Launching soon: The world's first vendor agnostic bug scrubLearn more & join waitlist
OPERATIONAL DEFECT DATABASE
...
...
When users attempt to connect to Horizon through a Unified Access Gateway via HTML, they might encounter an error message that reads "Failed to connect to the Connection Server."Note , Each Horizon Software version introduces more stringent checks on Origin Checking Cross-Origin Resource Sharing (CORS) with Horizon 8 and loadbalanced HTML5 access. (85801) outlines the changes for the major releases.We recommend configuring rewrite origin header on the UAG as the preferred option: Deploying and Configuring VMware Unified Access Gateway - Configure Horizon Settings -Re-Write Origin Header
This article supplements the steps supplied in Allow HTML Access Through a Gateway - VMware Docs Deploying and Configuring VMware Unified Access Gateway - Configure Horizon Settings -Re-Write Origin HeaderIf an incoming request to Unified Access Gateway has the Origin header and the Re-Write Origin Header toggle is turned on, Unified Access Gateway rewrites the Origin header with the Connection Server URL. The Re-Write Origin Header toggle works alongside the checkOrigin CORS property of the Horizon Connection Server. When this field is enabled, the Horizon administrator can bypass the need to specify Unified Access Gateway IP addresses in the locked.properties file. For information about Origin Checking, see Horizon Security documentation.For scenarios / environments that cannot configure Re-Write Origin Header, please see the below: Procedure : Connection Server. Create or edit the locked.properties file in the gateway configuration folder on the Connection Server host associated with the UAG: See Horizon Server: Troubleshooting Configuration Issues with Locked.properties(94578 ) for detailed step-by-steps. install_directory\VMware\VMware View\Server\sslgateway\conf\locked.properties Add the portalHost property and set it to the address of the gateway, in this instance - The UAG. portalHost.1 = internal FQDN of Unified Access Gateway (i.e. uag.domain.com) Save the locked.properties file.Restart the Connection Server service to make your changes take effect. Procedure : Unified Access Gateway Within the UAG configuration, verify the following pattern is present in Proxy Pattern under "Horizon Settings" in the admin UI. Please see Advanced Edge Service Settings in UAG Documentation for additional detail on Proxy Pattern (/|/view-client(.*)|/portal(.*)|/appblast(.*)) Ensure the Unified Access Gateway detects the "Horizon Destination Server" in the "Edge Service Settings" as active. If the destination server shown as red, please reference Unified Access Gateway(UAG): Troubleshooting Horizon Destination Server Down (57161) & Unified Access Gateway(UAG): Troubleshooting DNS Connectivity Issues with Horizon View Servers (50120424) for additional troubleshooting.
Allow HTML Access Through a Gateway - VMware Docs Cross-Origin Resource Sharing (CORS) with Horizon 8 and loadbalanced HTML5 access. (85801)