Table 6. Connection Settings: wnos.ini files only (continued)
Parameter Description
Adding certificates are required if the user CSG environments use certificate agents
that are not covered by the built-in certificates. The certificates are used to validate
server identities by the thin client. Supported files include .crt file on ICA CSG; .cer
and .pfx in 802.1x. Password and Password-Enc are specially used with PFX files.
CaradigmServer=vip list
[EGPGroup=group name]
[EnableLogOff={yes,no}]
[SecurityMode={
default, full, warning, low}]
[DisableManualLogon=yes, no]
CaradigmServer=vip list contains a list of VIP addresses with optional TCP port
number of Caradigm servers. EGPGroup defines the user group name. If
EnableLogOff=yes is specified, the user is logged off from the session before
system signs off. Otherwise the session is disconnected. The logged off user has a
timeout value which can be set using SessionConfig parameter
SessionLogOffTimeout.
The default timeout value is 1, if no SessionLogOffTimeout is specified.
SecurityMode specifies the SSL certification validation policy.
If set to default, it applies the SecurityPolicy setting.
If set to full, the SSL connection needs to verify server certificate. If it is untrusted,
drop the connection.
If set to warning, the SSL connection needs to verify server certificate.
If it is untrusted, it is up to you to continue or drop the connection.
If set to low, the server certificate is not checked. The value is persistent, the
default value of the setting is default.
DisableManualLogon is set to yes to disable user to manually enter credentials to
authenticate into the device. It only allows an already enrolled proximity badge and
in active grace period to authenticate with a single badge tap. The default value is
no
Community=community
[Encrypt={yes, no}]
Specifies the SNMP community name. A string up to 31 characters are allowed.
After the value is specified, it is saved in the non-volatile memory.
If encrypt=yes, an encrypted string is used as a community name.
The default value is set to no.
NOTE: Use our Windows Password_Gen tool or built-in tool to generate
the encrypted string.
ConnectionBroker={default, VMware, Microsoft,
Quest, AWS}
[IgnoreProfile={yes, no,}]
[SecurityMode={Default,Low,Warning,Full}]
[EnableVWGateway]={yes, no}
[VWGateway]=url
[ConnectionType]={Default, All, RDP, PCoIP,
Blast}
[EnableVDMCredSSP]={yes,
no}
[RDCollections={*collect1, collect2,...}]
[DisableShowDisclaimer=[yes,
no]
[DisableShowServer=[yes,
no]
[EnableUnauthenticatedAccess]={yes,no}
[Host={broker_url}]
[AutoConnectList={*|host1;host2;host3...}]
[VMWaitTimer={0–3600}]
Default value is default. Specifies the type of VDI broker to use. Default is a 3rd
party VDI broker.
AWS is Amazon Workspace broker. It is only available with PCoIP build.
IgnoreProfile — Default value is no.
Set IgnoreProfile=yes to disable parsing the global setting from the VDI broker. It is
only valid in the case of ConnectionBroker=default.
SecurityMode — SecurityMode specifies the security mode for the VMware
broker and Amazon Workspace (AWS) broker. It is only valid in case of
ConnectionBroker=VMware or ConnectionBroker=AWS. The details is as follows:
• Set SecurityMode=Full to have the Client verify the server's certificate in
highest security mode; if any relevant checks error, it will fail to connect to the
server.
• Set SecurityMode=Warning to have the Client allow connection continuation in
the following two specific exceptions where full verification would fail:
1. Certificate is self-signed.
2. Certificate has an invalid time.
• Set SecurityMode=Low to indicate that Client allows connection without any
certificate verification.
20 Parameters for wnos INI files only