SUM303 Implementing and Troubleshooting the Citrix Receiver for Windows - PowerPoint PPT Presentation

Loading...

PPT – SUM303 Implementing and Troubleshooting the Citrix Receiver for Windows PowerPoint presentation | free to download - id: 6a1cde-NGE2M



Loading


The Adobe Flash plugin is needed to view this content

Get the plugin now

View by Category
About This Presentation
Title:

SUM303 Implementing and Troubleshooting the Citrix Receiver for Windows

Description:

SUM303 Implementing and Troubleshooting the Citrix Receiver for Windows Christian Suarez Senior Escalation Engineer May 8, 2012 – PowerPoint PPT presentation

Number of Views:81
Avg rating:3.0/5.0
Slides: 65
Provided by: Christian
Learn more at: http://tutos.eu
Category:

less

Write a Comment
User Comments (0)
Transcript and Presenter's Notes

Title: SUM303 Implementing and Troubleshooting the Citrix Receiver for Windows


1
SUM303 Implementing and Troubleshooting the
Citrix Receiver for Windows
  • Christian Suarez
  • Senior Escalation Engineer
  • May 8, 2012

2
Tweet about this session with hashtag SUM303 and
CitrixSummit
3
Agenda
  • Overview of Citrix Receiver for Windows
  • Implementing the Citrix Receiver with
    Merchandising Server
  • 1- Setup Merchandising Server
  • 2- Prepare and Download Plug-ins
  • 3- Deploy Citrix Receiver
  • 4- Deliver and Maintain Plug-ins
  • Troubleshooting the Citrix Receiver
  • Citrix Receiver for Mac
  • Questions?

4
Overview of Citrix Receiver for Windows
5
Citrix Receiver
desktops
apps
data
SaaS
6
Consistent User Experience
7
Components
Component
Definition
Citrix Receiver
and Receiver Updater
Software that manages and updates
for Windows and Mac
Citrix Plug
-ins on user desktops
Virtual appliance responsible for managing
Citrix Merchandising Server
software deliveries from IT
Merchandising Server
Web console used for configuring and
Administrator Console
managing software deliveries
Service that uploads software plug-ins and
Citrix Update Service
MetaData
on Merchandising Servers
Individual
Citrix clients
or agents managed
Citrix Plug-ins
by Citrix Receiver
8
Architecture
Active Directory
Administrator Console
Merchandising Server
1011011010 SSL 1011011010
Citrix Receiver
LDAP 1011010 LDAP 10110101
1011011010 SSL 1011011010 SSL 1011011010 SSL
1011011010 SSL 1011011010 SSL 101101110 SSL 1011
101101110 SSL 1011 SSL 1011 101101110 101
101 HTTP 10110 HTTP 10110 HTTP 19
Data Center
Update Service
1011011010 SSL 1011011010 SSL 101
Citrix Receiver
External End User
Internal End User
9
Merchandising Server Requirements
Browser for Admin
Directory
Virtual Server
Hardware
Console
Services
Minimum
XenServer
5.x
8 GB
disk
space
Active Directory
Internet Explorer 7,8, or 9
1 GB RAM
2003 SP2 or
VMWare
Recommended

Firefox 4.x or 5
later
vSphere
4.0, ESX 3.5,
2-8 GB RAM
VMWare
Server 2.x
2
CPUs
10
Implementing the Citrix Receiver for Windows
11
Step 1 Building Merchandising Server
  • Hostname, IP Address, Gateway and DNS
  • FQDN to match certificates
  • Use Static IP

Active Directory
Administrator Console
Merchandising Server
C1trix321
1011011010 SSL 1011011010
LDAP 1011010 LDAP 10110101
Data Center
1011011010 SSL 1011011010 SSL 1011011010 SSL
1011011010 SSL 1011011010 SSL 101101110 SSL 1011
101101110 SSL 1011 SSL 1011 101101110 101
10110 HTTP 10110 HTTP 10110 HT
Update Service
101 HTTP 10110 HTTP 10110 HTTP 10110
Citrix.com
12
Configuring Merchandising Server
13
Merchandising Server Features
  • Anonymous Deliveries
  • Using System Token enables Receiver to configure
    plug-ins without users needing to authenticate
  • Enhanced Roaming
  • Beacon websites improves roaming and avoids
    interrupting users with unneccesary
    authentication messages
  • Improved reporting when syncing Active Directory

14
User Authentication with User Tokens
  • Users must authenticate with AD before
    downloading the Receiver
  • User Tokens are created and kept in the registry
    on the client
  • Subsequent authentication request will be
    suppressed
  • Token expiration is defined in the Administrator
    Console (6 months default)

15
Anonymous Deliveries with System Tokens
  • Allows Citrix Receiver install with a system
    token without users needing to authenticate
  • Kept in the registry on the client
  • System Tokens are manually created from
    Merchandising Server Admin Console
  • Reporting and delivers based on
  • Machine Name, IP Address, or Domain membership
  • System Tokens never expire

16
Enhanced Roaming with Beacons
  • Beacons allow the Receiver to determine whether
    the user is inside or outside the corporate
    firewall
  • When the user must go through the VPN, Receiver
    prompts with the Connect to Delivery Services
    logon dialog
  • As users move from place to place, Receiver and
    secure access plug-in will
  • smoothly re-establish tunnels if outside the
    firewall
  • not establish tunnels while inside the firewall.
  • Avoids interrupting the user with unnecessary VPN
    authentication pop-ups

17
Enhanced Roaming Beacon Configuration
18
Step 2 Downloading Plugins to Merchandising
Server
/usr/local/apache-tomcat-6.0.16/webapps/appliance/
WEB-INF/classes/appliance.properties
Administrator Console
Merchandising Server
1011011010 SSL 1011011010
Data Center
1011011010 SSL 1011011010 SSL 1011011010 SSL
1011011010 SSL 1011011010 SSL 101101110 SSL 1011
101101110 SSL 1011 SSL 1011 101101110 101
10110 HTTP 10110 HTTP 10110 HT
Update Service
101 HTTP 10110 HTTP 10110 HTTP 10110
https//pluginupdate.citrix.com/updateservice/serv
ices/updateService
Citrix.com
19
Citrix Plugins for Windows
  • Acceleration
  • EasyCall
  • Profile Management
  • XenVault
  • Online
  • Self-service
  • Secure Access
  • Offline
  • Single Sign-on
  • Service Monitoring

20
NEW! Citrix ShareFile Plugins for Windows
  • ShareFile Desktop Widget
  • ShareFile Outlook Plug-in
  • Citrix ShareFile Plug-in for Receiver

21
Step 3 Delivering Citrix Receiver Updater
  • Updater for Mac
  • Mac OS 10.5, 10.6, 10.7
  • Updated Java
  • Elevated Privileges

Citrix Receiver for Mac
Citrix Receiver
1011011010 SSL 1011011010 SSL 1011011
1011011010 SSL 1011011010 SSL 1011011010 SSL
1011011010 SSL 1011011010 SSL 101101110 SSL 1011
101101110 SSL 1011 SSL 1011 101101110 101
Data Center
1011011010 SSL 1011011010 SSL 1011011
  • Updater for Windows
  • .NET 2.0 or later
  • Internet Explorer 7 or 8
  • Firefox 2.x or 5.x
  • Administrator Privileges

Citrix Receiver for Windows
External End Users
Internal End Users
22
Receiver for Windows Installation Packages
  • Citrix Receiver Standard - CitrixReceiver.exe
  • User experience is consistent across all Receiver
    platforms
  • Full set of features like Self-Service with
    one-click configuration
  • Full Citrix CloudGateway interoperability
  • Automatic install from Web Interface or Receiver
    for Web
  • Can be installed with Electronic Software
    Distribution (ESD) tools
  • Ensure free space in users Temp directory

23
Receiver for Windows Installation Packages
  • Citrix Receiver Enterprise - CitrixReceiverEnterpr
    ise.exe
  • Supports legacy XenApp Services, formerly PNA
    Services
  • XenApp Services are limited to LAN connections
  • Required for Smart Card Authentication
  • Requires Administrator to install
  • Can be installed with Electronic Software
    Distribution (ESD) tools

24
Ways To Deploy the Receiver for Windows
Delivery Method
User Action
Required
Where to apply
User authentication required
to
Managed or Unmanaged
Merchandising Server Download
complete installation
Computers dedicated to users
User authentication required
to
Managed Computers
Electronic Software Distribution
(ESD)
complete installation
dedicated to users
Anonymous Delivery
with n
o user
Managed Computers with
ESD with
System Token
authentication for install or updates
sharing
users
User authentication required
to
External
Download Page via Packager
Remote
Users
complete installation
Remote Users on computers
External
Download Page via Packager
Anonymous Delivery with no user
identifiable by IP, Machine
and System Token
authentication for install or updates
Name or Domain Membership
User authentication required after
Unmanaged Computers with
Manually
by user
Merchandising Server added
tech savvy users
25
Changing the Merchandising Server address on
Windows Client
26
Installing the Receiver for Windows
  • From Receiver for Web and Web Interface
  • Receiver for Web
  • Automatically determines if Receiver in installed
  • Receiver installation files are stored on the
    server with the default installation
  • Option to offer an upgrade for users with older
    clients
  • Web Interface
  • WI installation prompts for media to store
    Receiver installation files on \Clients folder
  • Options for Client Detection and Deployment in
    Web Interface Console
  • Rename the CitrixReceiver.exe to
    CitrixOnlinePluginWeb.exe and place in directory
  • Modify WebInterface.conf file for ClientIcaWin32

27
Receiver for Windows Installation Parameters
  • CitrixReceiver.exe Options and
    CitrixReceiverEnterprise.exe Options
  • /noreboot
  • /silent
  • /includeSSON
  • PROPERTYValue
  • INSTALLDIR, CLIENT_NAME, ENABLE_DYNAMIC_CLIENT_NAM
    E,
  • ADDLOCAL, ALLOWADDSTORE, ALLOWSAVEPWD,
    ENABLE_SSON,
  • ENABLE_KERBEROS, DEFAULT_NDSCONTEXT,
    LEGACYFTAICONS,
  • SERVER_LOCATION, STARTMENUDIR, STOREx

28
Citrix Receiver Packager for Windows
  • Provides an installer with Receiver that
    optionally includes a Secure Access plug-in and a
    system token
  • Packager and instructions found on the Citrix KB
    at CTX121355
  • Three main components of the Packager
  • Secure Access Plug-in
  • Citrix Receiver Updater
  • Self Extracting Package
  • ReceiverInstaller.exe by default

AGCRPackager.exe
29
Creating an External Receiver Download Page
  • Create sample page from support files from
    Citrix.com
  • animation.swf
  • ieTransparency.css
  • index.html
  • main.css
  • resources.js
  • img (images folder)
  • Edit resources.js to define Merchandising Server,
    Server URL and installer file
  • Web Page with ReceiverInstaller.exe download link
  • Send URL to clients for remote access

30
Deploying Access Gateway Connections
  • Secure Access Plug-in 9.x is for Access Gateway
    Enterprise (AGEE)
  • Secure Access Plug-in 4.6 for AG Standard and
    Advanced
  • Enhance Roaming Integration
  • The Access Gateway will continue to update the
    Secure Access plugins,
  • NOT the Citrix Receiver
  • Users can select nearest location when traveling
  • Use Merchandising Server to choose fields to
    display to users

31
Upgrading the Citrix Receiver for Windows
  • Upgrades only supported from Citrix Online
    Plug-in 11.2 and later
  • Removed previous version of the Online Plug-in
    prior to upgrading
  • Uninstall Online Plug-in 11.0
  • From Add/Remove Programs
  • Installer package with Remove option only if
    installed using a Windows Installer package
  • Uninstall Citrix Receiver 13.x
  • Use the Citrix Receiver Updater
  • Use the /uninstall option with the Citrix
    Receiver executables
  • From Add/Remove Programs (only if Receiver
    Updater was not used to install)

32
Upgrading the Citrix Receiver for Windows
  • Citrix Receiver Standard CitrixReceiver.exe

Installed
Result
No previous Citrix Online Plug-in
Citrix Receiver Standard
With Web access only
Citrix Online Web Plug-in
Citrix Online Full Plug-in with PNA and SSO
No upgrade path
Citrix Receiver Enterprise
33
Upgrading the Citrix Receiver for Windows
  • Citrix Receiver Enterprise CitrixReceiverEnterpr
    ise.exe

Installed
Result
No previous Citrix Online Plug-in
Citrix Receiver Enterprise with web access
Citrix Online Web Plug-in
Citrix Online Full Plug-in with PNA and SSO
Citrix Receiver Enterprise configured for PNA
and SSO
Citrix Receiver Enterprise
34
Step 4 Delivering and Maintaining Citrix Plugins
Merchandising Server
1011011010 SSL 1011011010 SSL 1011011
Data Center
1011011010 SSL 1011011010 SSL 1011011010 SSL
1011011010 SSL 1011011010 SSL 101101110 SSL 1011
101101110 SSL 1011 SSL 1011 101101110 101
1011011010 SSL 1011011010 SSL 1011011
35
Creating Delivery Rules for Target Desktops
Rule Type Used For Delivering plug-ins and/or configurations...
User Domain based upon user-domain membership
Computer Domain based upon a machine-domain membership
Operating System based upon operating system type
LDAP Users or Groups to specific users or groups no matter which computer they are on
Machine Name many people share the same machine
IP Address Range based upon a computer's IP address
Default Delivery where ever other more specific rules do not apply
36
Modifying Plug-in Metadata
  • Metadata contains the properties and commands to
    ensure proper installation
  • It includes user connection information per
    Citrix Plug-in
  • Comes pre-configured but can be modified
  • Configure customize user connection information
  • Sample metadata files are provided on the Citrix
    Community Receiver Metadata Web page

37
Creating a Targeted Delivery
  • Must have Delivery Rules created
  • At least one plugin downloaded to Merchandising
    Server
  • Provide Delivery name, description, and polling
    frequency
  • Select from available plugin and metadata
  • Configuration of the Citrix Receiver
  • Apply Delivery Rule
  • Schedule Delivery

1011011010 SSL 1011011010 SSL 1011011
1011011010 SSL 1011011010 SSL 1011011
38
Troubleshooting the Citrix Receiver and
Merchandising Server
39
System Log (appliance.log)
  • Server log captures Merchandising Server and
    user-specific events
  • Enable System Logging for more details
  • Enable User Logging to add user messages to the
    server log
  • Located at
  • /usr/local/apache-tomcat-6.0.16/logs/appliance.log

40
Detailed Active Directory Error Messages
  • From the Merchandising Server Administrators
    Console
  • Invalid AD credentials
  • Invalid value for Base DN
  • AD doesn't support simple authentication
  • Not permitted to logon at this time
  • Not permitted to logon from this workstation
  • User password expired
  • User account disabled
  • Enhanced Messaging in System log

41
Client Logs (Receiver_.log and ErrorLog.xml)
  • Detailed Client Log key for any client Receiver
    issue
  • To Enable Client Logging, add verbose to the
    Target line, on the Receiver.exe
  • C\Program Files (x86)\Citrix\Receiver\Receiver.e
    xe
  • Logs located in user profile at
  • \Local Settings\Application Data\Citrix\Receiver\R
    eceiver_.log
  • ErrorLog.xml can be gathered from MS Admin
    console and view within console

42
CDF Tracing still available for connection issues
  • For connections issues with Receiver, CDF Traces
    still works
  • CDF Control can be found at CTX111961
  • Creates CDFLogFile.etl which requires Citrix
    symbols to be parsed into readable messages
  • Send to Citrix Technical Support for Detailed
    Analysis

43
Troubleshooting Citrix Receiver installation
  • ISSUE Receiver installation is not proceeding
  • Verify .NET 2.0 Framework is installed
  • Verify that the user has administrative
    permissions
  • Ensure the user credentials are entered properly,
    i.e. DOMAIN\user
  • Check the supported browsers for the download
    page
  • IE7, IE8, Firefox 3, Safari

44
Troubleshooting Citrix Receiver updates
  • ISSUE Receiver shows Plug-in updates are
    disabled
  • Occurs if the client has the Terminal Services
    role or a Microsoft Server Edition installed
  • Modify the Citrix Receiver shortcut or executable
    to run with
  • -allowadminTSupdates
  • Close and Reopen the Receiver
  • More information at CTX129051

45
Troubleshooting Receiver Plug-in updates
  • ISSUE User does not receive any Plug-ins
  • Check that the client is pointing to the correct
    Merchandising Server
  • From users Control Panel gt System and Security
  • Verify that client OS is supported for the
    specific plug-in
  • Verify that the rule defining the recipients
    matches the client's parameters
  • Check the evaluation
  • order of the deliveries

46
Troubleshooting Receiver Plug-in updates
  • ISSUE User does not receive any Plug-ins
  • Delete the client's token in the local registry
    and restart the client
  • HKLM\Software\Citrix\Receiver\Delivery\Filter
  • Forces user to re-authenticate to the
    Merchandising Server
  • Enable verbose logging from command line (CMD)
  • XP C\Program Files\Citrix\Receiver\Receiver.ex
    e verbose
  • Win7 64bit/Vista 64bit C\Program
    Files(x86)\Citrix\Receiver\Receiver.exe verbose
  • On the Receiver client, select Check for
    Updates
  • Makes an immediate connection to the
    Merchandising Server
  • Collect Receiver_.log from client
  • USERPROFILE\Local Settings\Application
    Data\Citrix\Receiver\receiver_.log

47
Troubleshooting Merchandising Server installation
  • ISSUE Network Is Unreachable
  • There is a Diagnostics menu on the Merchandising
    Server Console
  • With duplicate IP addresses, a ping will show
    Network is unreachable
  • XenServer will show unknown IP address

48
Troubleshooting Merchandising Server Web Server
  • ISSUE HTTPD Service Failure when using a Space
    in Hostname
  • The httpd fails to start and admins cannot open
    the Console
  • The Apache web service cannot handle server
    hostname with a space
  • i.e. Merch Server1
  • Edit the hostname
  • Restart the httpd Service
  • sudo /etc/init.d/httpd restart

49
Troubleshooting Merchandising Server
  • ISSUE User account are not enumerating in the
    Administrator Console
  • Merchandising Server downloads user/group list
    from Active Directory Server using LDAP port 389
  • For indexed database, port 3268 significantly
    speeds up AD queries
  • Stored in local PostgreSQL database
  • Select Save and Sync for immediate updates,
    i.e. when new AD users are created
  • Base DN lists the OU where user accounts are
    located
  • Multiple OUs are not supported
  • Merchandising Server can only point to one AD
    Server at a time
  • More information at CTX131998 and CTX121957

50
Troubleshooting Merchandising Server
  • ISSUE "No results found when performing AD
    search
  • Verify the Base DN and ensure it is correctly
    formattedOUNewYork,OUAmericas,DCcompany,DCne
    t
  • Ensure object can be enumerated from the Base DN
  • Note Only the first/last name fields are
    searchable from within Merchandising Server (not
    username)
  • Verify that the complete domain path is included
    for all regions

51
Troubleshooting Merchandising Server
  • ISSUE The corporate AD information you have
    provided is invalid
  • Verify the Administrator has correct Domain
    permissions
  • From the VMWare ESX Console, ping the
    Merchandising Server
  • Verify the Bind DN
  • Run Wireshark from Domain Controller
  • Filter by the Merchandising Server, i.e.
    ipaddrltMerchServerIPgt
  • Merchandising Server 1.2 had an issue with
  • LDAP server signing requirements on secure
    connection in AD on Windows 2003 Server or
    Windows 2008 Server

52
Troubleshooting Merchandising Server
  • ISSUE Merchandising Server takes four to six
    hours to reboot with VMWare
  • Ensure updated virtual machine tools
  • Upgrade hardware NICA drivers to VMXNet3
  • Reduce multiple Virtual CPUs to one
  • Ensure proper certificates on the Merchandising
    Server
  • Verify Merchandising Server is not a template or
    snapshot
  • More information at CTX128179

53
Troubleshooting Merchandising Server Console
  • ISSUE Administrator and auditors cannot logon to
    Administrators Console
  • And when root is used to re-add permissions, a
    domain user search returns nothing
  • Ensure logon to console with domain\user format
  • Occurs when the time zone of the VM is changed
    from UTC
  • Return the time zone to UTC
  • OR
  • Remove the token from the client computer
    registry or by uninstalling and reinstalling the
    Citrix Receiver
  • More information at CTX127471

54
Troubleshooting Downloading Citrix Plug-ins
  • ISSUE Get New page in the Administrator Console
    is blank
  • Verify that the Merchandising Server has Internet
    access and can access Citrix.com
  • Update Service URL is located in the
    appliance.properties file on the Merchandising
    Server. It should not be changed
  • URL may be required to get aroundcustomer
    firewall rules

55
Troubleshooting Deploying Plug-in updates
  • ISSUE Windows7 and Vista updates fail with
    ERROR Unable to check for updates
  • Ensure the Merchandising Server is configured
    with FQDN in the Hostname settings of the Network
    Configuration
  • Versions of Merchandising Server prior to 2.2 did
    not have this requirement
  • More information at CTX131572

56
Troubleshooting Single Sign-on with Receiver
  • ISSUE Domain pass-through for Citrix Receiver is
    not working
  • Verify Citrix Receiver Standard is installed with
    the /includeSSON parameter
  • Check single sign-on process SSONSvr.exe
  • Verify the Web Interface Web Page or StoreFront
    page are correctly configured
  • For upgrades from Online plugin 12.1, completely
    uninstall per CTX130813
  • With Online Plugin 12.x, check WI issue from
    CTX124871 and CTX113004

57
Receiver for Mac Parity
58
Citrix Receiver for Mac Parity
  • Includes Online Plug-in and Self Service Plug-in
  • Includes Access Gateway / Secure Access Plug-in
    integration
  • No support for Enhanced Roaming with Beacons
  • For Lion users, add string MacOS10.7 to platform
    list of plug-in metadata file
  • No ESD installation, must be downloaded from
    Merchandising Server
  • Change the Merchandising Server by changing
    ServerAddress field in
  • Macintosh HD/Library/Application
    Support/Citrix/Receiver.cfg

59
Receiver Updater Packager for Mac
  • Creates a bundled installer of Receiver
  • Enables Receiver delivery to users inside and
    outside corporate firewall
  • Must have plugins installed and configured
  • Select and add System Token or
  • choose prompt users for User Tokens
  • Select Packages
  • Receiver.dmg
  • Citrix_Access_Gateway.dmg

Citrix Receiver Packager.dmg
60
Citrix Plugins for Mac
  • Secure Access
  • Online
  • Communications / Easy Call

61
References
  • Citrix eDocs
  • Receiver for Windows
  • http//support.citrix.com/proddocs/topic/receiver/
    rec-receiver-for-win.html
  • Merchandising Server
  • http//support.citrix.com/proddocs/topic/cloudgate
    way/receivers-merchandising-wrapper.html
  • Receiver for Mac
  • http//support.citrix.com/proddocs/topic/receiver/
    receivers-mac-wrapper.html
  • CitrixReceiver.com
  • Citrix Knowledge Center - http//support.citrix.co
    m/
  • CTX121355, CTX111961, CTX129051, CTX124971,
    CTX131998, CTX121957, CTX128179, CTX127471,
    CTX131572, CTX130813, CTX124871, CTX113004

62
Tools as a Service
http//Taas.Citrix.com/Beta
2
3
1
Data Collection
Auto analysis health check
Recommendations tailored to YOU
Quickly collect and upload your data
63
Four Steps to Implement
Troubleshooting
Citrix Receiver for Windows
Merchandising Server
appliance.log
Receiver_.log
ErrorLog.xml
Data Center
1011011010 SSL 1011011010 SSL 1011011010 SSL
1011011010 SSL 1011011010 SSL 101101110 SSL 1011
101101110 SSL 1011 SSL 1011 101101110 101
101 HTTP 10110 HTTP 10110 HTTP
1011011010 SSL 1011011010 SSL 101
External End User
Internal End User
64
(No Transcript)
About PowerShow.com