Got it

FusionCloud Desktop Security Solution

Latest reply: Feb 15, 2022 05:52:27 1969 22 19 0 0

Dear All today we are going to discuss about FusionCloud Desktop Security Solution


FusionCloud Desktop Security Solution


Below Is the high level of overview of FusionCloud Desktop Security



 Terminal access security

·        Only TCs that pass identity authentication can connect to the desktop network.




  •  After power-on, the TC obtains the IP address and registers with the TCM.

  • The TC checks whether it has a certificate.

  • The TC applies for a certificate from the TCM.

  • The TCM applies for a certificate from CA based on information obtained from the TC.

  • CA issues the signed certificate to the TCM.

  • The TCM issues the certificate to the TC.

  • The TC goes to the switch for EAP-TLS 802.1 authentication.

  • The switch forwards authentication information to the AAA server for processing based on the RADIUS protocol.

  • Implements WI login authentication.

  • Implements AD authentication for VM login.

Restricted TC Access




  • Restricted TC access: Binding relationships are established between TCs' MAC addresses/MAC address groups and domain users/domain user groups, so that domain users/domain group members can access desktops from restricted TCs or TC groups. The restricted TC access feature can be used with any WI authentication mode.

  • Specified IP segment access: Access permissions can be configured for clients' IP segments. In this way, users can only access virtual desktops using specified IP segments including IP addresses and subnet masks.

  • Application scenario: The restricted TC access feature applies to scenarios in which high information security is required and users can access virtual desktops that contain sensitive information only from restricted TCs.


Security-enhanced TCs




Centralized data management and no data running on terminals




  • Operating systems, applications, and data are locally deployed on terminals. Terminals are easy to encounter virus attacks and malicious steal.

  • Desktops and data are separated from terminals and data centers and are centrally stored and processed in the background. Only screen refresh information is transmitted to terminals.


Transmission channel encryption preventing interception and data theft




  • Management portal over HTTPS

  • Access transmission channels over the portal are encrypted.

  • HDP over SSL

  • The SSL encryption applies to trusted domains and untrusted domains on the management plane

Peripheral device port control on virtual desktops




  • The HDP protocol independently controls various peripheral channels, ensuring information security.

  • Local USB driver

  • Mappings of local drivers can be disabled.

  • USB device control

  • USB ports can be enabled or disabled


Complete user access authentication







·        Supports various authentication modes, such as the multi-level authentication and two-factor authentication.


Thank you All,

Ksahif Ali

  • x
  • convention:

HCIE MVE Author Created Jan 10, 2022 05:45:45

@olive.zhao @Irina @dragos_v @BAZ @wissal @umaryaqub @Rumana @ander.sanchez @Lan59 @nuchi @Vlada85 @hemin88 @Unicef @little_fish @gzzz @nochhie @chantha @smileymind @Navin_kay @user_4358465 @Majdi.Chebil @AndresMoreno @shakeela @phuta @Ayeshaali @user_4001805 @VinceD @lucian2003 @dengdengdeng @Sara_Obaid @AL_93 @MahMush @Y_T_Z @Kevin_Thomas @Saqib123 @bobi @richie9999 @user_4359501 @MesayW. @Khalid_Gul @LilStylz237 @MMshaikh @Laiheang @Chanbora @Sokrin @simchamnan @user_4237671 @Abdussamed @andersoncf1 @Herediano @Vesper_EvenStar @taha_29four @user_4326135 @Assis_bsb @Serges_armel @sachandio @hamza11 @mouh1991 @Tiplu @Null_0 @Tongun @Haseeb_Haris @Diego.Silva @Caroline_Herrera @kunthea @Somemeow @Anno7 @chenhui @jason_hu @Popeye_Wang @alopez @Chenxintao @E.DR_91 @stephen.xu @DDSN @Malik3000 @Zemo_Mccracken @adrian_alucard @Precious @Kwesi @imransumayari @abdul_basit7233 @Andre_G @Murat87 @LucianoNhantumbo @Vien @titusmahwe @DragonVN @Zebra @thisu @Funstuf @DKetrari @4TEch @rkahya_4 @scidox @faysalji @user_3134129 @SamB @mustafa211 @rimon @RajK @Funstuff @Abrar_Akbar @Kh_Elias65 @James_Nel @Zonger @Hurr @15393597009 @safecity @LeeMARK @jerry_zhuzi @bruno.guedes @Kashif @DrDoom @mrppa @sliawatimena @daniellima @thibay @maithi @hanhcao @wonderj @mytruc @huyvan @manpham @Imnh @hugu @nagu @sam_san @NTan33 @Faridrami @I_Am_Batman @amr_rashedy @Ignatius @Saqibaz @user_4252339 @Satya_Syam @Vijji @user_4413531 @Wieczorekcool @user_4400653 @Sirajs @Dia0205 @abdelali @Irshadhussain @cmarban @javaid100 @Natan_Oliveira @backwaves @alexander.grosello @Confucius @Soliman_Mohammed @sohaib.ansar @csk99 @OneDan @bek7 @Farah_O @AymanOT @Asimsaad @Salah @Mr.Jack @Steffy @h89151 @Alibaba8000 @SidzHuawei
View more
  • x
  • convention:

little_fish Created Jan 10, 2022 06:53:51 (0) (0)
wissal Created Jan 10, 2022 07:47:04 (0) (0)
Thank you, my friend  
Moderator Author Created Jan 10, 2022 05:47:26

Thanks for sharing
View more
  • x
  • convention:

MVE Created Jan 10, 2022 06:07:39

View more
  • x
  • convention:

MVE Created Jan 10, 2022 07:47:32

Good sharing
View more
  • x
  • convention:

HCIE Created Jan 10, 2022 09:54:45

Good one
View more
  • x
  • convention:

MVE Author Created Jan 10, 2022 18:03:16

Thanks @Kashif for sharing. Always good stuff to share
View more
  • x
  • convention:

Created Jan 10, 2022 20:11:43

View more
  • x
  • convention:

Created Jan 11, 2022 05:44:51

Nice sharing
View more
  • x
  • convention:

Admin Created Jan 12, 2022 01:03:29

Thank you!
View more
  • x
  • convention:

Back to list


You need to log in to comment to the post Login | Register

Notice: To protect the legitimate rights and interests of you, the community, and third parties, do not release content that may bring legal risks to all parties, including but are not limited to the following:
  • Politically sensitive content
  • Content concerning pornography, gambling, and drug abuse
  • Content that may disclose or infringe upon others ' commercial secrets, intellectual properties, including trade marks, copyrights, and patents, and personal privacy
Do not share your account and password with others. All operations performed using your account will be regarded as your own actions and all consequences arising therefrom will be borne by you. For details, see " User Agreement."

My Followers

Login and enjoy all the member benefits


Are you sure to block this user?
Users on your blacklist cannot comment on your post,cannot mention you, cannot send you private messages.
Please bind your phone number to obtain invitation bonus.
Information Protection Guide
Thanks for using Huawei Enterprise Support Community! We will help you learn how we collect, use, store and share your personal information and the rights you have in accordance with Privacy Policy and User Agreement.