Something I observed since a very long time on my Mircosoft Surface Book 2 is now confirmed by Citrix Support: Citrix HDX session may stop responding and hang when using the two-finger scroll on a touchpad. This was observed in certain machines running Windows 8 or 10 with receiver 4.10 or higher. There is currently no solution, but the workaround to press a system keys like Alt-tab or windows key…
Read MoreRisk-based Authentication with Netscaler n-Factor Feature and forwarding credentials to SAML
Scenario We came across a requirement while implementing Citrix Netscaler as a central authentication instance for web applications, which was described with several needs on the customer site. User are going to start a cloud web application for example from SAP or other cloud providers This application will create a SAML request and send it to a Netscaler AAA service to authenticate the users from an on-premise repository (LDAP) Netscaler…
Read MoreInsert your Password Policy notification in Netscaler Gateway 11.1
I am often asked to customize the Netscaler logon pages with the company corporate design, logos and other stuff. Another very common requirement is, to have the opportunity to set a hint what is the compony’s LDAP password complexity policy, when the user have to change their passwords in a remote scenario. Netscaler does not offer any functionality to do this in the GUI. The second challenge is, Citrix…
Read MoreCitrix Director: Cannot retrieve the data. Data source unresponsive or reported an error. View Director server event logs for further information.
After upgrading VDA to the latest version, a customer was faced to an issue that no performance and configuration data for the machines was displayed in Director. The machine itself was running fine and the this errors seems to have no impact to any user. While analysing this I found an error in the event log at an effected VM. …
Read MoreXenDesktop: The supplied address for the compute resource is invalid
In a customer environment we upgraded to XenDesktop 7.9 and added two new Desktop Controller in order to change the OS from Windows Server 2008R2 to Windows Server 2012R2. After some weeks the customer removed the old Controller from the site and after this we saw several issues regrading the hypervisor connections, for example when we tried to add VMs to catalog: If…
Read MorePoC: Sharefile StorageZone with ADFS 3.0 on premise – Part 2
In my first Sharefile post I showed how to install and prepare the internal systems for use with Citrix Sharefile storage Zone (on premise). In this post we will have a look on publishing these services via Netscaler to authenticate users through a on-premise ADFS service. Architecture Requirements on the Sharefile Control Plane Create a custom logon page as descripted in: http://support.citrixonline.com/en_US/sharefile/all_files/SF090016 You will need to edit the login.htm…
Read MoreHDX 3D Pro option missing while VDA installation
Today I quickly wanna share an installation issue, seen while updating a customer environment with XenDesktop 7.6 HDX3D Pro to 7.8 with the latest PVS target device driver. After a successfull installation of the new PVS target device software, we would like to install VDA 7.7. Now the installation wizard doesn’t show the HDX3D Pro option anymore, so we are not able to activate the feature. …
Read MoreCitrix HDX3D Pro and 3Dconnexion Function Keys
I worked on a XenDesktop HDX 3D project and was faced to very annoying problem with USB redirection and the 3Dconnexion SpaceMouse Pro. The users were migrated from their traditional workstations to the Citrix XenDesktop infrastructure with 3D Pro. One of the most common incidents were: “The Function Keys are not working with my in-application macros”. After some researching we found, if we set some old-style combinations like CTRL + I…
Read MoreOverview: How to score an „A+“ at ssllabs.com with Citrix Netscaler
My last blog about securing Netscaler VPX was about Netscaler 10.5.57, which was the first firmware with TLS 1.1 and TLS 1.2 support. After the update and activating TLS 1.1/TLS1.2 (and disabling SSLv3 of course) the rating at https://www.ssllabs.com/ssltest/ is an „A“ with is pretty good, but also gives us room for more optimization. Custom Ciphers The first thing we should optimize are the used ciphers. My suggestion here is to start…
Read MorePoC: Sharefile StorageZone with ADFS 3.0 on premise
Today I wanna talk about my last experience with Sharefile Storage Zone and Microsoft Active Directory Federation Services (ADFS) 3.0. There are some little things you have to take care about. Our proof of concept consists of two servers: 1 x Storage Zone Controller Microsoft Windows Server 2012R2 , 2 vCPU, 8 GB RAM, 60 GB system partition, 80 GB data partition. 1 x ADFS Server Microsoft Windows Server 2012R2, 2…
Read More