Björn Schläfli
-
Posts
278 -
Joined
-
Last visited
-
Days Won
15
Content Type
Forums
Articles
Labs
Videos
TechZone
Citrix Community Articles
Events
Profiles
Posts posted by Björn Schläfli
-
-
I've installed Citrix Workspace App 2203 (2107 before) on my test clients. Since then my user gets the client drive file access permission window for every desktop. In recent versions there has been an option to set the permission on site level, but it's per desktop now. That's unusable in a site with many VDA desktops.
I've configured the reg key HKLM\SOFTWARE\WOW6432Node\Policies\Citrix\ICA Client\Client Selective Trust\oidTrustedSitesRegionIcaAuthorizationDecision\FileSecurityPermission with no luck. Also HKCU\Software... is not helpful.
It's a different behavior than with 2107.
This permission window pops up only in published desktops, not seamless.
Anyone with an idea or hint?
-
Maybe it's because of the known bug with silent installation of Citrix workspace app.
Microsoft Edge WebView2 Runtime is needed for Citrix Workspace App (since version 2107, I'm not sure) and should be installed also, but it doesn't work unattended.
Try to install Microsoft Edge WebView2 Runtime first (version 92 and up) and Workspace App after it.
-
Hi Thomas,
really appreciate. Thank you very much.
-
worked with adc 12.1 before. Now with 13.1-12.51 the gui for authentation / logs shows only a spinning circle. No logs are loaded. I see this behavior in my test and prod environment. Anyone else have this issue and maybe a solution?
-
I've found a solution with a cookie.
I've used the domaindropdown.xml and cookie.xml login schema from Citrix in combination. Also the configuration of https://docs.citrix.com/en-us/citrix-adc/current-release/aaa-tm/authentication-methods/multi-factor-nfactor-authentication/set-a-cookie-using- nfactor.html in script.js with following enhancement:
$(document).ready(function() {
function readdomaincookie(){
var userdomain= $('#domain option:selected').val();
document.cookie = "domain_cookie="+userdomain+";path=/";
}
document.getElementById('loginBtn').addEventListener("click",readdomaincookie);
});-
1
-
-
I've created an nfactor flow:
1. Loginschema DropDown.xml with my 2 configured environment names
2. As policy added my radius policy
The user lands on the gateway page and is shown the username, password and the drop-down with the environments. Then I want to query the http body via session policies in order to forward the user to the appropriate StoreFront based on his selection. This doesn't work with Radius with multi-factor because the http body changes on the second page for the mTan and what I want to query is no longer in the http body. So I think I would have to create a cookie. I used https://docs.citrix.com/en-us/citrix-adc/current-release/aaa-tm/authentication-methods/multi-factor-nfactor-authentication/set-a-cookie-using- nfactor.html created an nFactor for Cookie and added that as the next factor after the drop-down / radius policy. However, the cookie is not set. Now I have no idea how to proceed here. Does somebody has any idea?
For my internal gateway it works with session policies because it's a ldap single-factor auth.
-
Hi Rhonda,
many thanks for your great explanations. I've created the nFactor flow and the session policys with HTTP.REQ.BODY(500).CONTAINS("mydomain") and it's working.
Thank you very much!
-
I've already done some reading in nFactor. I can create a drop-down with a login scheme, but how can I forward the user to the appropriate storefront based on the selected domain?
First authentication is radius on a system which is not in my competence and second is ldap with noauth (used only to read attributes and use a special one for redirections).
-
Since Netscaler 11 I've used X1 theme with rewrite policy to create a drop-down to use this cookie to send users based on selection to different receiver for web sites by session policies / actions. Following How to Add Drop-Down Menu with Domain Names on Logon Page for NetScaler Gateway 11.0 64.x and Later (citrix.com).
Lately I've updated to 13.1. X1 is deprecated and has to be replaced by RfWebUI Theme. The rewrite solution does not work with RfWebUI. How can I create a custom drop-down from which I can get users selection? Is that still possible? We currently also have a java script function in gateway_login_form_view.js that I would have to reconfigure somewhere.
-
maybe dpi settings could help.
Configuration of Client scaling, DPI scaling, and DPI matching with Citrix Workspace app for Windows
-
as far as I know the grace period is triggered, because your license server is set to use virtual apps license.
You can assign licensesper delivery group by powershell.
useful links:
Multi-type licensing | Citrix Virtual Apps and Desktops 7 2112
How to Configure Multiple License Types within a Single XenApp and XenDesktop Site (citrix.com)
-
Hi Bit10101,
it's tricky as far as I know. You are able to use Citrix Director -> Filter -> All application instances -> BUT you can logoff these users only.
I wrote a powershell script which reads the open processes on a server. I select the desired one and the script then terminates the processes found on each server.
Quick example of a script, which can be run from a management machine:
$XAServerList = Get-BrokerMachine -MaxRecordCount 200 | Sort-Object DNSName | Select-Object -ExpandProperty DNSName
$ProcessName = Read-Host -Prompt "Enter process name"
foreach ($Server in $XAServerList)
{
$ScriptToRunRemote = {param($ProcessName); Get-Process -Name $ProcessName -ErrorAction SilentlyContinue | Stop-Process -Force -PassThru}
Invoke-Command -ComputerName $Server -ScriptBlock $ScriptToRunRemote -ArgumentList $ProcessName
}Long time ago I've told this feature need on a Citrix event to someone but never got a response from this person.
-
Hi Andy,
do these users use webcams?
I've had wfshell.exe crashes because of logitech webcams.
look at this: Citrix Virtual Apps 2103 VDA 2103 wfshell.exe crashes - XenApp 7.x - Discussions
The issue was resolved by configuring this (thanks a lot to mmora302):
Path :HKLM\Software\Citrix\SvcHost\IcaCtlsSvcs\
Value: GvchEnable
Type: DWORD Data: 0Restart the VDA, and verify if the issue still occurs.
-
still the same issue. Every day 3 to 5 users out of 300 have different sessions. We use no load balancing in this site. Citrix ADC is configured with Backup server protection (failover) instead. Persistence method is SourceIP with the default timeout of 1200. Could this type of traffic management have an influence?
Workspace Control is disabled (sameEndpointOnly). But the affected users sessions started from same endpoints (same endpoint name, ip).
The ddcs log nothing about it. Storefront neither.
Does anybody have a clue for me?
-
I've configured a key in the vda image from Logitech webcams session dis- and reconnection - XenDesktop 7.x - Discussions (citrix.com).
Path :HKLM\Software\Citrix\SvcHost\IcaCtlsSvcs\
Value: GvchEnable
Type: DWORD Data: 0VDA restart needed.
It disables the generic video camera handler. No negative side effects in my site.
This solved my issue.
-
I've configured a key in the vda image from Logitech webcams session dis- and reconnection - XenDesktop 7.x - Discussions (citrix.com).
Path :HKLM\Software\Citrix\SvcHost\IcaCtlsSvcs\
Value: GvchEnable
Type: DWORD Data: 0VDA restart needed.
It disables the generic video camera handler. No negative side effects in my site.
This solved my issue.
-
Hi mmora302,
this is really great. Customer tests looked good. Thank you very much.
-
same here. But now I've found a support article by Citrix.
Drag and Drop feature does not work for some specific apps (citrix.com)
"Drag and Drop feature includes the desktop, Explorer window, and some applications. However, this feature does not support all apps. "
"After checking with development, only CFSTR_FILECONTENTS and CFSTR_FILEDESCRIPTOR formats are supported for Drag and Drop feature. The other formats are not supported."
Well, seems that this new drag & drop between local and Citrix feature does not support much and is at the moment unusful for us.
-
OK found it. This issue is related to Citrix Workspace App 2107. Fixed with 2202.
-
1
-
-
Hi,
thank you, I'll try that. Do you know what this reg key does? I didn't find any information about it.
-
drag & drop messages vom local Outlook (win10 computer) to a published explorer.exe do not work. "Unknown error". Drag works and the cursor shows a + but drop does not work. Drag e.g. a .jpg file from published explorer.exe to lokal Outlook message window works. Drag attachments out from a mail message to the published explorer.exe works.
drag & drop .msg isn't working.
Tested in a Citrix virtual apps 2103 with vda 2112 site and also in a cva 2112 with vda 2112 site.
Also:
Sometimes drag & drop and copy paste operations are suddenly not working inside a Citrix session if the new drag & drop feature is enabled.
-
screenshot of the progress bar. This "issue" does not happen with receiver for web, only when using start menu apps by store. Same with the newest cwa 2202. Disabled vprefer with no success.
-
Why does the workspace app pops up for every published application launch? This leads to a delay starting apps which is disturbing. Anyone else with this behavior and maybe an explanation for it?
-
I received a private version of a fixed Citrix Workspace App for Mac and it works. It has to be installed by terminal. Citrix couldn‘t tell me when it will be released for public.
my case id 81001534
-
1
-
Workspace app 2203 keep asking for client drive access per desktop
in Receiver for Windows 4.x
Posted
oh found something Security Warning with Citrix Workspace App 2112 and 2202 for Windows - Receiver for Windows (Updater) - Discussions