Thursday, October 26, 2017

Published application not launching in seamless mode

Published application not launching in seamless mode

 Issue-

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows "AppInit_DLLs"="C:\PROGRA~2\Citrix\System32\mfaphook64.dll,mfaphook64.dll" HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Windows "AppInit_DLLs"="C:\PROGRA~2\Citrix\System32\mfaphook.dll,mfaphook.dll"



Resolution -


Instead of having the full mapping for AppInit_DLLs, only use "mfaphook64.dll" and "mpafhook.dll," respectively. I've done this on two servers now with success.

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Windows "AppInit_DLLs"="mfaphook64.dll" HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows NT\CurrentVersion\Windows "AppInit_DLLs"="mfaphook.dll"

Sunday, October 22, 2017

Communication flow during the different stages of the Citrix XenApp/XenDesktop logon process






1. The user device submits credentials to the Web Interface
(WI) or StoreFront (SF) web server.

2. For StoreFront, the credentials are verified directly to
a Domain Controller (Similar to Step 3 below). The
SF then passes the validation over to the Citrix Delivery
Controller (DDC) to begin resource enumeration
(Step 4). For Web Interface, the username and password
is passed to the DDC.

3. The DDC then queries a Domain Controller with the
end user’s credentials to verify user authorization.

4. Next, the DDC then queries the site SQL database
for the end user’s assigned Delivery Groups. The resources
defined by the Delivery Groups are sent to
the WI or SF server and presented to the user (enumeration).

5. When the User clicks on one of the resource icons
to start a desktop or application session, using the
Delivery Group obtained from the database, the DDC
queries the hypervisor about the status of resources
within that group.

6. The DDC identifies to Web Interface/StoreFront the
virtual machine it assigned for this particular session
(in the case of XenDesktop).

7. The Web Interface/StoreFront creates and sends an
ICA file to the Citrix Receiver pointing to the virtual
machine that hypervisor identified.

8. The Citrix Receiver establishes an ICA connection to
the specific virtual machine that the DDC allocated
for this session.

9. The Virtual Delivery Agent (VDA) verifies the license
file with the DDC.

10. The DDC queries the Citrix License server to verify
that the end user has a valid ticket.

11. The DDC then passes session policies to the VDA,
which in turn applies session policies to the virtual
machine. Profile loading, GPO processing, loading of
scripts, drivers, printers, etc. all occur at this stage.

12. The Citrix Receiver displays the selected resource to
the end user.

Monday, October 9, 2017

Citrix Ports

Citrix Ports 

ICA#1494
RDP#3389
CGP#2598
IMA#2512
AMC#2513
XML#8080
License Manager Daemon#27000
Citrix Vendor Daemon#7279
License Management Console#8082
Citrix Receiver#80
Citrix Receiver#443
Offline Plug-in-SMB#445
Power & Capacity Management Agent#11161
SQL#1433
Hyper-V#8100
SSH#22
VNC#5900
NTP#123
DNS#53
AD#389
NetBIOS#139
ISO Store: Microsoft-DS#445
End device communication with LabManager Server User interface#8443
LDAP#389
LDAPS#636
Communication of StorageLink Manager to StorageLink Service#21605
CLI Admin (encrypted)#22
GUI Admin (encrypted )#3008
GUI (no encryption)#3010
RADIUS connection#1812
HA-Exchange of Hello packets for communicating UP/DOWN status (heartbeat)#3003
Secure High Availability configuration synchronization#3008
Secure command propagation and MEP#3009
High Availability configuration synchronization plus web-logging and audit server logging#3010
Command propagation and MEP#3011
Administration Website#9001
Admin Desktop (until 4.5)#9002
AAC#9005
EdgeSight Agent internal communication (client-side database)#9036
Communication with RSCorSvc on EdgeSight Agent#9035
PSync#8443
EasyCall Gateway communicates with the SIP trunk over port 5060#5060
RPC#135
Contacting GoToMeeting service broker via the Endpoint Gateway (EGW)#8200
Connection to remote runtime(WorkflowStudio)#8010
PVS_WriteCachce#10802
PVS_WriteCachce#10803
TargetDeviceLogon#6910
ZENworks communication#524
LDAP connection to Global Catalog#3268
LDAP SSL connection to Global Catalog#3269

Tuesday, August 29, 2017

Powershell command to get the inventory for XenApp 6.0

Get-XAApplicationReport * | select DisplayName,FolderPath,Enabled,CommandLineExecutable, @{n="Servers";e={[string]::join("-", $_.ServerNames)}} | Export-Csv Inventory.csv

Sunday, August 20, 2017

Command to send email from Office 365

Command to send email from Office 365


 $EmailFrom = “myaccount@domain.com”

$EmailTo = “emailaddress@domain.com”

$Subject = “Test from O365 SMTP”

$Body = “Test from O365 SMTP Authentication”

$SMTPServer = “smtp.office365.com”

$SMTPClient = New-Object Net.Mail.SmtpClient($SmtpServer, 587)

$SMTPClient.EnableSsl = $true

$SMTPClient.Credentials = New-Object System.Net.NetworkCredential(“myaccount@domain.com”, “*****”);

$SMTPClient.Send($EmailFrom, $EmailTo, $Subject, $Body)

Tuesday, August 8, 2017

default.ica


default.ica

;
; ICA Override File
;
; Add ICA file settings that you want to be sent to client devices
; to this file.  Settings contained in this file override any
; settings generated by Delivery Services.
;

[WFClient]
Version=2
RemoveICAFile=yes
ProxyTimeout=30000
ProxyFavorIEConnectionSetting=Yes
ProxyUseFQDN=Off

[ApplicationServers]
Application=

[Application]
DesktopViewer-ForceFullScreenStartup=On
TransportDriver=TCP/IP
DoNotUseDefaultCSL=On
BrowserProtocol=HTTPonTCP
LocHttpBrowserAddress=!
WinStationDriver=ICA 3.0
ProxyTimeout=30000
AutologonAllowed=ON

[EncRC5-0]
DriverNameWin16=pdc0w.dll
DriverNameWin32=pdc0n.dll

[EncRC5-40]
DriverNameWin16=pdc40w.dll
DriverNameWin32=pdc40n.dll

[EncRC5-56]
DriverNameWin16=pdc56w.dll
DriverNameWin32=pdc56n.dll

[EncRC5-128]
DriverNameWin16=pdc128w.dll
DriverNameWin32=pdc128n.dll

[Compress]
DriverNameWin16=pdcompw.dll
DriverNameWin32=pdcompn.dll

Sunday, July 23, 2017

server error in '/director' application

Error - server error in '/director' application

Log Name:      Application
Source:        ASP.NET 4.0.30319.0
Date:          7/19/2017 7:20:43 AM
Event ID:      1310
Task Category: Web Event
Level:         Warning
Keywords:      Classic
User:          N/A
Computer:      FSGCDRNDC001W.global.net
Description:
Event code: 3007
Event message: A compilation error has occurred.
Event time: 7/19/2017 7:20:43 AM
Event time (UTC): 7/19/2017 11:20:43 AM
Event ID: 6ff30b0e74fa490ebfff164c8a19c8a0
Event sequence: 3
Event occurrence: 1
Event detail code: 0

Application information:
    Application domain: /LM/W3SVC/1/ROOT/Director-1-131449368429249277
    Trust level: Full
    Application Virtual Path: /Director
    Application Path: C:\inetpub\wwwroot\Director\
    Machine name: FSGCDRNDC001W

Process information:
    Process ID: 3368
    Process name: w3wp.exe
    Account name: IIS APPPOOL\Director

Exception information:
    Exception type:

















Resolution -

C:\Windows\temp folders should have IIS_IUSR and NETWORK SERVICE users with the full control permission.



Citrix Storefront Compiter Error message

Compiler Error Message: CS0016: Could not write to output file 'c:\Windows\Microsoft.NET\Framework\v4.0.30319\Temporary ASP.NET Files\root\62d43c41\27d749ca\App_Code.7lodcznm.dll' – 'Access denied.'














Resolution 

Temporary ASP.NET Files folder (c:\Windows\Microsoft.NET\Framework\v4.0.30319\Temporary ASP.NET Files) was the the one with the problem here. First, I thought that the problem is related to security permissions on the folder and I was right.

I right clicked on the Temporary ASP.NET Files folder and go to the security tab. I noticed that there is user called IIS_IUSRS and that guy has the full control permission. But apparently that was not enough.


The Temporary ASP.NET Files  and C:\Windows\temp folders should have IIS_IUSRS and NETWORK SERVICE users with the full control permission.








There is no Citrix XenApp server configured on the specified address


Error - there is no citrix xenapp server configured on the specified address

Xenapp 7.9
















Note - Access XenApp 7.8/7.9 without a NetScaler appliance.

Resolution -

All you need to do is edit the section in the file 'default.ica' located in c:\inetpub\wwwroot\Citrix\Store\App_Data\



[Application]
Address=xxx.xxx.xxx.xxx
TransportDriver=TCP/IP
DoNotUseDefaultCSL=On
BrowserProtocol=HTTPonTCP
LocHttpBrowserAddress=!
WinStationDriver=ICA 3.0
ProxyTimeout=30000
AutologonAllowed=ON


Edit the address= to the external IP address of the IP address that forwards 80, 443, 1494 and 2598 to

If the entry Address= doesnt exist then create it.

Tuesday, March 28, 2017

Please log on to windows to change your expired password citrix



Error - please log on to windows to change your expired password Citrix

I have set a default password on new user accounts and set Account option too "Must change password at next logon". When new user logs in they get error "Please log on to Windows to change your expired password" with no options to change the password. 








Resolution -

Enable password changes in Web interface.