So to continue the certificate process for Horizon 5.2, we’ll take a look as to how to create a certificate template. A certificate template basically allows an AD administrator to create a pre-made list of certificate options that users and computers can use when enrolling for certificates without having to create complex certificate requests. This can help streamline the process of adding Horizon View clients, desktops and so on in the environment without having to create and configure individual certificates.
- Go to Start –> Run and type mmc in the run window.
- From the Menu, select File and then select Add or Remove Snap-ins
- From the Available snap-ins (on the left) select Certificate Templates and click the Add button.
- Click OK.
- In the Console Root column (left), click on the Certificate Templates. This should populate the center column with the templates.
- Select Web Server template (2nd from the bottom) and right click on it. Choose Properties
- On the Web Server Properties, select the Security tab.
- Click on the Add button and select the Object Types button.
Ensure that all the boxes are checked and click OK.
- In the Object Names box, enter in the short names of all the computers that this certificate will be used for. Short names are things like “ConnectionServer01”. Long names, or FQDNs (Fully Qualified Domain Names) are like “ConnectionServer01.company.com”.
- Click the Check Names box and then click the OK button.
For each computer object, ensue that it has Read, Write and Enroll permissions checked off ( I couldn’t find any way to do multiples at once so this will have to be done individually)
- Click OK. Do not close the mmc as this will be used later.