Tools that I came across in my day to day troubleshooting: Autoruns – shows you what programs are configured to run during system bootup or login, and when you start various built-in Windows applications like Internet Explorer, Explorer and media players. CDFControl – CDFControl utility is an event tracing controller or consumer for capturing CDF trace messages…
AAA Authentication methods: Netscaler supports 7 methods of authentication. Local: user account should be created locally on the netscaler. Authentication takes place without contacting external authentication server. LDAP: LDAP often uses Microsoft AD to validate users. It has 3 authentication types: Plaintext, SSL and TLS. Plaintext uses 389 for communication. Sends credentials in plain text….
Authentication Virtual Server: AAA TM(traffic management) virtual server acts as an authentication portal for content switching and load balancing virtual servers prompting users through form based or 401 login page before they can access their resources. AAA Process: User is redirected to form based or 401 login page using SSL. It then gathers user’s creds…
some or all steps are required to add external authentication on netscaler 12 and above: Create LDAP Server (authentication server). Create LDAP policy. Bind the LDAP policy globally. Add AD groups to netscaler to restrict access to management access. Optional Restrict normal users to netscaler gateway. Optional Create LDAP Server (authentication server): To create LDAP…
XenDesktop 7.x Controller Services There are overall 11 core FMA services in every citrix site. Service Name Executable Logon Account / Startup Type Description Dependencies Citrix AD Identity Service Citrix.ADIdentity.exe NT AUTHORITY\NetworkService Automatic Manages Active Directory Computer Accounts for machines within the xenapp/xendesktop deployment. Workstation Citrix Analytics Citrix.Analytics.exe NT AUTHORITY\NetworkService Automatic Collects analytical data regarding…
HDX Double-Hop: This is formerly known as ICA Pass-Through. User logs into first storefront store on end point device receiver and initiates connection to desktop or server virtual delivery agent. This Citrix desktop or server virtual delivery agent has receiver installed in it and has second storefront details. When user launches an application from Citrix…
Session reliability is a XenApp and XenDesktop feature designed to keep sessions active when there is a network interruptions. This is for users who work from unreliable network like a mobile device, with no wifi. User on wireless device who enters a tunnel may lose connectivity, under normal scenario, session would disconnect and user has…
Seamless mode: Applications delivered by XenApp and XenDesktop without a desktop are referred as seamless applications. Seamless mode allows remote applications to appear as though they are installed locally i.e., applications appear integrated with local operating system. Seamless applications gives look and feel like applications are installed locally. Without seamless applications, all applications are shown…
Accessing resources can be broken down to 4 steps: Authentication Enumeration Resource launch Session initialization. Authentication: Check out below links for authentication while user is on netscaler, storefront or web interface. Authentication at Storefront, web interface or storefront delegation: http://knowcitrix.com/logon-process/ Authentication at netscaler: http://knowcitrix.com/xendesktop-7-x-app-vda-login-process/ Internal component communication: http://knowcitrix.com/component-communications/ Enumeration: Assuming user is already authenticated, storefront sends request over…
XML Service: The XML service handles all client communication. Client communication like user authentication to the published app list, resolving the Citrix Zone Preference Policies, user application requests, and user connections requests. The XML service also hosts the Secure Ticket Authority that is used for storing secure tickets for user session requests and session reliability in…