Jump to content

Björn Schläfli

Members
  • Posts

    273
  • Joined

  • Last visited

  • Days Won

    15

Posts posted by Björn Schläfli

  1. I've found a solution with a cookie.

    I've used the domaindropdown.xml and cookie.xml login schema from Citrix in combination. Also the configuration of https://docs.citrix.com/en-us/citrix-adc/current-release/aaa-tm/authentication-methods/multi-factor-nfactor-authentication/set-a-cookie-using- nfactor.html in script.js with following enhancement:

            $(document).ready(function() {
                function readdomaincookie(){
                var userdomain= $('#domain option:selected').val();
                document.cookie = "domain_cookie="+userdomain+";path=/"; 
                }
                document.getElementById('loginBtn').addEventListener("click",readdomaincookie); 
            });

    • Like 1
  2. I've created an nfactor flow:

    1. Loginschema DropDown.xml with my 2 configured environment names

    2. As policy added my radius policy

     

    The user lands on the gateway page and is shown the username, password and the drop-down with the environments. Then I want to query the http body via session policies in order to forward the user to the appropriate StoreFront based on his selection. This doesn't work with Radius with multi-factor because the http body changes on the second page for the mTan and what I want to query is no longer in the http body. So I think I would have to create a cookie. I used https://docs.citrix.com/en-us/citrix-adc/current-release/aaa-tm/authentication-methods/multi-factor-nfactor-authentication/set-a-cookie-using- nfactor.html created an nFactor for Cookie and added that as the next factor after the drop-down / radius policy. However, the cookie is not set. Now I have no idea how to proceed here. Does somebody has any idea?

    For my internal gateway it works with session policies because it's a ldap single-factor auth.

  3. I've already done some reading in nFactor. I can create a drop-down with a login scheme, but how can I forward the user to the appropriate storefront based on the selected domain?

    First authentication is radius on a system which is not in my competence and second is ldap with noauth (used only to read attributes and use a special one for redirections).

  4. Since Netscaler 11 I've used X1 theme with rewrite policy to create a drop-down to use this cookie to send users based on selection to different receiver for web sites by session policies / actions. Following How to Add Drop-Down Menu with Domain Names on Logon Page for NetScaler Gateway 11.0 64.x and Later (citrix.com). 

    Lately I've updated to 13.1. X1 is deprecated and has to be replaced by RfWebUI Theme. The rewrite solution does not work with RfWebUI. How can I create a custom drop-down from which I can get users selection? Is that still possible? We currently also have a java script function in gateway_login_form_view.js that I would have to reconfigure somewhere.

  5. as far as I know the grace period is triggered, because your license server is set to use virtual apps license.

    You can assign licensesper delivery group by powershell.

     

    useful links:

    Multi-type licensing | Citrix Virtual Apps and Desktops 7 2112

    How to Configure Multiple License Types within a Single XenApp and XenDesktop Site (citrix.com)

  6. Hi Bit10101,

     

    it's tricky as far as I know. You are able to use Citrix Director -> Filter -> All application instances -> BUT you can logoff these users only.

     

    I wrote a powershell script which reads the open processes on a server. I select the desired one and the script then terminates the processes found on each server.

     

    Quick example of a script, which can be run from a management machine:

    $XAServerList = Get-BrokerMachine -MaxRecordCount 200 | Sort-Object DNSName | Select-Object -ExpandProperty DNSName

    $ProcessName = Read-Host -Prompt "Enter process name"

    foreach ($Server in $XAServerList)
    {
    $ScriptToRunRemote = {param($ProcessName); Get-Process -Name $ProcessName -ErrorAction SilentlyContinue | Stop-Process -Force -PassThru}
    Invoke-Command -ComputerName $Server -ScriptBlock $ScriptToRunRemote -ArgumentList $ProcessName
    }

     

    Long time ago I've told this feature need on a Citrix event to someone but never got a response from this person.

  7. Hi Andy,

    do these users use webcams?

     

    I've had wfshell.exe crashes because of logitech webcams.

    look at this: Citrix Virtual Apps 2103 VDA 2103 wfshell.exe crashes - XenApp 7.x - Discussions

     

    The issue was resolved by configuring this (thanks a lot to mmora302):

    Path :HKLM\Software\Citrix\SvcHost\IcaCtlsSvcs\
    Value: GvchEnable
    Type: DWORD Data: 0

     

    Restart the VDA, and verify if the issue still occurs.

  8. still the same issue. Every day 3 to 5 users out of 300 have different sessions. We use no load balancing in this site. Citrix ADC is configured with Backup server protection (failover) instead. Persistence method is SourceIP with the default timeout of 1200. Could this type of traffic management have an influence?

    Workspace Control is disabled (sameEndpointOnly). But the affected users sessions started from same endpoints (same endpoint name, ip). 

    The ddcs log nothing about it. Storefront neither.

    Does anybody have a clue for me?

  9. I've configured a key in the vda image from Logitech webcams session dis- and reconnection - XenDesktop 7.x - Discussions (citrix.com). 

    Path :HKLM\Software\Citrix\SvcHost\IcaCtlsSvcs\
    Value: GvchEnable
    Type: DWORD Data: 0

     

    VDA restart needed.

    It disables the generic video camera handler. No negative side effects in my site.

     

    This solved my issue.

  10. same here. But now I've found a support article by Citrix.

    Drag and Drop feature does not work for some specific apps (citrix.com)

    "Drag and Drop feature includes the desktop, Explorer window, and some applications. However, this feature does not support all apps. "

    "After checking with development, only CFSTR_FILECONTENTS and CFSTR_FILEDESCRIPTOR formats are supported for Drag and Drop feature. The other formats are not supported."

     

    Well, seems that this new drag & drop between local and Citrix feature does not support much and is at the moment unusful for us.

  11. drag & drop messages vom local Outlook (win10 computer) to a published explorer.exe do not work. "Unknown error". Drag works and the cursor shows a + but drop does not work. Drag e.g. a .jpg file from published explorer.exe to lokal Outlook message window works. Drag attachments out from a mail message to the published explorer.exe works.

    drag & drop .msg isn't working.

     

    Tested in a Citrix virtual apps 2103 with vda 2112 site and also in a cva 2112 with vda 2112 site.

     

    Also:

    Sometimes drag & drop and copy paste operations are suddenly not working inside a Citrix session if the new drag & drop feature is enabled.

    Image 575.png

×
×
  • Create New...