Securing XenApp®/XenDesktop® communication
You might want to secure the communication between your XenDesktop Delivery Controller and StoreFront communication and you can use HTTPS for the same:
You need to install the SSL certificate on Delivery Controllers and then change the configuration on the StoreFront server to use HTTPS to communicate to Delivery Controllers. However, you might encounter an issue where no users will be able to see any of their published applications or desktops based on the delivery groups.
This is a known issue with Windows Server 2012 R2 having security update KB2919355. This update actually changed the cipher suite due to which the Delivery Controller stops all HTTPS communication.
To work around this issue, you need to get a GPO created and implemented on the Delivery Controllers' OU. The steps for this are as follows:
Create a new GPO.
Browse to Computer Configuration | Administrative Templates | Network | SSL Configuration Settings | SSL Cipher Suite Order.
Enable...
