Category: Citrix
Notes from the presentations: Modern authentication glued together with Microsoft, Citrix and VMware
Very happy to share my first presentation on Virtual Expo with Erik Bakker, please click the following link for the recording and all other recordings as well. https://xenapptraining.com/members/virtual-expo/2020-09/
Notes from the field: Citrix FAS SSO not working with invalid CRL
Recently I got contacted by a customer who had problems performing an SSO to a newly build desktop environment. The setup a greenfield resource domain and forest trust from an existing tenant with a two way trust. Basically everything was correct but the logon from the users would always get terminated at the desktop with…
Notes from the field: VMware UAG reverse proxy why doesn’t it work!
When configuring VMware UAG as an reverse proxy I’ve encountered some issues last year that as far as I could see wasn’t all to well documented. My reference article for the configuration was the following: https://techzone.vmware.com/configuring-web-reverse-proxy-identity-bridging-vmware-unified-access-gateway-vmware-workspace-one-operational-tutorial#985671 Basically when you follow it to the letter in your test deployment and with a test site you will…
Notes from the field: Citrix XenMobile / Endpoint Management Per App VPN not working for iOS
This was quite a nice one to troubleshoot, turns out there is a new configuration point for per app VPN and iOS devices, at least it was for me. If you follow the configuration at https://www.citrix.com/blogs/2016/04/19/per-app-vpn-with-xenmobile-and-citrix-vpn/#:~:text=With%20the%20iOS%20per%20app,applications%20installed%20on%20the%20device. you’ll end up with a config that won’t open up a VPN when accessing the browser. Solution for this…
Notes from the lab: Citrix ADC IP Reputation
I’ve been playing around with the Citrix ADC IP Reputation feature – https://docs.citrix.com/en-us/citrix-adc/13/reputation/ip-reputation.html in the lab for some time and to be honest it’s such a small but very effective feature which I almost never see active, why is that? If you’ve gotten a premium licensed ADC appliance it’s a simple right click>enable and you…
Notes from the lab: Citrix ADC Native Push OTP not working
I’ve updated my lab environment with Citrix Gateway push OTP support and had some trouble in configuring the Citrix SSO app on my iPhone. For some reason it couldn’t setup the gateway connection and it wasn’t reachable. (Well that was my bad in checking all my devices but I’ll get to that) Before the push…
Notes from the field: Cannot access Citrix ADC or create HA set
Quite recently I was at a customer where they had an SDX setup with single instances and needed to be upgraded and converted to an HA setup. Well easy does it I created the instances on the second SDX and started creating HA sets. Numerous went fine and then one started giving errors. Could not…
Notes from the lab: Citrix ADC Native OTP and AdminSDHolder
While doing some lab work I came across an issue that the Domain Admin accounts could not register on the manageotp site while Domain Users could. This got me figuring it out. For the use of Native OTP on the ADC we need to use an bind account for Active Directory which has the appropriate…
Notes from the field: Citrix ADC Gateway Native OTP with GSLB
Fun quick fact that I’ve encountered when deploying a ADC Gateway GSLB setup for a customer! You only have to enroll once with the nFactor/Native OTP on one of the ADC’s. (when having a Active Directory Domain across multiple datacenter sites) The setup of choice: Two ADC appliances in HA set on each site GSLB…
Notes from the field: vSphere 6 NVIDIA vGPU not working
Quite recently I’ve deployed a POC setup for a customer who wanted to leverage NVIDIA vGPU for their XenDesktop environment. In regards to all the prerequisites being met the VM’s wouldn’t boot when trying to test this on the base build of vSphere 6(the latest version that could be downloaded from the site) and the…