Академический Документы
Профессиональный Документы
Культура Документы
Table of Contents
Module 3: Licensing XenApp Exercises........................................13
About Coolidge Financial, Inc..........................................................................................................15 Lab Scenario..................................................................................................................................16 User Credentials.............................................................................................................................17 Lab Environment.............................................................................................................................18 XenCenter Overview.......................................................................................................................19 Exercise 3-1: Installing the License Server for Coolidge Financial, Inc..............................................20 Installing the License Server........................................................................................................20 Exercise 3-2: Importing Coolidge's Citrix Licenses..........................................................................22 Configuring the License Server....................................................................................................22 Viewing the License Server Dashboard........................................................................................23 Exercise 3-3: Configuring License Monitoring..................................................................................25 Configuring EdgeSight to Monitor the License Server..................................................................25
Notices
Citrix Systems, Inc. (Citrix) makes no representations or warranties with respect to the content or use of this publication. Citrix specifically disclaims any expressed or implied warranties, merchantability, or fitness for any particular purpose. Citrix reserves the right to make any changes in specifications and other information contained in this publication without prior notice and without obligation to notify any person or entity of such revisions or changes.
Copyright 2010 Citrix Systems, Inc. All Rights Reserved.
No part of this publication may be reproduced or transmitted in any form or by any means, electronic or mechanical, including photocopying, recording, or information storage and retrieval systems, for any purpose other than the purchasers personal use, without express written permission of: Citrix Systems, Inc. 851 West Cypress Creek Road Fort Lauderdale, FL 33309 http://www.citrix.com The following marks are service marks, trademarks or registered trademarks of their respective owners in the United States and other countries. Mark Flash, Flex, Reader Apple, iPhone, Mac Avaya Bloomberg Cisco Owner Adobe Systems Incorporated Apple, Inc. Avaya, Inc. Bloomberg Finance L.P. Cisco Systems, Inc.
Branch Repeater, Citrix, Citrix Access Gateway, Citrix Citrix Systems, Inc. Application Firewall, Citrix Authorized Learning Center, Citrix Certified Administrator, Citrix Certified Enterprise Administrator, Citrix Certified Integration Architect, Citrix EasyCall, Citrix Education, Citrix Receiver, Dazzle, EdgeSight, FlexCast, HDX, ICA, NetScaler, MyCitrix, WANScaler, XenApp, XenDesktop Android Linux Google Linus Torvalds
Mark
Owner
Active Directory, Internet Explorer, Microsoft, Microsoft Microsoft Corporation Internet Explorer, SQL Server, Windows, Windows Mobile, Windows Server, Win32, Access, Excel, InfoPath, OneNote, Outlook, PowerPoint, Project, Publisher, Visio Firefox UNIX Oracle Pearson VUE Blackberry Skype Java Mozilla Corporation The Open Group Oracle Corporation Pearson Education, Inc. Research In Motion Limited Skype Limited Sun Microsystems, Inc.
Other product and company names mentioned herein might be the service marks, trademarks or registered trademarks of their respective owners in the United States and other countries.
Course Conventions
This courseware uses the following typographic conventions to emphasize information. Convention UPPERCASE Usage Commands such as DIR and COPY Filename extensions such as .COM and .INI Drive letters such as A: and C: Case-sensitive items are the only exception to the usage listed. lowercase Command line parameters such as /w and -r URL addresses such as http://finance.yahoo.com Internet addresses such as www.citrix.com Domain names such as education.ctx Email addresses such as training@citrix.com
Case-sensitive items are the only exception to the usage listed. Bold Initial Capitalization Words or terms that are defined Interface items that are selected, deselected, clicked, double-clicked or right-clicked such as options and menu items in lab exercises Case-sensitive items are the only exception to the usage listed. ITALIC UPPERCASE A variable in a system name such as XenAppX and ClientX A variable in a user name such as UserX and AdminX Variable drive letters such as z: and x: Variable directory names such as %systemroot% and dir_name Case-sensitive items are the only exception to the usage listed.
italic lowercase
This courseware uses the following icons. The Note icon identifies additional relevant information.
The Tip icon identifies information that can save time and effort.
The Warning icon identifies information that must be heeded in order to prevent harm to systems or users. The following table provides a list of updated Citrix product and component names used throughout the course. New Name Delivery Services Console License Administration Console Citrix online plug-in Citrix offline plug-in Old Name Access Management Console License Management Console Citrix XenApp Plugin for Hosted Apps Citrix XenApp Plugin for Streamed Apps
Credits
Instructional Designers: Lab Developer: Jeremy Boehl, Ben Colborn, Lydia Kellman, George Komoto, Brad Moczik, Meghan Myers, Adam Pallesen, Karla Stagray Andrew Garfield
Education Media Specialists: Joshua Jack, Nathan Jackson Education Project Manager: Leah Thompson Editor: Subject Matter Experts: Kathryn Morris Neil Alhadeff, Jenny Berger, Rob Blincoe, Ronald Brown, Blaise Cacciola, Victor Cataluna, Dave Coleman, Michael Delaguardia, Dan Feller, Jo Harder, Ann Harmison, James Hsu, Mark Ma, Abhishek Mandhana, Mike Melton, Robert Morris, Sridhar Mullapudi, Joseph Nord, Jan Penovich, Elisabeth Reynolds, Daniel Romig, Andrea Rutherford, Stacy Scott, Mark Simmons, Lenny Soletti, Wayne Stillson, Jay Tomlin, Danny Van Dam, Sharin Yeoh, Andy Zhu Rob Blincoe, James Hsu, Mark Simmons
Special Thanks:
Module 3
14
15
Lab Scenario
You are a new XenApp Administrator who was hired by Coolidge Financial, Inc to begin a rapid and wide-scale deployment of XenApp that will eventually reach all company employees. Your job is to work with a consultant who is a Citrix Certified Integration Architect and a full time Citrix Certified Enterprise Engineer to create, test, and deploy a XenApp farm and integrate it into the existing Active Directory system. The deployment is a multi-phase project; you are tasked with completing the first phase of the rollout. The goal of the first phase is to create the fundamental XenApp infrastructure and to deploy XenApp to the initial set of critical users while making sure to meet all technical and functional requirements. Management wants this initial phase of the implemention completed within the next five days. Due to the rapid pace required for this implementation you are given temporarily elevated access to the domain controller and other restricted parts of the IT infrastructure. The Citrix Engineer will help you with some parts of the implementation, but is unable to dedicate his full attention.
16
User Credentials
Please use the following credentials as you complete these exercises: Coolidge\CitrixAdmin Username: Coolidge\CitrixAdmin Password: Password1 Member of: Coolidge\Domain Admins; Coolidge\TestAccounts Description: This account was created to facilitate the initial phase of deployment for all Citrix Administrators. When the environment goes live, it will be replaced by specific accounts for each administrator. This is the account that will be used most often throughout the initial deployment.
Coolidge\CitrixEngineer Username: Coolidge\Engineer Password: Password1 Member of: Coolidge\Domain Admins; Description: This account was created for the Citrix Engineer to access and administrate the XenApp farm.
Coolidge\TestAdvisor Username: Coolidge\CitrixAdvisor Password: Password1 Member of: Coolidge\Advisors; Coolidge\TestAccounts Description: This account simulates a member of the Advisors team at Coolidge.
Coolidge\TestUser Username: Coolidge\CitrixUser Password: Password1 Member of: Coolidge\TestAccounts Description: This account simulates the lowest common denominator user of the XenApp farm.
citrixadmin@coolidge.net Username: citrixadmin@coolidge.net Password: Password1 Description: This account is used exclusively to login and manage EdgeSight.
17
Lab Environment
The following table provides descriptions and roles of each virtual machine in the lab environment: Virtual Machine AccessGateway Role A virtual appliance which encrypts traffic Linux between the client device and the Web Interface server. Domain Controller EdgeSight Server License Server Filer Print Server Windows Server 2008 R2 OS
Coolidge-DC
Windows 7
A system for profiling streaming Windows Server 2008 applications for Windows Server 2008 R2. R2 A system for profiling streaming applications for Windows 7. Windows 7
Citrix Merchandising Server, which is used Linux to manage and deploy Citrix plug-ins to Citrix Receiver. The Web Interface server. XenApp XenApp Windows Server 2008 R2 Windows Server 2008 R2 Windows Server 2008 R2
18
XenCenter Overview
Your virtual machines are hosted using Citrix XenServer. Each virtual machine is an independent system called a guest operating system. Citrix XenCenter allows you to connect to the XenServer environment and administer guest operating systems. Once you are connected to your XenServer system, you will notice a list of guests in the left pane of XenCenter. Selecting a guest will allow you to monitor and administer it. The Console tab allows you to see the selected guest operating system desktop. You can manipulate the console window to suit your preference. Useful functions for XenCenter console screens are listed in the following table. Control Send Ctrl-Alt-Del Alt+Shift+U Ctrl+Alt Scale DVD Drive Switch to Remote Desktop/ Switch to Default Desktop Function Sends the Ctrl-Alt-Del sequence to the guest to access the Windows Security screen Undock/redock (separate or join console screen) Toggle full-screen mode Scale the guest window to fit inside the console window Select a disc image to 'insert' into the guest DVD drive Toggle between VNC connection and RDP connection Using RDP to connect can improve user interface performance
19
Exercise 3-1: Installing the License Server for Coolidge Financial, Inc.
Scenario
In preparation for installing and configuring XenApp, you must install a license server to support all of the Citrix products going forward. The Citrix Engineer wants you to install the license server on the existing domain controller in order to keep all servers consolidated and save time against the aggressive deployment schedule. Your job is to install the license server from the XenApp media onto the domain controller.
20
b) Click Add server roles. The server role installer opens after a few moments. c) Click Platinum Edition. d) Accept the terms of the License Agreement and click Next. 4. Install the License Server role using the default values. a) Select License Server from the Common Roles section and click Next. b) Click Next in the Choose Role Subcomponents window and click Install. The installer begins to install the License Server role. c) Click Finish when the installation is completed.
21
22
b) Click Administration and type admin in the User Name field and Password1 in the Password and Confirm Password fields and click Submit. The username and password are both case-sensitive.
XenApp license file into the license server. a) Click the Import License button in the License Administration Console. b) Click Browse and type \\dc\filer \Administration\licenses in the File name field and press Enter. c) Click the xenapp_enterprise_coolidge_financial_dc.lic file and click Open. d) Select Overwrite License File on License Server and then click Import License. The License Administration Console uploads the license file to the license server. e) Click OK. 4. Import the \\dc\filer
\administration\licenses\cag_license_coolidge_ag.lic Access Gateway
license file into the license server. a) Click Import License. b) Click Browse and type \\dc\filer \Administration\licenses\ in the File name field. c) Click the cag_license_coolidge_ag.lic file and click Open. d) Select Overwrite License File on License Server and then click Import License. The License Administration Console uploads the license file to the license server. e) Click OK. 5. Restart the Coolidge-DC virtual machine.
23
2. Log on to the License Administration Console using the admin, Password1 credentials. View the dashboard to ensure the license file was installed correctly and that no critical alerts were logged. a) Click Start > All Programs > Citrix > Management Consoles > License Administration Console. b) Click Dashboard in the License Adminstration Console. c) Verify that a Citrix XenApp license is listed under Concurrent licenses. d) Verify that no critical alerts are logged. 3. Close all open windows on the Coolidge-DC virtual machine.
24
25
d) Click Test Connection and then click Add License Server, if the test connection was successful. 3. Change the polling interval for the License server monitor to 30 minutes and disable sending emails when polling errors occur. a) Click Settings under License Monitoring Configuration on the left side of the screen. b) Select 30 in the Polling Interval (min) drop-down menu. c) Select Do Nothing in the Polling Errors drop-down menu and click Save Changes. 4. Close Internet Explorer.
26
Module 4
28
29
3. Begin the XenApp Server role installation to install Platinum Edition components. a) Click Install XenApp Server. The XenApp Server Role Manager launches after a few moments. b) Click Add server roles. The server role installer opens after a few moments. c) Click Platinum Edition. d) Accept the terms of the License Agreement and click Next. 4. Install the XenApp role using the default options. a) Select XenApp from the Common Roles section and then click Next. b) Click Next in the Choose role subcomponents. c) Click Next in the Review Prerequisites screen. d) Click Install to begin the XenApp Server role installation. The XenApp Server Role Manager automatically installs all prerequisite software. This may take several minutes. e) Click Finish when the installation is completed.
30
31
a) Click Existing Microsoft SQL Server database and click Next. b) Type DC\SQLSERVER as the database server and XenApp as the database name. 3. Configure the database to use integrated Windows authentication with the Administrator, Password1 credentials. a) Select Integrated Windows authentication and click Next. b) Type Administrator and Password1 in the Windows Security screen and click OK. c) Click Test Connection to ensure that the information was entered correctly. d) Click OK and then click Next. 4. Complete the configuration by using the default shadowing settings and adding only the authenticated users to the Remote Desktop Users group. a) Click Next on the Configure shadowing screen to use the default shadowing configuration. b) Click Remote Desktop Users in the left pane. c) Deselect Add Anonymous users and Add the list of users from the Users group in the Remote Desktop Users section. d) Select Add the Authenticated Users and click Next. e) Confirm the settings and click Apply to complete the configuration. f) Click Finish when the configuration is completed. g) Click Do not show this window at logon in the XenApp Server Role Manager and click Close. 5. Restart the XenAppServer-1 virtual machine.
32
33
3. Join the server to the Coolidge farm and configure XenApp to use the existing XenApp database on the DC\SQLSERVER database server. a) Click Join an existing server farm. b) Click Existing Microsoft SQL Server database and click Next. c) Type DC\SQLSERVER as the database server name and XenApp as the database name. 4. Configure the database to use integrated Windows authentication with the Administrator, Password1 credentials. a) Select Integrated Windows authentication and click Next. b) Type Administrator and Password1 in the Windows Security screen and click OK. 5. Test the database connection. a) Click Test Connection to ensure that the configuration has been completed successfully. b) Click OK and then click Next. 6. Complete the configuration by using the default shadowing settings and adding only the authenticated users to the Remote Desktop Users group. a) Click Next on the Configure Shadowing screen to use the default shadowing configuration. b) Click Remote Desktop Users in the left pane. c) Deselect Add Anonymous users and Add the list of users from the Users group in the Remote Desktop Users section. d) Select Add the Authenticated Users and click Next. e) Confirm the settings and click Apply to complete the configuration. f) Click Finish when the configuration is completed. g) Click Do not show this window at logon in the XenApp Server Role Manager and click Close. 7. Restart the XenAppServer-2 virtual machine before continuing.
34
Module 5
36
37
b) c) d) e)
Deselect Single Sign-On and click Next. Click Add Local Computer and click Next. Click Next to configure the console. Click Finish to complete the Discovery wizard.
4. Make the Coolidge\CitrixEngineer account a full administrator of the XenApp farm. a) Expand the XenApp > Coolidge nodes in the Delivery Services Console, and right-click Administrators. b) Click Add administrator then click Add. c) Click Add List of Names and type Coolidge\CitrixEngineer. d) Click Check Names and click OK, if the name was validated successfully. If the names were not validated successfully, make sure they are spelled correctly and are in the Coolidge\AccountName format. e) Click OK to close the Add List of Names window and then click OK to finish selecting this user. f) Click Next to continue to the Privileges window. g) Select Full Administration and click Finish.
38
Log Off Users a) Click Applications and select View Published Applications and Content, View Session Management, Reset Sessions, Send Messages, and Log Off Users. b) Click Finish to complete the wizard.
39
40
Credentials: Coolidge\Administrator, Password1 Database: XA_ConfigurationLog Connection options: Use Encryption: No Connection pooling: Default
a) Click Configure Database to begin the database configuration. b) Specify SQL Server as the connection type and type DC\SQLSERVER as the server name. c) Specify Use Windows integrated security, type Coolidge\Administrator, Password1 in the credential fields and then click Next. d) Select XA_ConfigurationLog from Specify the database drop-down menu and click Next. e) Select No in the Use encryption drop-down menu under Connection options and click Next. 3. Test the database connection and complete the configuration. a) Click Test Database Connection and click OK, if a connection was successfully established. If a connection was not successfully established, confirm that all settings are configured correctly. b) Click Finish to complete the configuration. 4. Enable the logging of administrative tasks to the database. a) Select Log administrative tasks to Configuration Logging database. b) Click OK to return to the Delivery Services Console.
41
42
a) Right-click Worker Groups in the Delivery Services Console and click Create worker group. The Create Worker Group window opens. b) Type All Servers in the Name field. 2. Add XenAppServer-1 and XenAppServer-2 to the All Servers worker group and then complete the worker group creation. a) Click the Select source drop-down and select Farm Servers. b) Click Add to add servers to the worker group. The Select Servers window opens. c) Double-click XenAppServer-1 and XenAppServer-2 and click OK. d) Click OK to close the Create Worker Group window and complete the worker Group creation process. 3. Use the above procedure to create the following worker groups and add the appropriate servers to the groups. Servers in Group Worker Group Name San Francisco New York CapitalReSources Firefox XenAppServer-1 XenAppServer-2 XenAppServer-1, XenAppServer-2 XenAppServer-1, XenAppServer-2
43
44
Module 6
46
47
b) Click Add server roles. The server role installer opens after a few moments. c) Click Platinum Edition. d) Accept the terms of the License Agreement and click Next. 4. Install the Web Interface role using the default values. a) Select Web Interface from the Common Roles section and click Next. b) Click Next in the Choose Role Subcomponents. c) Click Next on the Review Prerequisites screen. d) Click Install to begin the installation of the prerequisites and the Web Interface. e) Click Finish to complete the Web Interface installation.
48
49
b) Verify that At Web Interface is specified on the Specify Point of Authentication screen and click Next. c) Click Next on the Confirm Settings for the New Site screen. The wizard creates a new XenApp Web site. d) Click Next to configure the XenApp Web site.
50
51
52
Exercise 6-4: Customizing the XenApp Web Site with Coolidge Branding
Scenario
The Marketing department supplied you with some branding guidelines and logos. They want you to use these files and guidelines on the XenApp Web site to integrate it with Coolidge's look and feel. In addition, some departments will be given the chance to access XenApp through the web site before the final deployment. The Citrix Engineer wants you to add a warning to the site to remind all visitors not to use XenApp for production purposes until it is ready.
53
3. Log on to the XenApp Web site as the Coolidge\CitrixAdmin user and make note of the colors used by default on XenApp Web sites. 4. Close Internet Explorer.
54
a) Click Appearance and then click the Header Area node. b) Type ../media/CoolidgeArt/CoolidgeLogoHeader.gif in the Full graphics mode field. 3. Use gray as the background color for the content area and then save the new appearance settings. a) Click the Content Area node and select Use color. b) Click the color box, select the gray color and click OK. c) Click OK to save the new appearance settings.
55
2. Verify that the Coolidge logo is displayed in the upper left corner of the page. 3. Verify that "Currently for non-production use only." is displayed under the Logon box. 4. Log on to the XenApp Web site as the Coolidge\CitrixAdmin user and verify that the background of the application area is gray. a) Type your Coolidge\CitrixAdmin credentials and press Enter. b) Verify that the background of the application area is now a gray color. 5. Close Internet Explorer.
56
Module 7
58
59
b) Right-click Applications, click Publish application to start the Publish Application wizard and then click Next. 2. Use CapitalReSources as the name of the published application and do not specify a description. a) Type CapitalReSources in the Display Name field. b) Leave the Application Description field blank and click Next. 3. Configure the CapitalReSources application to be accessed from the server and specify the application's command line location as C:\Program Files (x86)\CapitalReSources\CapitalReSources.exe. a) Verify that Application and Accessed from a server are selected and click Next. b) Click the Browse button next to the Command line field. c) Navigate to C:\Program Files (x86)\CapitalReSources\CapitalReSources.exe, click Open and then click Next. 4. Publish CapitalReSources to the CapitalReSources worker group. a) Click Add and double-click Worker Groups. b) Double-click CapitalReSources. c) Click OK to select the worker group and then click Next. 5. Provide the Financial Specialists and Domain Admins groups with access to the CapitalResources application. a) Click Add to display the Select Users or Groups screen. b) Click Add List of Names and type Coolidge\FinancialSpecialists; Coolidge\Domain Admins. c) Click Check Names and then click OK, if the names were validated successfully. If the names were not validated successfully, make sure they are spelled correctly and are in the Coolidge\AccountName format. d) Click OK to close the Add List of Names window and click OK. e) Click Next to proceed to the Shortcut presentation screen. 6. Place the application in a folder called Financial and complete the wizard using the default values. a) Type Financial in the Client application folder field and click Next. b) Click Finish to complete the Publish Application wizard.
Publishing Notepad
Use the XenAppServer-1 virtual machine logged in as the Coolidge\CitrixAdmin user for this task.
60
Use the following procedure to publish Notepad for testing through Citrix XenApp: 1. Use the Publish Application wizard on the XenAppServer-1 virtual machine to begin publishing the Notepad application . a) Right-click Applications, click Publish application to start the Publish Application wizard and then click Next. 2. Use Notepad as the name of the published application and "Published for testing only" as the description. a) Type Notepad in the Display Name field. b) Type Published for testing only in the Application Description field and click Next. 3. Set the Notepad application to be accessed from the server and specify the application's command line location as C:\Windows\System32\Notepad.exe. a) Verify that Application and Access from a server are selected and click Next. b) Click the Browse button next to the Command Line field. c) Navigate to C:\Windows\System32\Notepad.exe, click Open and then click Next. 4. Publish Notepad to the All Servers worker group. a) Click Add and double-click Worker Groups. b) Double-click All Servers. c) Click OK to select the worker group and click Next. 5. Give the TestAccounts group access to the Notepad application. a) Click Add to bring up the Select Users or Groups screen. b) Click Add List of Names and type Coolidge\TestAccounts. c) Click Check Names and click OK, if the name was validated successfully. If the names were not validated successfully, make sure they are spelled correctly and are in the Coolidge\AccountName format. d) Click OK to close the Add List of Names window and click OK. e) Click Next to proceed to the Shortcut presentation screen. 6. Complete the Publish Application wizard using the default values. a) Click Next in the Shortcut presentation screen. b) Click Finish to complete the Publish Application wizard.
61
62
3. Publish the server desktop of the San Francisco worker group. a) Click Add to open the Select Servers screen. b) Double-click Worker Groups. c) Double-click San Francisco to select it as the server to publish and click OK. d) Click Next. 4. Publish the server desktop to the Coolidge\Domain Admins group only. a) Click Add to open the Select Users or Groups screen. b) Click Add List of Names and type Coolidge\Domain Admins. c) Click Check Names and click OK, if the name was validated successfully. If the names were not validated successfully, make sure they are spelled correctly and are in the Coolidge\AccountName format. d) Click OK to close the Add List of Names window and click OK. e) Click Next to proceed to the Shortcut presentation screen. 5. Complete the publish application wizard using the default values. a) Click Next in the Shortcut presentation screen. b) Click Finish to complete the Publish Application wizard. 6. Close the Delivery Services Console.
63
64
b) Type webinterface.coolidge.net in the Server address field and click Update. The Citrix online plug-in negotiates with the WebInterface server and display a logon prompt. c) Type the Coolidge\CitrixEngineer credentials and then click OK to log on. 3. Open the Notepad, CapitalReSources and XenAppServer Desktop published resources to ensure that they were published correctly. Do not close them. a) Click the Citrix online plug-in icon and select Desktops > XenAppServer Desktop to launch the XenAppServer Desktop. b) Click the Citrix online plug-in icon in the navigation tray and select Applications > Notepad to launch Notepad. c) Click the Citrix online plug-in icon and select Applications > Financial > CapitalReSources to launch the CapitalReSources application. Verify that all of the published resources launch successfully. Do not close the applications.
Managing Sessions
Use the XenAppServer-1 virtual machine logged in as the Coolidge\CitrixEngineer user for this task.
65
Use the following procedure to manage user sessions: 1. Launch the Delivery Services Console on the XenAppServer-1 virtual machine. a) Switch to the XenAppServer-1 virtual machine. b) Click Start > All Programs > Citrix > Management Consoles > Delivery Services Console. 2. Complete the discovery process. Add the local computer using the XenApp Discovery wizard but do not include Single sign-on in your discovery. a) Click Next on the Discovery window, which appears automatically the first time the Delivery Services Console is opened. b) Deselect Single Sign-On and click Next. c) Click Add Local Computer and click Next. d) Click Next to configure the console. e) Click Finish to complete the Discovery wizard. 3. Use the Delivery Services Console on the XenAppServer-1 virtual machine to verify that CitrixEngineer sessions are active. a) Expand the XenApp > Coolidge nodes and click the Servers node. b) Click the Users tab to view the current sessions. c) Verify that the CapitalReSources sessions exist for the CitrixEngineer user. 4. Send a message to the CitrixEngineer's CapitalReSources session warning that "This session will be disconnected soon." a) Right-click on the CitrixEngineer's CapitalReSources session and select Send message. The Message window opens. b) Type This session will be disconnected soon. in the Message field and click OK. 5. Switch to the XenAppServer-2 virtual machine to view and accept the message and then switch back to the XenAppServer-1 virtual machine. 6. Log off the CitrixEngineer's CapitalReSources session using the Delivery Services Console and then switch to the XenAppServer-2 virtual machine to verify that the CapitalReSources application closed. a) Right click the CitrixEngineer's CapitalReSources session, click Log off and then click Yes to confirm. b) Repeat Step 6a on all of the CitrixEngineer sessions until none are listed. c) Switch to XenAppServer-2 virtual machine and confirm that the sessions were terminated. 7. Log off of the XenAppServer-1 and XenAppServer-2 virtual machines.
66
The ability to access the Delivery Services Console, send messages to user sessions and end user sessions confirms that the CitrixEngineer's permissions were configured correctly.
67
68
Module 8
70
71
a) Attach the XA6_2008R2_ML.ISO media to the virtual machine. The AutoPlay window displays. b) Click Run autorun.exe in the AutoPlay window to start the installation. 3. Launch the Streaming Profiler installer. a) Click Manually install components > Common Components. b) Click Plug-ins, Streaming Profiler, and Documentation and then click Streaming Profiler to launch the Streaming Profiler Installer. 4. Install the Citrix Streaming Profiler using the default options and restart the virtual machine, when prompted. a) Click OK to accept English as the language and then click Next. b) Select I accept the license agreement and click Next. c) Click Next to accept the default destination folder. d) Click Install, wait for the installation to complete and then click Finish. e) Click Yes to restart the virtual machine.
Profiling an Application
Use the Profiler-Win7 virtual machine logged in as the CitrixAdmin user for this task. Use the following procedure to profile an application for streaming: 1. Log on to the Profiler-Win7 virtual machine using your CitrixAdmin credentials. 2. Using the Citrix Streaming Profiler create a profile called Mozilla Firefox. a) Click Start > Streaming Profiler to open the Streaming Profiler. b) Click New Profile to launch the New Profile Wizard and then click Next. c) Type Mozilla Firefox as the Profile name and click Next. 3. Use the default User Updates and Inter-Isolation Communications options and verify that Windows 7 is selected as the target operating system. Specify to profile for all languages. a) Click Next to accept the default settings for User Updates. b) Click Next to accept the default settings for Inter-Isolation Communication. c) Verify that Windows 7 is selected as the Target operating system. The Windows Vista and Windows Server 2008 target operating systems will also be checked. d) Click All Languages in the target language section and then click Next.
72
4. Use the Quick Install option and specify the \\dc\filer \Software\Firefox Setup 3.6.3.exe installer. a) Select Quick Install and click Next. b) Click Browse, navigate to the \\dc\filer \Software\ folder, click Firefox Setup 3.6.3.exe and then click Open. c) Click Next to continue with the New Profile Wizard. 5. Install Mozilla Firefox from within the Streaming Profiler using the default options. a) Click Launch Installer to launch the Firefox installer. The Mozilla Firefox Setup window opens. b) Click Next on the Welcome screen and click Next to choose the default Standard Setup Type. c) Click Install to begin the Firefox installation and then wait for the Firefox installer to finish before continuing. d) Deselect Launch Firefox now and click Finish. 6. Use the Streaming Profiler to launch Firefox and run through its initial configuration without importing any settings and then close Mozilla Firefox. a) Click Next in the Run Installer window. b) Click Mozilla Firefox and click Run to launch Firefox and go through the initial configuration screens. The application opens. c) Click Don't import anything in the Firefox import wizard screen and then click Next. After a few moments, Firefox appears. d) Click File > Exit to exit Firefox. Click Quit to confirm. e) Click Next in the New Profile wizard. 7. Complete the Profiling wizard using the default choices and then save the profile to the \\dc\filer \Profiles folder. a) Click Next in the Select Applications screen to accept the default settings. b) Click Next in the Sign Profile screen to accept the default settings. c) Click Finish to build the profile. The profile for Mozilla Firefox builds. d) Click File > Save As and type \\dc\filer \Profiles as the profile save location and then click Save. The profile is saved to the application hub on the filer. 8. Shut down the Profiler-Win7 virtual machine.
73
74
Use the following procedure to add a target to an existing profile: 1. Start and log on to the Profiler-2008R2 virtual machine as the Administrator user. 2. Open the existing Mozilla Firefox profile located at \\dc\filer \Profiles\Mozilla Firefox\Mozilla Firefox.profile in the Streaming Profiler. a) Click Start > All Programs > Citrix > Streaming Profiler to launch the Citrix Streaming Profiler. b) Click Open Profile, navigate to \\dc\filer \Profiles\Mozilla Firefox, select Mozilla Firefox.profile and then click Open. 3. Add a Windows Server 2008 R2 target to the Mozilla Firefox profile for use with all languages. a) Right-click Mozilla Firefox and click Add New Target. b) Click Next to begin the wizard. c) Verify that Windows Server 2008 R2 64-bit Edition is selected. d) Select All languages in the Target Language section and click Next. 4. Use the Quick Install option and specify the \\dc\filer \Software\Firefox Setup 3.6.3.exe installer. a) Select Quick Install and click Next. b) Click Browse, navigate to the \\dc\filer \Software\ folder, click Firefox Setup 3.6.3.exe and then click Open. c) Click Next to continue with the New Target Wizard. 5. Install Mozilla Firefox from within the Streaming Profiler using the default options. a) Click Launch Installer to launch the Firefox installer. The Mozilla Firefox Setup window opens. b) Click Next and then click Next to choose the default Standard Setup Type. c) Click Install to begin the Firefox installation and then wait for the Firefox installer to finish before continuing. d) Deselect Launch Firefox now and click Finish. 6. Use the Streaming Profiler to start Firefox and run through its initial configuration without importing anything and then close Mozilla Firefox. a) Click Next in the New Target wizard. b) Select Mozilla Firefox and then click Run to launch Firefox and go through the initial configuration screens. The application opens. c) Click Don't import anything in the Firefox import wizard screen and then click Next. In a few moments, Firefox appears. d) Click File > Exit to exit Firefox. Click Quit to confirm.
75
e) Click Next in the New Target Wizard. 7. Complete the Profiling wizard using the default choices and then save the profile to the \\dc\filer \Profiles folder. a) Click Next in the Select Applications screen to accept the default settings. b) Click Next in the Sign Profile screen to accept the default settings. c) Click Finish to build the profile. The profile for Mozilla Firefox builds. d) Click File > Save. The profile is saved to the application hub on the filer. 8. Close the Mozilla Firefox profile to remove it from the Streaming Profiler. Do not close the Streaming Profiler. a) Verify that Mozilla Firefox is selected. b) Click File > Close to close the Mozilla Firefox profile. Do not close the Streaming Profiler.
76
77
2. Use the default user updates settings and add both Adobe Reader and Mozilla Firefox into the inter-isolation environment. Specify to make this profile one that links to other profiles. a) Click Next on the Enable User Updates screen. b) Click Browse on the Set up Inter-Isolation Communication screen, type \\dc\filer \Profiles into the Profile directory field and click OK. c) Select the Adobe Reader and Mozilla Firefox profiles and click Next. d) Select Create a profile that only links to other profiles (no install needed) and click Next. 3. Complete the Profiling wizard using the default settings and then save the profile to the \\dc\filer \Profiles folder. a) Click Next on the Sign Profile screen and then click Finish to build the new linked profile. b) Click File > Save, type \\dc\filer \profiles\ in the Profile directory field and click Save to save the profile to this location. 4. Shut down the Profler-2008R2 virtual machine.
78
79
3. Configure the application to be streamed if possible otherwise accessed from a server. Specify for it to be a streamed to server application. a) Verify that Application is selected as the type of application to publish and click Streamed if possible, otherwise accessed from a server. b) Select Streamed to Server in the Server application type drop-down menu and then click Next. 4. Use the \\dc\filer \Profiles\Mozilla Firefox with Adobe Reader profile and specify Mozilla Firefox as the application to launch from the profile. a) Click Browse, navigate to the \\dc\filer \Profiles\Mozilla Firefox with Adobe Reader\ folder and double-click the Mozilla Firefox with Adobe Reader.profile file. b) Select Mozilla Firefox in the Application to launch from the Citrix streaming application profile drop-down menu. c) Click Next. 5. Click Next to use the default settings for offline access. 6. Publish the application to the Firefox worker group. a) Click Add to open the Select Servers screen. b) Double-click Worker Groups. c) Double-click Firefox to select it as the servers on which to publish the application and click OK. d) Click Next to proceed to the Users screen. 7. Publish Mozilla Firefox to all domain users. a) Click Add to open the Select Users or Groups screen. b) Click Add List of Names and type Coolidge\Domain Users. c) Click Check Names and click OK, if the name validates successfully. If the names were not validated successfully, make sure they are spelled correctly and are in the Coolidge\AccountName format. d) Click OK to close the Add List of Names window and click OK. e) Click Next to proceed to the Shortcut presentation screen. 8. Complete the Publish Application wizard using the default settings. a) Click Next and then click Finish to complete the Publish Application wizard.
80
Use the following procedure to verify that Mozilla Firefox can stream successfully to a server and to a client device: 1. Log on to the XenAppServer-2 virtual machine as the Coolidge\CitrixAdmin user. 2. Cancel out of the Change Server screen. Log on to the http://webinterface.coolidge.net web site as the Coolidge\CitrixAdmin user. a) Click Cancel in the Change Server - Citrix online plug-in screen. b) Click Start > Internet Explorer, type http://webinterface.coolidge.net in the Address field and press Enter to access the XenApp Web site. c) Log on to the site using the Coolidge\CitrixAdmin credentials. 3. Launch Mozilla Firefox from the Web Interface and use the Connection Center to verify that the application is being streamed to the server. a) Click Mozilla Firefox in the Web Interface to launch Firefox. b) Select Don't import anything and click Next, if prompted with the import wizard. After a few moments, Mozilla Firefox appears. c) Right-click the Citrix online plug-in icon in the Windows notification area and click Connection Center. The Citrix Connection Center launches and loads the ICA connection status. d) Locate the Mozilla Firefox published instance in the Connection Center. Mozilla Firefox appears as an ICA connection in the Citrix Connection Center because it is being streamed to a server and then delivered to the client device through the ICA protocol. This means that the application was successfully profiled for Windows Server 2008 R2 and published as a streamed to a server application.
4. Close all open windows. 5. Configure the Citrix online plug-in to use http://webinterface.coolidge.net as the server address. a) In the Windows notification area, right-click the Citrix online plug-in icon and click Change Server. b) Type http://webinterface.coolidge.net in the Server address field and click Update. The Citrix online plug-in log on window appears. 6. Log on to the Citrix online plug-in as the Coolidge\CitrixAdmin user and launch Mozilla Firefox. a) Type your Coolidge\CitrixAdmin credentials and then click OK to log on to the XenApp Services site through the Citrix online plug-in.
81
b) Click the Citrix online plug-in icon in the notification tray and click Applications > Mozilla Firefox. After a few moments, Mozilla Firefox will appear. 7. Verify that the application is being streamed to the client device and then close all open windows. a) Right-click the Citrix online plug-in icon and notice that the Connection Center option does not appear. The Connection Center only appears when there are active ICA sessions. When an application is streamed to a client device, an ICA connection is not used. The lack of the Connection Center means that the application was successfully profiled for Windows 7 and that it was successfully published to stream to a client device. b) Close all open windows.
82
Module 9
84
85
2. Create a new Citrix user policy called "WAN Access for All Users" and add an ICA audio setting to set the audio quality to medium - optimized for speech. a) Click New, type WAN Access for All Users as the policy name and click Next. b) Click Audio under the ICA category and select Audio quality. c) Click Add and select Medium - optimized for speech from the Value drop-down menu. d) Click OK to add the setting. 3. Add a setting to set the Menu animations to prohibited. a) Click Desktop UI under the ICA category and select Menu animation. b) Click Add and select Prohibited to prohibit menu animations. c) Click OK to add the setting. 4. Add a setting to prohibit the viewing of window contents while dragging. a) Click Desktop UI under the ICA category and select View window contents while dragging. b) Click Add and click Prohibited to prohibit showing window contents when dragging. c) Click OK to add the setting. 5. Add a setting to set the TWAIN compression level setting to high. a) Click TWAIN devices under the ICA category and select TWAIN compression level. b) Click Add and select High from the Value drop-down menu. c) Click OK to add the setting. 6. Create a filter that applies this policy against all domain users. a) Click Next to continue to the filters screen. b) Select User, click Add and then click Add in the New Filter window. c) Verify that Allow is selected in the Mode drop-down menu and type Coolidge\Domain Users in the User name field. d) Click OK to save the new filter element. 7. Create a filter that denies the policy to IP addresses within the Coolidge internal network IP range of 192.168.1.1-192.168.255.255. a) Click OK to close the new user filter screen. b) Select Client IP Address and click Add. c) Click Add in the New Filter window. d) Select Deny from the Mode drop-down menu. e) Type 192.168.1.1-192.168.255.255 in the Client IP address field and click OK to save the new filter element. 8. Finish adding filters, enable the policy and then save it.
86
a) Click OK to close the New Filter screen. b) Click Next to finish adding filters. c) Verify that Enable this policy is selected and then click Save.
87
88
a) b) c) d)
Click New, type Restricting Local Data Transfer and click Next. Click ICA and select Client clipboard redirection. Click Add and then select Prohibited. Click OK to add the setting.
2. Add a setting to prohibit client drive redirection. a) Click File Redirection under the ICA category and select Client Drive Redirection. b) Click Add and then select Prohibited. c) Click OK to add the setting. 3. Create a filter that applies this policy against all domain users. a) Click Next to continue to the filters screen. b) Select User, click Add and then click Add in the New Filter window. c) Verify that Allow is selected in the Mode drop-down menu and type Coolidge\Domain Users in the User name field. d) Click OK to save the new filter element. 4. Create a filter that denies this policy to the Advisors group. a) Click Add in the New Filter window. b) Select Deny in the Mode drop-down menu, type Coolidge\Advisors in the User name field and click OK to save the new filter element. 5. Finish adding filters, enable the policy and then save it. a) Click OK to close the New Filter screen. b) Click Next to finish adding filters. c) Verify that Enable this policy is selected and then click Save.
89
90
3. Assign shadowing rights to the Coolidge\Domain Admins and Coolidge\HelpDesk groups. a) Select Users who can shadow other users and click Add. b) Click Add and type Coolidge\Domain Admins;Coolidge\HelpDesk in the Enter the object names to select field. c) Click Check Names to validate the names. If the names were not validated successfully, make sure they are spelled correctly and are in the Coolidge\AccountName format. d) Click OK and then click OK to add the users to the setting. 4. Add a setting to notify users of shadowing requests and then enable the policy. a) Select Notify user of pending shadow connections. b) Click Add, confirm that Enabled is selected and then click OK. 5. Create a filter that applies this policy against all domain users. a) Click Next to continue to the filters screen. b) Select User, click Add and then click Add in the New Filter window. c) Verify that Allow is selected in the Mode drop-down menu and type Coolidge\Domain Users in the User name field. d) Click OK to save the new filter element. 6. Create a filter that denies this policy to the Advisors group. a) Click Add in the New Filter window. b) Select Deny in the Mode drop-down menu, type Coolidge\Advisors in the User name field and click OK to save the new filter element. 7. Finish adding filters, enable the policy and then save it. a) Click OK to close the New Filter screen. b) Click Next to finish adding filters. c) Verify that Enable this policy is selected and then click Save.
91
92
3. Log on to the Web Interface as the Coolidge\TestUser user and launch the published Notepad application. a) Type the Coolidge\TestUser credentials and log on to the Web Interface site. b) Click Notepad to launch Notepad through the Web Interface. Within a few moments, Notepad launches. c) Select Do not ask me again for this site and click Yes on the USB/Other devices security warning, if it appears. 4. Attempt to save the Notepad document through client drive mapping to the XenAppServer-2 desktop. a) Click File > Save As, click Computer to see all of the connected drives. No network drives appear. Locally mapped drives would normally appear as network drives, so it is confirmed that this user is unable to save to the local XenAppServer-2 virtual machine due to the Restricting Local Data Transfer policy that was previously created. 5. Close Notepad, log off of the Web Interface and log off of the XenAppServer-2 virtual machine. a) Click Cancel to close the Save as screen and click File > Exit to close Notepad. b) Click Log off in the Web Interface to log off the TestUser from the Web Interface. c) Click Start > Logoff to log off of the XenAppServer-2 virtual machine.
93
3. Save the Notepad document as "Document Saving Test" to the XenAppServer-2 desktop. a) Click File > Save As and click Computer to see all of the connected drives. Network drives appear in the Other section that maps to the drives on the XenAppServer-2. Even though the policy forbids this, it was not applied to the Advisors group to which the TestAdvisor user is a member. b) Double-click Local Disk (C: on XenAppServer-2) c) Select Do not ask me again for this site and click Yes in the File Security warning. d) Navigate to the \Users\TestAdvisor\Desktop folder. e) Type Document Saving Test in the File name field and click Save. f) View the XenAppServer-2 desktop and verify that the Document Saving Test file has been saved successfully. Because the file saved successfully to the local desktop from a published application, the policy Advisors group was successfully omitted from the policy that restricts access to client drives. 4. Do not close Notepad or log off of the XenAppServer-2 virtual machine.
94
b) Click Yes in the Remote Control Request dialog. The Shadowing indicator box appears in the upper left corner indicating that the session is currently being shadowed. c) Switch to the XenAppServer-1 virtual machine. 4. Type "Hello World!" in the shadowed Notepad application and verify that the message is reflected on the XenAppServer-2 virtual machine. a) Type Hello World! within the shadowed Notepad session. b) Switch to the XenAppServer-2 and verify that the Hello World message is reflected in the Notepad application. 5. Stop the shadowing session and log off the session from the XenAppServer-2 virtual machine. a) Click Stop shadowing on the XenAppServer-2 virtual machine to end the shadowing of the session. b) Click Start > Logoff to log the TestAdvisor user off the XenAppServer-2 virtual machine. 6. Use the Delivery Services Console on the XenAppServer-1 virtual machine to reset all user sessions. a) Switch to the XenAppServer-1 virtual machine and bring the Delivery Services Console to the front. b) Right-click the TestAdvisor session and click Reset. Click Yes to confirm.
95
96
Module 10
98
99
2. Create a new Load Evaluator called [Test] Max 1 Instance Per Server that uses the application user load indicator to report a full load when the number of users running the Notepad application equals 1. a) Right-click Load Evaluators and select New > Add load evaluator. b) Type [Test] Max 1 Instance Per Server in the Name field. c) Select Application User Load and type 1 in the Report full load when the number of users for this application equals field. d) Click Browse, and select Notepad and click OK in the Select an Application window. e) Click OK in the Add Load Evaluator window.
100
101
c) Type Coolidge\San Francisco Employees in the Enter object names to select field, click Check Name and then click OK, if the name is validated successfully. If the names were not validated successfully, make sure they are spelled correctly and are in the Coolidge\AccountName format. 3. Configure the application connection preference based on worker group by adding the San Francisco worker group only. a) Click on the Worker Group Preference node. b) Select Configure application connection preference based on worker group and click Add. c) Double click San Francisco and click OK in the Select Servers window. d) Click OK to finish and save the new load balancing property.
102
103
b) Right-click San Francisco Failover to New York and select Modify properties. 3. Add the New York worker group to the Load Balancing Failover Group. a) Navigate to Load Balancing Policies > Worker Group Preference and click Add. b) Double click New York and click OK. c) Confirm that the New York worker group priority is set to 2 and then click OK.
104
2. Change the load evaluator back to Default. a) Select Default from the Load Evaluator drop-down menu. b) Click OK to save these changes.
105
106
Module 12
108
109
b) Navigate to https://merchandisingserver.coolidge.net. Be sure to use SSL/TLS to connect to Merchandising Server by specifying https in the address field. c) Select I agree to the Terms of Use and click Download Now to begin the Citrix Receiver download. d) Click Run to install Citrix Receiver. Wait while the installer installs and configures Citrix Receiver. This may take a few minutes. Citrix Receiver will automatically launch after it is successfully installed.
110
111
Merchandising Server Administration Console. The Merchandising Server Administration Console is displayed. c) Log on using the Coolidge\CitrixAdmin credentials. 2. Create a new rule called Windows 7. a) Click Rules in the Citrix Merchandising Server Administrator Console. b) Click Create and type Windows 7 in the Name field. 3. Set the rule to check for the Windows 7 operating system and then save the rule. a) Select Operating system from the Field drop-down menu. b) Verify that Is is set as the operator and select Windows 7 in the Value field. c) Click Save.
2. Add the Citrix Dazzle plug-in to the delivery. a) Click the 2 - Plug-ins tab and click Add.
112
b) Select Dazzle plug-in and click Add. 3. Use the following information to configure the Dazzle plug-in stores. Allow users to add stores and save passwords. Store name: The Coolidge Store Address: http://webinterface.coolidge.net/Citrix/PNAgent/config.xml Store description: The Coolidge Dazzle Store a) Click the 3 - Configuration tab. b) Type The Coolidge
Store;http://webinterface.coolidge.net/Citrix/PNAgent/config.xml;on;The Coolidge Dazzle Store in the Store configuration field.
Ensure that the address information is entered correctly as shown in the format Store name;Location;on;Store description. If it is not entered correctly, subsequent exercises may not work. c) Type A in the Allow users to add stores and the Allow users to save passwords fields to enable these features. 4. Add the Windows 7 rule to the delivery in order to only install these plug-ins on Windows 7 machines. a) Click the 4 - Rules tab. b) Click Add, select the Windows 7 rule listed and click Add. 5. Set the delivery to deliver now and then complete the delivery configuration process. a) Click the 5 - Schedule tab. b) Verify that Deliver Now is selected and then click Schedule.
113
114
a) Allow Citrix Receiver to automatically start and download new plug-ins. b) Click Continue when prompted.
115
116
Module 13
118
119
b) Right-click HP Color LaserJet 9500 PCL 6 (from ENDUSER) and click Properties. Make note of the printer driver listed in the Model field. c) Repeat the previous step to check the default printer drivers for the HP Color LaserJet 4600 PCL 6, HP Color and LaserJet CP2020 Series PCL 6. Verify that all of the listed printers are using their native print drivers except for the HP Color LaserJet 4600 PCL 6 that is using the Citrix Universal Print Driver. 3. Close Notepad and log off of the EndUserSimulator virtual machine. a) Click File > Exit to close the Notepad application. b) Click Start and then click the Arrow near Shut down. Click Log off to log off of the EndUserSimulator virtual machine.
120
121
2. Create a new policy called Do Not Allow HP 4600 that restricts driver mapping for the HP Color LaserJet 4600 Series PCL6 printer. Once created, continue to the filters screen. a) Click New, type Do Not Allow HP 4600 and click Next to continue to the settings screen. b) Select ICA > Printing > Drivers, click Printer driver mapping and compatibility and click Add. c) In the Add Setting window, click Add, type HP Color LaserJet 4600 PCL6 in the Driver Name field and select Do not create. d) Click OK in the Add driver mapping and Add Setting windows. 3. Create a filter that applies this policy to all domain users. a) Click Next to continue to the filters screen. b) Select User, click Add and then click Add in the New Filter window. c) Verify that Allow is selected in the Mode drop-down menu and type Coolidge\Domain Users in the User name field. d) Click OK to save the new filter element. 4. Finish adding filters, enable the policy and then save it. a) Click OK to close the New Filter screen. b) Click Next to finish adding filters. c) Verify that Enable this policy is selected and then click Save.
122
123
2. Create a filter that applies this policy against all domain users. a) Click Next to continue to the filters screen. b) Select User, click Add and then click Add in the New Filter window. c) Verify that Allow is selected in the Mode drop-down menu and type Coolidge\Domain Users in the User name field. d) Click OK to save the new filter element. 3. Create a filter that denies this policy to the Advisors group. a) Click Add in the New Filter window. b) Select Deny in the Mode drop-down menu, type Coolidge\Advisors in the User name field and click OK to save the new filter element. 4. Finish adding filters, enable the policy and then save it. a) Click OK to close the New Filter screen. b) Click Next to finish adding filters. c) Verify that Enable this policy is selected and then click Save.
124
125
a) Click ICA > Printing and select Session printers. Click Add to add the default session printers. b) Click Add in the Add settings window, type \\dc\ in the Printer UNC path field and then click Browse. c) Navigate to Entire Network > dc, click HP Color LaserJet 2800 Series PS and click OK. d) Repeat steps b and c to add the Lexmark x945e PS (MS) network printer. e) Click OK to complete the Session printers setting and close the Add settings screen. 3. Add the Universal Printing setting and set it to Use universal printing only. Continue to the filters screen. a) Click ICA > Printing > Universal Printing, select Universal printing and click Add to specify default settings. b) Select Use universal printing only from the value drop-down menu in the Add settings window and click OK. 4. Create a filter that applies this policy against all domain users. a) Click Next to continue to the filters screen. b) Select User, click Add and then click Add in the New Filter window. c) Verify that Allow is selected in the Mode drop-down menu and type Coolidge\Domain Users in the User name field. d) Click OK to save the new filter element. 5. Finish adding filters, enable the policy and then save it. a) Click OK to close the New Filter screen. b) Click Next to finish adding filters. c) Verify that Enable this policy is selected and then click Save.
126
127
3. Use the print screen to verify that only the Lexmark x945e PS (MS) and HP Color LaserJet 2800 Series PS session printers are available for printing and that they are both using their native printer drivers. a) Click File > Print, in Notepad. b) Verify that only the Lexmark x945e PS (MS) and HP Color LaserJet 2800 Series PS session printers are available for printing. c) Verify that both printers are using their native drivers. d) Close the Print dialog box and Notepad. 4. Use Internet Explorer to log on to the Web Interface as the TestAdvisor user and launch the published Notepad application. a) Launch Internet Explorer and navigate to the Web Interface server located at http://webinterface.coolidge.net. b) Log in to the Web Interface using as the Coolidge\TestAdvisor user. c) Click Notepad to launch the published Notepad application. d) Select Do not ask me again for this site and click Yes on the USB/Other devices security warning, if it appears. 5. Verify that all of the client printers are auto-created and using the Citrix Universal Printer Driver. Verify that the two session printers were also created and using their native print drivers. a) Click File > Print, in Notepad. b) Verify that all of the client printers are automatically created and using the Citrix Universal Printer Driver, except for the session printers which are using their native printer drivers. 6. Close all open windows. The HP 4600 printer was not auto-created according to the policy that was previously created. The CitrixAdmin account only had access to the session printers and did not have local client printers auto-created according to policy. Finally, the TestAdvisors account had access to session printers and had all of the client printers created using the Citrix universal print driver. This confirms that all policies are in place and working as intended.
128
Module 14
130
131
2. On the WebInterfaceServer virtual machine, launch the Citrix Web Interface Management console and create a new XenApp Web site. a) Click Start > All Programs > Citrix > Management Consoles > Citrix Web Interface Management to launch the Web Interface Management console. b) Click Create site. c) Select XenApp Web and click Next. 3. Set the path of the Web Interface site to be /Citrix/Secure and name the site Secure. Do not make this site the default IIS site. Continue through the creation of the XenApp Web site using the default values. a) Type /Citrix/Secure in the Path field and ensure that Secure is automatically populated into the Name field. Click Next to continue through the wizard. b) Verify that At Web Interface is specified on the Specify Point of Authentication screen and click Next. c) Click Next on the Confirm Settings for the New Site screen. The wizard creates a new XenApp Web site. d) Click Next to configure the XenApp Web site. 4. Specify Coolidge as the farm name and add both of the XenApp servers to the list of servers. a) Type Coolidge in the Farm name field. b) Click Add, type XenAppServer-1 and click OK. c) Click Add, type XenAppServer-2 and click OK. Click Next. 5. Use the default authentication method settings and restrict the Web Interface to only the Coolidge domain. a) Click Next on the Configure Authentication Methods screen. b) Select Restrict domains to the following and click Add. c) Type Coolidge in the Logon domain field and click OK. Click Next 6. Use the Full site appearance and configure dual mode as the published resource type. Complete the Web Interface site initial configuration. a) Select Full and click Next. b) Select Dual mode and click Next. c) Click Finish to complete the initial configuration wizard.
132
Use the following procedure to configure the Secure XenApp Web site: 1. Use the Citrix Web Interface Management console to edit the secure access settings of the Secure XenApp Web site. a) Click XenApp Web Sites and click the Secure site entry. b) Click Secure Access to open the Secure Access settings. 2. Edit the default access method and set it to Gateway Direct. Specify the Access Gateway's server details (ag.coolidge.net) then continue to the Secure Ticket Authority configuration. a) Select Default and and click Edit. b) Select Gateway Direct in the Access Method drop-down menu. c) Click OK to add the new Access route. d) Click Next to continue to the Access Gateway server details. e) Type ag.coolidge.net in the Address (FQDN) field and click Next to continue to the Secure Ticket Authority configuration screen. 3. Add new Secure Ticket Authority URLs for both XenApp servers. Leave all other settings as default and complete the new secure access settings. a) Click Add to add a new Secure Ticket Authority URL. Type http://xenappserver-1.coolidge.net/scripts/ctxsta.dll. Click OK. b) Click Add to add a new Secure Ticket Authority URL. Type http://xenappserver-2.coolidge.net/scripts/ctxsta.dll. Click OK. c) Click Finish to complete the new secure access settings.
133
b) Type xenappserver-1.coolidge.net in the Server running the STA field and click Add to add the Security Ticket Authority settings. c) Click Initialize when the Service Interruption warning appears and then click OK to acknowledge that the STA server is verified. d) Repeat the previous two steps with the XenAppServer-2 server. 3. Use the Access Policy Manager to set the Gateway Portal to redirect to the Web Interface server web site. a) Click the Access Policy Manager tab, right-click Default under User Groups and click Properties. b) Click the Gateway Portal tab to access the portal settings and select Redirect to Web Interface. c) Type /Citrix/Secure in the Path field and webinterface.coolidge.net in the Web server field. d) Click OK to close the properties window. 4. Turn off logon page authentication by the Access Gateway in the Global Cluster Policies and then minimize the Access Gateway Administration Tool. a) Click the Global Cluster Policies tab and deselect Enable logon page authentication. b) Click Submit to create the changes and click OK when complete. c) Minimize the Access Gateway Administration tool.
134
135
b) Use Internet Explorer to navigate to https://ag.coolidge.net/, making sure to specify https. The Access Gateway receives the secure connection and forwards the request to the /Citrix/Secure Web Interface site on the back end.
2. Log on to the Access Gateway as the Coolidge\CitrixAdmin user and launch the published Notepad application. a) Log on to to the Access Gateway as the Coolidge\CitrixAdmin user. b) Click Notepad to launch the published application. Wait a few moments as the application is launched. c) Select Do not ask me again for this site and click Yes on the USB/Other devices security warning, if it appears. 3. Use the Connection Center to verify that the Notepad application is secured using 128-bit SSL. When complete, close all open windows. a) Right-click the Citrix online plug-in icon and click Connection Center. b) Click XenAppServer-1 and click Properties to view the connection properties of the applications being delivered by XenAppServer-1. c) Verify that Basic. 128-bit SSL/TLS is listed as the encryption level and click OK. d) Close all open windows. The application is showing as using 128-bit TLS encryption when using Citrix Access Gateway to access applications. This allows the Coolidge employees to work remotely while protecting customer and company data.
136
Module 15
Monitoring Exercises
138
139
2. View the License Usage Trending data graphically and then view it as a grid. a) Click on the Track Usage tab and click License Usage Trending. b) Deselect Select All, select XenApp and click Go. View the graphical results of this request. c) Click the View in Grid icon. View the results of this request as a list. 3. View the License Usage Summary data graphically and then view it as a grid. a) Click License Usage Summary. b) Deselect Select All, select XenApp and click Go. View the graphical results of this request. c) Click the View in Grid icon. View the results of this request as a chart. 4. Make note of the many different ways that the license data is viewable. 5. Close all open windows.
140
141
851 West Cypress Creek Road Fort Lauderdale Florida 33309 USA | (954) 267 3000 | www.citrix.com Rheinweg 9 8200 Schaffhausen Switzerland | +41 (0) 52 63577 00 | www.citrix.com
Copyright 2010 Citrix Systems, Inc. All rights reserved.
142