XenDesktop on VMware ESX infrastructure: Creating Desktop Groups

There are three methods for allowing Xen Desktop Delivery Controller access to VirtualCenter in order to create a new desktop group:

Allow HTTP access to the SDK on the vCenter (VirtualCenter) web server.

Modify the proxy.xml file on the virtualCenter server located in c:\Documents and Settings\All Users\Application Data\VMware\VMware VirtualCenter\

The section

<_type>vim.ProxyService.NamedPipeServiceSpec</_type>

<accessMode>HttpsandRedirect</accessMode>

<pipeName>\\.\pipe\vmware-vpxd-webserver-pipe</pipeName>

<serverNamespace>/client/clients.xml</serverNamespace>

Change to

<_type>vim.ProxyService.NamedPipeServiceSpec</_type>

<accessMode>httpAndHttps</accessMode>

<pipeName>\\.\pipe\vmware-vpxd-webserver-pipe</pipeName>

<serverNamespace>/client/clients.xml</serverNamespace>

Restart the VMware VirtualCenter Server service (vpxd) on the VirtualCenter host.

Import the defaul VMware SSL certificate into the Xen Desktop Delivery Controller. (not recommeded in a production environment because you must use the defaul certificate hostname of “vmware”

Copy rui.crt from c:\Documents and Settings\All Users\Application Data\VMware\VMware VirtualCenter\SSL to the Xen Desktop Delivery Controller server

Import the certificate into the Trusted Root Authority for the computer account

Open the Certificates Snap-in in an MMC console and choose to manage the Computer account

Expand down to Trusted Root Certificate Authorities and right-click on Certificates and choose Import…

Use the wizard to select the rui.crt file that you copied from the VirtualCenter server

Close the MMC

Edit the hosts file in %windir%\system32\drivers\etc with notepad and add the following and save the file:

vmware <ip of your virtualcenter server>

Use an SSL certificate from a trusted root authority.

This process involves creating an SSL certificate for you VirtualCenter server and configuring IIS to use this certificate.  This is a well documented procedure.  See VMware and IIS documentation for this procedure.