[create tags from csv file]

$Tags = Import-Csv -Path c:\temp\Tags.csv
$Domain = "DOMAIN" #NETBIOS
$Machines = @("VDA1","VDA2")

Add-PSSnapin -Name Citrix*

foreach ($Tag in $Tags) {
    New-BrokerTag $Tag.Name -Verbose
    foreach ($Machine in $Machines) {
        $MachineUID = (Get-Brokermachine -MachineName "$Domain\$Machine").Uid
        Add-BrokerTag -Name $Tag.Name -Machine $MachineUID -Verbose
    }
}

 

CSV Import file like this

Quote

Name
Bob
Burt
Harry

 

add error handling as required

[Citrix Wem Network Drive Mapped]

wem isn't doing anything complex here - the logs indicate a connectivity issue. 

 

Test with GPP, if it works with that, then i would log a ticket with Citrix

[restrict desktop to specific user]

Martin Zugec wrote this a while back 

https://www.citrix.com/blogs/2017/04/17/how-to-assign-desktops-to-specific-servers-in-xenapp-7/

[WEM Agent install prevents RDS CAL from being requested/issued. WEM 2106, 2016 session host with 2019 RDS License server (with 2016 CALs)]

Smells like a Citrix support ticket

[Citrix Wem Network Drive Mapped]

time to go looking at the logs

https://jkindon.com/2017/11/16/wem-client-side-tools/

[Citrix MCS - How to set Machine to Revert to last deployed Image]

if you reboot from the Citrix Studio, you will revert all changes back to whatever snapshot the catalog references

 

if you reboot the machine from Windows or the hypervisor, you won't get a reset

 

[Citrix MCS catalog update for windows 10 static (Dedicated) assignment]

If you have chosen dedicated persistent VDI then they are on their own - MCS does nothing with them post deployment, you need ConfigMgr or PDQ deploy etc to manage them

 

if you need single image management and dedicated/captured user changes, then maybe user personalization layers will help (no it is not App Layering, I wouldn't do that to anyone)

https://docs.citrix.com/en-us/citrix-virtual-apps-desktops/install-configure/user-personalization-layer.html

[MCS Snapshot Management in vSphere]

no problem - glad all is well

[Citrix MCS catalog update for windows 10 static (Dedicated) assignment]

It's powershell based if you have used persistent catalogs

https://support.citrix.com/article/CTX129205

[PVS in Azure]

No official GA date yet. Not sure there will be a streaming cost to worry about within a vnet

[Citrix MCS use existing Azure Shared Image Gallery]

Currently no. You can pull an image from an existing sig but Citrix will always create and manage its own sig per catalog. This will change in the future 

[Problem assigning drive letter to network drive with Filter]

Advanced Settings -> Console Settings -> Allow Drive Letter reuse :)

[Citrix Cloud - Do I get it right?]

I think you likely need to get some consulting assistance here, there are a lot of moving parts to your questions and likely some more discovery needed

 

A few notes

- You do not need Azure AD and you do not need dedicated Azure Subs. You only need Azure AD if you are going to leverage SAML Auth and if you do that you will need FAS servers to provide SSO. You can consume existing Azure Subs

- You can consume normal AD

- You deploy Cloud connectors in each resource location that you host resources for users (Azure and VMWare etc)

- You cannot use a connector appliance, Cloud Connectors for CVAD are windows based

 

Architected properly, you can likely ditch those VPN's and go through the Citrix Gateway Service. I have done multiple projects similar to yours where everything has been centralised and access is through Citrix only, it works well

 

[GMSA and Wem Load Balancing]

have you read this?

https://docs.citrix.com/en-us/workspace-environment-management/current-release/install-and-configure/infrastructure-services.html

[MCS Snapshot Management in vSphere]

Can't comment on why that would be the sort of info he provided, but if MCS wouldn't allow us to delete snapshots, no vsphere admin in the world would allow its use :)

 

You will be fine

[MCS Snapshot Management in vSphere]

You can delete those snapshots. MCS clones the required snapshot, and then effectively links VM's from the clone (there are alternate ways this is handled, but as far as how it relates to snapshots in vsphere, this is the basics)

[Configuring FAS for only for external access]

I have often have a store for FAS that the ADC will utilise, and a store for normal auth that thin clients or internal users might use

 

One thing to watch for, is that if you enable FAS on an external Store, and then try to launch apps from an internal store, the internal store must be enabled for FAS also else you will fail to auth

[AWS RDS/SQL Support for On-Prem Xenapp v7 1808]

I don't believe that is a supported scenario 

https://docs.citrix.com/en-us/citrix-virtual-apps-desktops/system-requirements.html#databases

[VuemAgentConfigurationHelper.ReadEncryptedData() : The creator of this fault did not specify a Reason.]

Do you have port 8288 on your load balancer? 

[WEM Settings on first logon not consistent]

is the WEM agent actually launching?

[MCS Deployment with Azure emphemeral disk]

your catalog name is too long -  it's a known issue, I hit the same thing -  shorten the catalog name to something small :)

 

Fix will be out soon

[WEM Privilege elevation support Privilege elevation support]

no official release dates as yet for that one

[VuemAgentConfigurationHelper.ReadEncryptedData() : The creator of this fault did not specify a Reason.]

are you load balancing your brokers?

 

If you don't have offline mode enabled then the cache wont be used

[Multiple Azure AD for citrix cloud?]

Nope - at the moment to the best of my knowledge it's one only - you would likely need to throw an ADC behind it and do nFactor style work

[Citrix and SCVMM]

Can’t do that one -  always been limited to one as far as I know :-(