Citrix XenApp and XenDesktop 7.

15 – Component Architecture

Glossary Citrix XenApp & XenDesktop 7.15 – On-Premises Deployment Citrix XenApp & XenDesktop 7.15 – Hybrid Cloud Deployment Citrix XenApp & XenDesktop 7.15 – Citrix Cloud Deployment
An on-premises Citrix XenApp and XenDesktop architecture provides any user on any device and secure access to any Windows or Linux desktop or application hosted on Citrix XenServer, A hybrid cloud Citrix XenApp and XenDesktop architecture adheres to the same architecture as the on-premises model except hosting platforms expand to include Microsoft Azure, Amazon AWS or other The Citrix XenApp & XenDesktop Service hosted in the Citrix Cloud is a variant of a hybrid cloud architecture except that the access and control layers of the solution are managed by Citrix in the Citrix Cloud, eliminating the need
Microsoft Hyper-V, Nutanix Acropolis, VMware vSphere and physical servers across multiple on-premises data centers. cloud hosting providers for resource layer components (Windows and Linux desktops and applications), while all managed from a centralized controller architecture. for the local infrastructure team to manage, maintain and upgrade the access and control components. Each unique cloud or on-premises location hosting resources must deploy a Citrix Cloud Connector component, which
Virtual Desktop Models provides the link to the Citrix Cloud service.

Windows Apps – a Windows app interface running on a server-

based OS, accessible to many users.
Users Access Control Resources Users Access Control Resources Users Access Control Resources
Linux Apps – the Linux app interface running on a server-based
OS, accessible to many users.

Secure Browser – an app, encapsulated within a compatible Microsoft Azure Cloud Connector Microsoft Azure
Windows Apps Windows Apps
browser tab to the user s preferred browser. Database Windows Apps Database

VM-Hosted App - the Windows app interface running on a

desktop-based OS, accessible to a single user.

Shared Windows Desktop – a Windows desktop interface Amazon AWS

NetScaler NetScaler NetScaler Gateway Service
running on a server-based OS, accessible to many users. . User Devices StoreFront XenApp / XenDesktop User Devices StoreFront XenApp / XenDesktop Linux Apps User Devices XenApp & XenDesktop Linux Apps
Linux Apps
Controller Controller Service

Cloud Connector Citrix XenServer

Shared Linux Desktop – a Linux desktop interface running on a
server-based OS, accessible to many users.
Citrix XenServer
Studio Licenses Director Studio Licenses Director Pooled Windows Desktops Pooled Windows Desktops
Pooled Windows Desktops
Pooled Windows Desktop – a randomly assigned desktop-
based Windows OS, accessible to a single user.

Citrix XenServer Nutanix Acropolis Physical Server Microsoft Hyper-V VMware vSphere Microsoft Hyper-V Citrix Cloud Citrix Cloud
Pooled Linux Desktop – a randomly assigned desktop-based
Linux OS, accessible to a single user.

Host
Host Host
Personal Windows Desktop – a statically assigned desktop-
based Windows OS, accessible to a single user.

Personal Linux Desktop – a statically assigned desktop-based

Windows OS, accessible to a single user.

Pro Graphics Desktop – a virtual desktop utilizing a hardware-

based graphical processing unit (GPU), accessible to a single User Authentication and Resource Enumeration HDX Networking Traffic and Ports: On-Premises and Hybrid Cloud Deployments
user.
HDX (High Definition eXperience) is a collection of integrated technologies providing and end-to-end delivery
system leveraging end point, virtual machine and host capabilities to provide the user with the best experience 80 HTTP
Local VM – a desktop running within a virtual container on the A user initiates a connection to the NetScaler possible.
1
end point device. Gateway URL and provides logon credentials. Users Access Control Resources Host 88 Kerberos
Users Access Control Resources
135 RPC
Remote PC Access – a traditional Windows PC available to a
The credentials are validated against Active
HDX Technologies
remote user. 2 389 LDAP
Directory.
1 1 2 HDX Broadcast – ensure reliable, high-performance connectivity over any network 443 1494 2598 443 8008 FH IA
443 SSL/TLS
NetScaler
NetScaler Gateway forwards the user 6 NetScaler Gateway Virtual Desktop Native Windows Auth
3 Devices Receiver 464 Change Passwords
credentials to StoreFront. Delivery Group Active Directory
External Users HDX MediaStream – optimized technologies for playing video and audio recordings (External User)
80/443 636 LDAP SSL
XenApp & XenDesktop Components When StoreFront is in the same domain as the 4a Director Microsoft Azure
controller, StoreFront validates the user
3 6 1433 SQL Server
4a HDX RealTime – support for softphones, voice chat and unified communications like Skype
Delivery Controller – central infrastructure server responsible credentials against Active Directory and 4b
for Business
for distributing, enumerating and assigning resources. forwards to the Delivery Controller. 1494 Citrix ICA
4a 4b Active Directory
When StoreFront is not in the same domain as 8000 2598 Citrix Session Reliability
Citrix XenServer
StoreFront – an app store uniquely generated for each user the Delivery Controller, credentials are Pooled Windows Desktops HDX Mobile – optimizes the delivery of Windows apps to mobile form factor devices HTML5 Receiver
4b 389/636 Pool Master
based on user credentials. forwarded to the Delivery Controller for 6 (External User) 3268 LDAP Global Catalog
validation against Active Directory. StoreFront XenApp / XenDesktop
Controller 3269 LDAP Global Catalog SSL
NetScaler Gateway – encapsulates all XenApp & XenDesktop 80/443 STA 443
network traffic destined for the end point within SSL (443). The XenDesktop Delivery Controller retrieves a HDX Plug-n-Play – extends hosted virtual resources to support locally attached USB devices
5 list of available resources by querying the SQL 5 VMware vCenter 3389 Remote Assistance
StoreFront XenApp / XenDesktop
Database. Controller
Studio – an MMC-based admin console used to configure the
environment. 8008 ICA for HTML5
HDX RichGraphics – optimizes delivery of 2D and 3D graphics to remote devices
The list of available resources is sent to
6 StoreFront, which populates the user s Citrix
SQL Database
1433 8000 NetScaler Load Balancing Monitor
Microsoft SCVMM Server
Director – a web-based support console used to monitor and Receiver, Windows Start Menu or browser 80, 443, or custom -
troubleshoot the environment. HDX WAN Optimization – optimizes bandwidth requirements, allowing access from satellite STA Secure Ticket Authority
and branch office locations
Database – a Microsoft SQL instance used to store all 8100 WCF
configuration and usage information for the environment.
HDX Adaptive Orchestration – dynamically integrates all HDX Technologies based on host, SQL Database Licenses LS 27000, 7279, 8083 - License Server
Studio Amazon AWS
Virtual Delivery Agent – installed on each resource, it enables a network and device
resource to register with the delivery controller, allowing users FH 3224-3324 - Framehawk
to request a session.
IA 16500-16509 – ICA Audio
Machine Catalog – collections of virtual or physical machines,
managed as a single entity.
Session Launch ICA Protocol
Delivery Group – identify which users can access which
desktops/applications within which machine catalog.
When the user selects a resource from The ICA protocol integrates the different HDX technologies into the network stack by use of virtual
1 Receiver, the request is sent to StoreFront channels.
Receiver – installed on each end point device, provides users through NetScaler Gateway.
Networking Traffic and Ports: XenApp & XenDesktop Service on Citrix Cloud
with secure access to app and desktop resources Users Access Control Resources Drives
Skype
StoreFront forwards the resource request to Printing
80 HTTP
2 Multitouch
the Delivery Controller. Keyboard /
Mouse Audio
Users Access Control Resources Host 389 LDAP

3
The Delivery Controller queries the SQL
Database to determine an appropriate host to
1 1 7 9 ICA Clipboard

Smartcards
Seamless
Windows
Adaptive
Display 443 SSL/TLS

XenApp & XenDesktop Cloud Components fulfill the request. Mobile Multimedia 1494 Citrix ICA
6 NetScaler Gateway Sensors
Devices Flash
The Delivery controller sends the host and Delivery Group Pooled Windows Desktops Generic USB 2598 Citrix Session Reliability
4 External Users 443 443
443
Citrix Cloud – A type of hybrid cloud deployment where the connection information to StoreFront (443).
control-layer items are hosted and managed by Citrix. NetScaler Microsoft Azure 3268 LDAP Global Catalog
8 The ICA protocol utilizes adaptive transport orchestration to send the packets across the network with XenApp & XenDesktop
StoreFront requests and receives a one-time- 1 6 either TCP or EDT (Enlightened Data Transport – Citrix proprietary intelligent UDP-based transport Receiver Gateway Service
Cloud Connector – provides the link between resources hosted 5 (External User)
Service 8100 WCF
use ticket via the Secure Ticket Authority. protocol), based on network conditions and capabilities. 389 3268
on-premises/cloud with the XenApp and XenDesktop service
hosted on Citrix Cloud. Active Directory Citrix XenServer
AD 123 – W32Time
StoreFront generates a launch file, including Virtual Desktop Pool Master 135 – RPC
2 5 2598
XenApp and XenDesktop Service – an offering within Citrix 6 the ticket information, which is sent to the user 464 – Kerberos
Drives
Cloud where Citrix manages the deployment, management, through NetScaler Gateway. Skype 49152-65535 – LSA, SAM, Netlogon
fault tolerance of the control layer components. 4 Printing AD 1494 389 – LDAP
Multitouch
StoreFront VMware vCenter
7
Citrix Receiver uses the launch file and makes a
connection to the NetScaler Gateway (443).
XenApp / XenDesktop
Controller
Adaptive
Enlightened
Keyboard /
Mouse Audio
80 636 – LDAP SSL
3268 – LDAP Global Catalog
Secure Browser Service – an offering within the Citrix Cloud
providing simple and secure remote access to web
3
Transport
Data Transport ICA Clipboard

Smartcards
Seamless
Windows
Adaptive
Display HTML5 Receiver
(External User)
3269 – LDAP Global Catalog SSL
53 – DNS
applications. (TCP or EDT)
NetScaler Gateway validates the ticket with the Mobile Multimedia Microsoft SCVMM Server 88 – Kerberos
8
STA (80 or 443) Sensors Cloud 445 - SMB
NetScaler Gateway Service – an offering within the Citrix Cloud Generic USB
Flash
Connector
providing secure VPN access to XenApp, XenDesktop and
NetScaler Gateway initiates a connection to
XenMobile applications SQL Database
9 the resource (1494 or 2598) on the user s
behalf. Amazon AWS

© Copyright Citrix 2017 Version 1.02