James Kindon
-
Posts
1,351 -
Joined
-
Last visited
-
Days Won
66
Content Type
Forums
Articles
Labs
Videos
TechZone
Citrix Community Articles
Events
Profiles
Posts posted by James Kindon
-
-
shame - it appears to be dead now, it was working yesterday with SSL errors - must have been brought down
-
-
Maybe publish the app but restrict it to specific machines using tags?
Pretty sure vPrefer configurations override keywords - so might be a bit of work to change things around
-
This can be a weird race condition - are these MCS machines? or manual?
I've worked on projects where the quickest path was a startup script which executed a gpupdate to get the latest keys updated, and then a restart of the desktop service does the trick
-
Do you have self healing enabled on the printer object? Maybe it was mapped and then removed. You need self healing to bring it back
-
enable gateway service connectivity on workspace...
-
There are a few considerations you need to be looking at here, not just the number of VM's and file share capacity, but also around the number of file handles for example that an Azure File Share can handle (particularly with FSLogix), you will blow that limit before you blow the capacity
At this scale, you would are going to need to manage groups and placement of users, profile locations, desktop assignments etc
-
You will need to contact Citrix Support for this one
-
1
-
-
Disable auto-update of controllers through Citrix policy and specify your controllers via a GPP (listoOfDDCs) https://docs.citrix.com/en-us/citrix-virtual-apps-desktops/manage-deployment/vda-registration.html#registry-based
Also keep in mind that the savedlistofddcs.xml file can be a bit painful as well, in some migration projects I have had to set a startup script with a gpupdate and a Desktop Service restart to get passed registration challenges
-
can't you just remove the tag?
-
There are a few " It depends" items here, regardless, here are some common guidelines
- Do not replicate or restore Cloud Connectors. They should be built and managed separately in an appropriate resource location
- For StoreFront and other associated components, you can replicate them via ASR etc as long as you consider the restore order and process
- NetScaler in Azure you may want to think about standby appliances - I am not sure you can ASR a NetScaler (never tried)
- For MCS workloads, (non-persistent) you can deploy new machines based on the existing snapshot, or a replica of the snapshot (depending on region/DR logic
- For Profiles, this will change depending on what your technology of choice is for Storage (Azure Files, Windows File Servers, Azure NetApp Files etc)
- You will want to align Active Directory and policies accordingly
You will ultimately need to architect around your Azure strategy, are you looking at multi-region redundancy, zone redundancy, etc. Quite a few factors at play here
-
15 hours ago, Ken Zygmunt said:
James you absolute genius!!!!
I'd previously done everything except make the change on the VDA for BrokerAgent.exe.config
Changing the AllowNtlm to true, restarting the Citrix Desktop Service, and the VDI appears as registered in the Delivery Controllers.
Regards
Ken Z
Kudos to Nick for posting it, I would have forgotten ?
-
You should probably look at XenConvert for this task
-
We worked through an issue with this a few years back - Nick documented it here
-
1
-
-
Citrix doesn't use standard azure "images" for MCS deployments. It uses either:
- An Azure Snapshot
- An Azure Managed Disk (which it snapshots anyway)
- An azure VHD stored in a storage account (though this is old and going away)
- An image stored in a compute gallery (SIG) but this can't be a generalized image (can't have been sysprep'd)
I typically suggest customers:
- Build their image as per usual standards, manual or automated
- Seal that image with BIS-F ready for provisioning. Shut it down
- Take a snapshot of the OS disk in Azure
- Create or Update a catalog based on that snapshot
- Choose your poison as far as Ephemeral Disks/SIG integration goes etc
- Choose a machine profile (This is a VM spec) or an ARM template spec that matches what you want each VM to look like
- Away you go
There are some advanced considerations/options if you are doing multi-region deployments with complexity, but that should get you going
-
Typically you should see events thrown at vSphere and logged by the service account - strange that you aren't seeing them
You can look via powershell at the hosting actions, but default time for retention is pretty low
-
try looking at the uninstall keys and finding exactly what you want to use for detection
Computer\HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall
Computer\HKEY_LOCAL_MACHINE\SOFTWARE\WOW6432Node\Microsoft\Windows\CurrentVersion\Uninstall
-
Is your aim to be throwing away the profile at the end of the session? So not roaming it at all (you mention not using CPM)?
If so, VMware optimizer has an awesome feature where it not only optimizes the OS, but also syncs the current profile to the default - so you can set things up how you want and then sync them over to the default for all new sessions
This can help keep initial profile build times down substantially.
-
1
-
-
If you are asking if you can
- Authenticate with Domain\User1, Domain\User2, Domain\User3 at either StoreFront or ADC and then
- Login to Windows as Domain\GenericUser
Then no, you can't do that, that is a security hole that Citrix has never allowed (you will fail with a "not the brokered user") by design.
-
1
-
Check host file and callback records in the new vs old -> also check ADC session profile configurations (assuming you mirrored those as well?)
-
Have you followed this end-to-end? If yes, you should log a ticket with support and get some help https://docs.citrix.com/en-us/citrix-daas/install-configure/resource-location/google.html
-
1
-
-
I am not sure how the custom URL's function with a CNAME, but I know a cloud.com native URL will not work. Potentially look at something that does a 302 redirect instead ?
-
Check the chome documentation here, it's pretty much the same for edge from memory - just need to alter paths
-
Hello Hello ?
This, I have not seen happen on FAS before, it is however something that happens on StoreFront if you use the password reset setting. Citrix have some references to the issue
- https://support.citrix.com/article/CTX134690/user-profiles-are-created-on-storefront-servers
- https://www.citrix.com/blogs/2016/03/22/delete-local-user-profile-folders-on-storefront-servers
But it happening on FAS is a new one - have not seen this occur in other environments
Printer mappings-Excluded actions
in WEM (Workspace Environment Management)
Posted
The action has already applied and when it was applied it had no self-healing enable - so it's already done its job
in the user session, right click the WEM agent and chose reset actions or whatever it's called, select printers (this will remove tracking status), and then re-process the agent