.5, VirtualCenter 2.5

Integrating VMware Horizon Workspace and VMware Horizon View TECHNICAL WHITE PAPER

Setting Up Resources in VMware Identity Manager 3.1 (On Premises) Modified JUL 2018 VMware Identity Manager 3.1

REVIEWERS GUIDE NOVEMBER 2017 REVIEWER S GUIDE FOR CLOUD-BASED VMWARE WORKSPACE ONE: MOBILE SINGLE SIGN-ON. VMware Workspace ONE

VMware View Upgrade Guide

Configuring Single Sign-on from the VMware Identity Manager Service to Marketo

XMediusFAX Sharp OSA Connector Administration Guide

VMware Horizon JMP Server Installation and Setup Guide. 13 DEC 2018 VMware Horizon 7 7.7

What s New in VMware vcloud Automation Center 5.1

VMware vcloud Air Network Program License Key Volume Q1 2016

Configuring Single Sign-on from the VMware Identity Manager Service to Collibra

NSX-T Upgrade Guide. VMware NSX-T 2.1

VMware VMFS Volume Management VMware Infrastructure 3

Request Manager User's Guide

VMware AirWatch Integration with Palo Alto Networks WildFire Integrate your application reputation service with AirWatch

Expedition. Hardening Guide Version Palo Alto Networks, Inc.

Configuring Single Sign-on from the VMware Identity Manager Service to Trumba

Upgrading VMware Identity Manager Connector

vshield Administration Guide

Transcription:

Horizon DaaS Platform 6.1 Patch 2 November 2014

Revision History Date Version Description 11/07/2014 1.0 Initial release 2014 VMw are, Inc. All rights reserved. This product is protected by U.S. and international copyright and intellectual property law s. VMw are products are covered by one or more patents listed at http://w w w.vmw are.com/go/patents. VMw are is a registered trademark or trademark of VMw are, Inc. in the United States and/or other jurisdictions. All other marks and names mentioned herein may be trademarks of their respective companies. VMw are, Inc. 3401 Hillview Ave. Palo Alto, CA 94304 w ww.vmw are.com

Patch Dependencies Horizon DaaS Platform 6.1.1 (Build 22355) Affected Horizon DaaS Version Horizon DaaS Platform 6.1.0 (Build 22210) Horizon DaaS Platform 6.1.1 (Build 22355) Patch Version Horizon DaaS Platform 6.1.2 (Build 22583) New Features Resolved Issues This patch fixes a security issue related to the use of SSLv3 on appliances. This patch disables support for SSLv3, which is now considered unsafe due to the POODLE vulnerability. TLSv1 is now considered the minimally safe protocol. Product Support Notices Known Issues Installing the Patch Pushing out software patches to all appliances in one or more Data Centers is a three step process: Upload the patch. When you upload the patch file, it is automatically replicated to all appliances. Install the patch file on all Service Provider appliances. Install the patch file on all Tenant appliances. [Optional] Manually Disable SSLv3 on Org1000 Systems These steps are described below.

Upload the Patch File 1. In the Service Center, select appliances software updates. The Software Updates screen displays. 2. Click Browse to browse for the patch file. 3. Click Upload. The Service Center checks whether the file is the correct file type. The patch file is automatically replicated to all Service Provider appliances in each Data Center. The Replications column in the lower portion of the screen indicates the progress. For example, 2/2 means that the patch file has been replicated to both the primary and secondary Service Provider appliances in a single Data Center and 4/4 means that the patch file has been replicated to the primary and secondary Service Provider appliances in two Data Centers. It can take up to one minute for each appliance. You must wait until the patch file has been replicated to an appliance before installing the patch on that appliance. Install the Patch on All Service Provider Appliances Before you begin the installation, note the following: If you have a staggered Horizon DaaS 6.1 environment (that is, with tenant appliances still running Horizon DaaS 6.0 or 6.0.1) it is recommended that you upgrade the tenant appliances to Horizon DaaS 6.1.2 if possible or contact VMware Global Support for instructions on how to apply the 6.0.2 and 6.0.3 patches manually to the 6.0/6.0.1 appliances. If you start the installation before the patch file has been replicated to all Service Provider appliances, you are warned that replication is not complete on specific appliances. However, you can begin installation on those appliances where replication is complete. Procedure 1. In the Service Center, select appliances software updates. The Software Updates screen lists the available patches. Each patch name is a link. 2. Click on the name of a patch. The Software Updates screen redisplays to show those organizations that have appliances that have not been patched. 3. Mark the checkbox for organization 1000. 4. To install the patch in a single Data Center, select a Data Center from the drop-down. To install the patch on all appliances in all Data Centers, accept the default value All. 5. Click Install. Install the Patch on All Tenant Appliances 1. In the Service Center, select appliances software updates. The Software Updates screen lists the available patches. Each patch name is a link. 2. Click on the name of a patch. The Software Updates screen lists the organizations that have appliances that have not been patched. 3. For each Tenant: a. Mark the checkbox for the organizations you need to patch. b. The Data Center drop-down default value is All, which installs the patch on all appliances in all Data Centers. To install in a single Data Center, select that Data Center from the drop-down. 4. Click Install.

[Optional] Manually Disable SSLv3 on Org1000 Systems Warning: Before disabling SSLv3 on Org1000 appliances, you must have applied this patch to all of your Tenant appliances. If the Service Center is accessible from the public internet, you might want to disable SSLv3 on the Org1000 systems to address the Service Center vulnerability. To do this, perform the steps below on each appliance. Procedure 1. Open the server.xml file (/usr/local/jboss-5.1.0.gacxf/server/desktone/deploy/jbossweb.sar/server.xml) 2. Insert SSLProtocol="TLSv1" into the Connector element for Ports 443 and 8443, as shown below. New text is in red. <Connector protocol="http/1.1" allowtrace="false" SSLEnabled="true" port="443" maxthreads="500" scheme="https" secure="true" clientauth="false" enablelookups="false" SSLEngine="on" SSLProtocol="TLSv1" SSLCertificateFile="/usr/local/desktone/cert/ssl_cert_file" SSLCertificateKeyFile="/usr/local/desktone/cert/ssl_cert_key_file" SSLCACertificateFile="/usr/local/desktone/cert/ssl_ca_cert_file" SSLCipherSuite="ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES128-GCM- SHA256:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-AES256-G$ <Connector protocol="http/1.1" allowtrace="false" SSLEnabled="true" port="8443" maxthreads="500" scheme="https" secure="true" clientauth="false" enablelookups="false" SSLEngine="on" SSLProtocol="TLSv1" SSLCertificateFile="/usr/local/desktone/cert/appliance_cert_file" SSLCertificateKeyFile="/usr/local/desktone/cert/appliance_key_file" SSLCipherSuite="ECDHE-RSA-AES128-GCM-SHA256:ECDHE-ECDSA-AES128-GCM- SHA256:ECDHE-RSA-AES256-GCM-SHA384:ECDHE-ECDSA-AES256-G$ Uninstalling the Patch To revert to the previous version, uninstall the patch by executing these commands on all appliances as the root user: sudo apt-get remove dt-platform-6-1-0-patch-2 sudo service dtservice restart

2024 © technodocbox.com Privacy Policy | Terms of Service | Feedback