Skip to content

Enabling the Kiosk Mode on Trusted Zero Clients

You can configure Trusted Zero Clients from the Trust Center to operate in the Kiosk mode. This enables the clients to operate as fixed purpose devices such as point-of-sale terminals and digital signs.

To enable the Kiosk mode on Trusted Zero Clients, the following properties must be configured:

  • autoConnectIfOneBroker: This parameter is set on the Trust Center, and enables login without credentials provided that only one broker is configured to connect to the host.
  • autoLaunchIfOneDesktop: This parameter is set on the broker (Endpoint Management tool), and allows automatic selection of a desktop, provided that only one desktop is available.
  • savedLoginUsername and savedLoginPasswordSecret: This parameter is set on the broker (Endpoint Management tool), and fetches the username and password to be used for login.
  • kioskMode: This parameter is set on the Trust Center, and enables Kiosk mode on the Trusted Zero Clients.

Notes

Kiosk Mode works only if the following conditions are met:

  • Only one broker is configured to connect to the host.

  • The user credentials are current. If the username or the password have expired, the user is directed to the password change window.

  • Only one desktop is configured for use. If multiple desktops are available, the Desktop Selection window opens, with a list of desktops from which users can select the desktop to connect to.

Step I: Set a Secret for each Trusted Zero Client

Tip

The exact property names depend on the management tool you are using.

To begin, set a secret on Trust Center for the Trusted Zero Client. The Trust Center encrypts the secret value with the Trusted Zero Client's public key, which is available in the client's birth certificate.

The secret represents the password required for automatic login, and is retrieved while authenticating login attempts from a Trusted Zero Client. It is also required while configuring the broker.

  1. Open the Endpoint Management tool.

  2. Set a secret using the set-secret command for the Trusted Zero Client.

  3. Set the password secret to the secretName configured in the step above.

  4. Do this for all the Trusted Zero Clients on which you want to enable Kiosk mode.

Step II: Configure the Broker

As a next step, configure a broker for establishing PCoIP sessions and enabling the automatic launch of desktops. While configuring, enter the secret and username that will be used for authentication. These credentials will be verified for each connection attempt.

Info

The secret must be the same value as the Secret you set in Step I.

The following table lists the parameters that can be configured on the broker:

Value Type Description Notes
savedLoginPasswordSecret String This parameter fetches the password encrypted in the endpoint. This value must match the secret that was set in Step I. For example, if you set the secret as mysecret, set this parameter to mysecret as well. The Secret will be used retrieved every time a connection attempt is made to authenticate the user.
autoLaunchIfOneDesktop Boolean This parameter allows automatic selection of a desktop, provided that only one desktop is available. Set this value to True to enable Auto Login.
savedLoginUsername String This parameter represents the username to be used for login. The username will be used retrieved every time a connection attempt is made to authenticate the user.
enableLoginUsernameCaching Boolean This parameter allows users to control the ability to save their usernames, and display them on the client login window. This parameter is optional to the procedure.

To configure the broker:

  1. Open the Endpoint Management tool.

  2. Set Auto Connect if Only One Connection to "True".

  3. Set Auto Select Desktop if Only One Desktop to "True".

  4. Set a username. The exact configuration for this depends on the management tool.

Step III: Enable Automatic Login on Trust Center

Next, enable automatic login by setting the autoConnectIfOneBroker flag to "True". The ability to automatically login is necessary for the Trusted Zero Clients to operate in Kiosk mode.

  1. Open the Endpoint Management tool.

  2. Set Auto Connect if One Broker to "True". This flag allows automatic login, provided that only one broker is configured to connect to the host.

Step IV: Enable the Kiosk Mode on Trusted Zero Clients

Finally, enable the Kiosk mode on Trusted Zero Clients, using the kioskMode parameter. This parameter can have two values:

  • True: When enabled, Trusted Zero Clients can automatically log in to remote desktops, such as in kiosk-like environments.

  • False: When disabled, Trusted Zero Clients follow the standard login process to connect to remote desktops.

  • Open the Endpoint Management tool.

  • Set kioskMode to "True". This flag enables the Kiosk mode, provided that only one broker is configured to connect to the host.