PCoIP Software Client Security Modes¶
The PCoIP Software Client uses certificates to verify the identity of the host to which it connects. The security mode is configured by the security_mode
setting in the Teradici PCoIP Client configuration file, which is described next. Three security mode options are available:
-
security_mode=0: verification is not required A red, unlocked padlock icon appears on the client login screen.
-
security_mode=1: warn but allow (default) If a certificate cannot be verified, an 'untrusted server' warning displays and a red, unlocked padlock icon appears on the client login screen. Users still have the option of connecting.
This mode is used if security_mode
is not set in the configuration file.
- security_mode=2: full verification is required Users cannot connect unless a certificate can be verified.
PCoIP sessions are always encrypted
Your PCoIP session is still encrypted and secure if you connect with security mode 0 or 1. The red padlock icon indicates that the certificate presented by the host is not signed by a trusted certificate authority in the client’s certificate store, not that the session is insecure.
Setting the Security Mode¶
Use the following procedure to set the PCoIP Software Client's security mode.
To set the security mode for the PCoIP Software Client:
- Close the PCoIP Software Client.
- Open a Windows Explorer window and navigate to %appdata%\Teradici.
- Using a text editor, open Teradici PCoIP Client.ini.
- Add the line
security_mode=<value>
to the file, where<value>
is your desired security option (0, 1, or 2). - Save the file.