-
Posts
776 -
Joined
-
Last visited
-
Days Won
39
Content Type
Forums
Articles
Labs
Videos
TechZone
Citrix Community Articles
Events
Profiles
Posts posted by Jeff Riechers
-
-
You would probably would have to setup some form of nfactor to get the username first, run that through ldap nfactor to get the group membership, then based on the group membership send them to oauth for actual authentication. You would have 2 different oauth policies with necessary default group assignments to route traffic.
-
What is your authentication method? If SAML or oAuth you still need FAS. Did you switch authentication to LDAP?
-
If a CA change took place you will need to do a few things.
1. Regenerate certs for the FAS servers.
2. Have Domain Controllers fully trust the new CA (easiest method is to generate new LDAP certs from the new CA)
3. Have the new CAs Root and Intermediate replicated out to all machines on the domain that use FAS, like VDA, FAS, Storefront, etc.
Check the Citrix Delivery Services Log on the Storefront server, and the Event Logs on the VDA for more info on what needs to be done.
- 1
-
So what are the error messages that the client gets?
-
What happens if you do Storefront direct instead of going through Gateway?
What's the OS?
-
It's just a UDP load balancer, so it shouldn't be a problem.
However, BDM is a better option IMHO.
- 1
-
Disregard. Looks like something was pushed out that modified the URL in the registry.
-
Have an odd issue. Some Windows 10 users are getting the latest round of Windows Updates and when they open Workpace App, that has been configured with the store up until this point, they are prompted to enter the address or email to setup a store. We look in the registry and we see all the proper registry settings. Has anyone else experienced this problem? It's only some machines, not all that see this happening.
-
What does director show is the longest part of the login process?
-
Check out Citrix Workspace app 2311.1 Desktop Lock - Citrix This can change a windows machine into an autolaunching thin client.
-
Might be something with your account or geolocation? If you have a private VPN try setting that to another geo location to use the SDN there.
-
Worked from me. Try an incognito window maybe?
-
Oh, 100% agree. I was just pointing out how another vendor did a similar function, but it wasn't supported. I have been looking for a free CSG equivalent for years.
-
That default.ica is setup on the server side, not on the MAC. Contact your Citrix Support desk and they would make the default.ica modifications there.
-
Is all the virtualization features enabled in the bios? Does this work with earlier versions of xenserver?
-
Modify the default.ica files for your connection so the Citrix Hotkeys don't overlap with those characters.
-
Is there a process for CPL owners to get uberAgent licenses? I have customers that are testing this out and want to get rid of the Eval message.
-
Unless you have a direct connection to the backend resources I don't believe the App Proxy does the necessary ICA tunnel. And if it did I don't believe it would be supported by Citrix. F5 can do Irules for routing Citrix traffic, but that also is not supported.
-
Sounds like one of the storefront servers is limited to launch just a single copy. That is under the store settings I believe.
-
Do you have WEM deployed? Windows likes to reset their associations frequently. We got around this by using WEM to set the associations, in particular around PDFs so that Edge would stop grabbing them on every update.
- 1
-
There is a hotfix 4 that is working on the 2019 issues. But yeah, Win 10, 11 and 2022 only right now. I wrote up an article on how I have it work in 2022 for my customers and lab environment. Hopefully it will help you out.
https://www.jeffriechers.com/wiki/teams-2-1-with-fslogix-setup-guide/
-
Back at this same message after last year. And I found the answer.
It wasn't that hotfix at all. It was daylight savings time.
With Server 2016 if your reboot a machine after daylight savings time has shifted forward, without updating the underlying image with the knowledge of DST shift, then your machine account password reset process will crash out. You have to open your image, allow it to adjust the DST flag, then re-seal it and send it out.
So last year when this came up, we updated the image with that reg entry, but that was not it. It was just the update process that fixed it.
Doesn't happen on Server 2022 or 2019.
-
Sorry for the delay. Here is my first draft. I may tune it up a bit, so let me know if you have any questions.
https://www.jeffriechers.com/wiki/teams-2-1-with-fslogix-setup-guide/
-
2022. LTSR 2203 cu4.1. FSlogix HF3.
I have an article I am writing up on how best to run Teams 2.1 with Citrix and FSLogix. Hopefully out this weekend.
Logon session display "Other user"
in Profile Management - General
Posted · Edited by Jeff Riechers
I believe you can hide this by using the GPO to hide last logged on user.
Also check out this article.
https://borncity.com/win/2023/02/24/windows-logon-hangs-on-other-user-because-of-citrix-workspace-app-fslogix-v2210-bug-causes-logon-hang/