• View Communities
    • Citrix Communities
      Visit the Citrix Communities to get and share technical information and best practices about desktop delivery, datacenter, networking and cloud computing solutions.
    • Citrix Blogs
      Learn the latest from the Citrix employees who are building the future of virtual computing.
    • Citrix Developer Network
      The place for unfiltered straight talk on Citrix products. Find related blogs, best practices, code downloads, APIs and more.
    • Citrix Ready Community Verified
      Does it work with Citrix? Application compatibility questions are a thing of the past with the new Citrix Community Verified site.
  •  Sign In
Citrix Developer Network

Administrator Tips and Tricks

Added by Gus Pinto , last edited by Chris Fleck on Aug 12, 2010  (view change)


Administrator Tips and Tricks

How To: Configure AGEE for use with iPhone/iPad/Android Devices

Using Chrome browser to troubleshoot Mobile Receiver on AGEE -
http://goview.com/?id=a591c516-d113-4e22-b663-9439a61ddfcb

How To: Configure Dual Authentication on AGEE for use with iPhone/iPad

Companion CTX Article - http://support.citrix.com/article/CTX125364

How To: Configure Intermediate Certificates with AGEE and iPhone

How To: Install a Private Root Certificate on your iPhone/iPad

How To: Create a Logon Point in Access Gateway Advanced Edition for iPhone/iPad/Android Devices

How To: Configure AGSE with RSA for Citrix Receiver for iPhone/iPad

Companion article - http://support.citrix.com/article/CTX125192

Administrator guides:
Citrix Receiver, XenApp, XenDesktop, Access Gateway EE - for mobile devices
Citrix Receiver, XenApp, Access Gateway EE - for mobile devices - using LDAP authentication
Citrix Receiver for iPhone
Doc Finder

Using Previous Versions of Citrix Receiver

If previous versions of Citrix Receiver are installed, Citrix recommends you uninstall these versions and updating to the current version.

SSL Certificates

To connect to a XenApp farm, users' mobile devices must have a Configuration Profile installed that includes the certificate for the Web server hosting the farm's Program Neighborhood Services site or XenApp Services site. You can obtain this certificate from your browser's certificate store.

Note: Citrix Receiver does not support wildcard certificates.

For information about creating Configuration Profiles and distributing them to users, visit the Apple Web site.

SSL VPN Connectivity

Citrix Receiver supports connecting to a XenApp server farm through the following products or components:

  • Citrix Access Gateway Standard Edition
  • Citrix Access Gateway Enterprise Edition
  • Citrix Access Gateway Advanced Edition
  • Citrix Secure Gateway when used as a proxy in normal mode

Connectivity through Citrix Secure Gateway when used as a proxy in relay mode is not supported.

Authentication Methods

Citrix Receiver supports authentication through Access Gateway using the following methods:

  • Domain authentication
  • RSA SecurID
  • Domain authentication paired with RSA SecurID

For more information about using these authentication methods with Access Gateway, see the Access Gateway Standard Edition Administrator's Guide.

Starting Citrix Receiver for the First Time

When users start Citrix Receiver for the first time, they are required to enter information about the XenApp farm hosting the resources they want to access. To ensure users can connect successfully to the XenApp farm, be sure to distribute the following information:

  • The location of the Program Neighborhood Services or XenApp Services site hosting resources; for example:
    http://servername/Citrix/PNAgent/config.xml
  • Domain name
  • The product edition and authentication method, if using Access Gateway

Users can turn on the save password feature if the administrator allows password saving. option so this information will be remembered the next time they start Citrix Receiver.

Troubleshooting Citrix Receiver for mobile devices

Disconnected Sessions

Users can disconnect from a Citrix Receiver session in the following ways:

  • Exiting Receiver
  • Tapping the Home or Back To Apps button in Citrix Receiver or exiting the published app.

If this happens, the session is left in a disconnected state. Although the user can reconnect at a later time, you can ensure disconnected sessions are rendered inactive after a specific interval. To do this, configure a session timeout for the ICA-tcp connection in Terminal Services Configuration. For more information about configuring Terminal Services, refer to the Microsoft Windows Server product documentation.

Known Issues

Using non-ASCII characters with published applications

When using Citrix Receiver to access a published application, the following limitations exist:

  • If the application is published with a name containing non-ASCII characters, the application does not open.
  • Entering non-ASCII characters, such as Korean characters, in published applications does not work as expected.
    To mitigate these limitations, ensure that:
  • Your farm consists of one of the following configurations:
    • Citrix Presentation Server 4.5 with a Program Neighborhood Services site configured on a non-English operating system.
    • Citrix XenApp 5.0 or 6.0 with a XenApp Services site configured on a non-English operating system.
  • The Microsoft IME toolbar is not minimized in the published application.
    To enter non-ASCII characters in a published application using the iPhone's QWERTY/Pinyin keyboard, perform the following steps:
    1.Using Citrix Receiver, connect to the published application.
    2.Tap the Microsoft IME toolbar and select the language you want to use; for example, JP.
    3.Select the language mode in which to enter non-ASCII characters; for example, Hiragana mode.


Enter tags to add to this page:
Please wait 
Looking for a tag? Just start typing.

Comments (3)

 

  1. Oct 11, 2010

    Dee Eldredge says:

    This will also work with SafeWord two factor authentication using RADIUS. In th...

    This will also work with SafeWord two factor authentication using RADIUS. In the above configuration just
    1) Point the RADIUS server to either the SafeWord RADIUS server or the SafeWord IAS agent
    2) Enter a clients file entry for CAG in the SafeWord installation
    3) Choose "Domain + RSA SecurID" in the configuration for the phone.

  2. Dec 28, 2010

    Anonymous says:

    Did you REALLY have to make this a video? Video dialog can't be searched from Go...

    Did you REALLY have to make this a video? Video dialog can't be searched from Google.  How about some printed instructions? KTHXBYE

  3. Jan 25, 2011

    Anonymous says:

    Not being able to actually LOGOFF your session on the iPad is a deal breaker- it...

    Not being able to actually LOGOFF your session on the iPad is a deal breaker- it makes the Citrix Receiver useless to us.

    Even if you logoff from the citrix server, you can still click on the published app on the iPad and it will take you right back in without having to login with credentials. This is a huge and unacceptable security issue, as iPads are often used in public places.

Related Links
XenApp Product Editions
XenApp Technical Videos
Citrix XenApp and Microsoft Windows Terminal Services
Brandon Shell Blog on PowerShell and Citrix