Professional Documents
Culture Documents
• User Experiences
• MultiGeo Zones
• Application Limits
• Storefront 3.5
• AppDisks
• Best Practice
XenApp and XenDesktop
Improvements
• Platinum Feature
• Reduce Helpdesk Calls
• Instantly unlock accounts
• Additional Security Questions
• Aimed at XenApp 6.5
organizations that want to move to
StoreFront while retaining SSPR
Self Service Password Reset
XenApp 6.5
SQL Database
Data Collector
XenApp 6.5
SQL Database
SSPR AppCenter
Server 2008R2
AppCenter 6.5
Single Sign On 5.0
Device, app and cloud flexibility
Secure Browser
StoreFront XML
(80)
XML
(443)
Control
SQL
(1433)
Controller SQL Server
Receiver for HTML5
• To create URLs that can be linked from other websites, use the “Add Shortcuts to
Websites” feature of Receiver for Web
Create Shortcut URLs – Advanced Option
SQL
Delivery Controller
Headquarters
Physical PC Windows Desktop
Satellite Satellite
Zones
StoreFront
StoreFront StoreFront
Primary Zone
Satellite Satellite
Connection Leasing
StoreFront
XML File
19
Failover
SQL
Delivery Controller
Headquarters
Physical PC Windows Desktop
Satellite Satellite
XenApp & XenDesktop
Hybrid deployment
Primary Zone
XenApp Zone 1 XenApp Zone 2 XenApp Zone 3 XenApp Zone 4 XenApp Zone 5
Workspace Cloud
Control Plane
XenApp Zone 1 XenApp Zone 2 XenApp Zone 3 XenApp Zone 4 XenApp Zone 5
• Satellite Zones with no local Controller or Storefront server experience a single point of failure if
the WAN connection is interrupted
• Lack of database replication to satellite sites with Local Controllers introduces a reliance on
Connection Leasing to reconnect to applications launched within the past 2 weeks (default
value). The leasing cache value can be modified if required.
• After upgrading from XA/XD 7.6.300 to XA/XD 7.8, the MultiGeo Zones feature does not appear
in Citrix Studio
– To resolve this behavior, in an Elevated rights PowerShell Window, navigate to “C:\Program
Files\Citrix\XenDesktopPoshSdk\Module\Citrix.XenDesktop.Admin.V1\Citrix.XenDesktop.Admi
n\StudioRoleConfig” and run the following
– Import-AdminRoleConfiguration .\RoleConfigSigned.xml
Application Limits
Application Limits allows for the admin or support team to configure an application
to launch a specific number times, either for the user (single launch) or for the
Delivery Group.
Application Limits
Why would a customer use this feature?
This feature reintroduces the ability for administrators to allow multiple warnings to
users prior to rebooting the server.
Multiple Reboot Warning and Schedules
Why would a customer use this feature?
Previously, the Reboot Warning would only occur a single time 5 minutes prior to
the reboot occurring. This could potentially cause lost work if the end-user did not
see the initial warning or quickly dismissed it. With the multiple reboot warnings,
the end-user would be reminded every 5 minutes to save their work.
Multiple Reboot Warning and Schedules
How do I configure this feature?
• If older VDA remains in updated (XA/XD 7.8) site or if newer VDA is in non-
updated site, repeated reboot warning messages will not work
• Notification frequency is only available in Studio if initial notification is set to 15
minutes
• Only applies to Server OS Delivery Groups
Contextual and Embedded Security
VDI Session Recording
• Enhanced auditing
– Monitor activity involving sensitive data
– Record admin screen for change management of critical systems
– Notify users of recording to help deter potential misdoing
Session Recording
Session
Recording Player
XenApp Servers
Session Recording Agent
Session Session
Recording Server Recording
Database
XenDesktop VMs
Session Recording Agent
Session Recording
Policy Console
Citrix Director Enhancements
This feature allows the use of the currently logged on users’ credentials to pass-
through and log into the Citrix Director site.
Integrated Windows Authentication for Citrix Director
Why would a customer use this feature?
One less set of credentials for the administrator to enter when they look to monitor
their environment.
Integrated Windows Authentication for Citrix Director
How do I configure this feature?
• Director is…
– the name of our Help Desk Monitoring strategy.
– the component name of the Web Console used to display data.
– the Help Desk feature of XenApp / XenDesktop, i.e. up to 7 full days worth of data.
• EdgeSight is…
– The name of our Performance Analysis Monitoring strategy.
– The technical components that capture, aggregate and store data.
– Two platinum features that enables “long term” persistence of the data (more than 7 days)
– EdgeSight Performance Management
– EdgeSight Network Analysis using the Insight HDX feature from NetScaler
– Data Retention period is set to 90 days by default but can be extended to suit needs.
EdgeSight? Director? Insight? What’s what? (Part II)
Alerts &
Infrastructure
monitoring
SCOM Integration
What does this feature accomplish?
• This feature introduces the ability of Citrix Director to query the SCOM server for
any health and performance alerts that have been configured
• Allows for filtering and access to a historical view of SCOM alerts and trends
from within Citrix Director
SCOM Integration
Why would a customer use this feature?
• Ease of using a single interface (Citrix Director) to view all Microsoft (SCOM)
and Citrix alerts
• Alert details includes relevant knowledge base information
SCOM Integration
How does this feature work?
SCOM Integration
Limitations and Technical Risks
• Store creation
– Define default IIS website
– Advanced settings
Store-centric Administration Console
Authentication Service
• StoreFront 3.5
– Authentication managed
under each store
– Multi-store deployments
can use shared
authentication service
New Configuration Flow
• Consolidated
properties
– Integrates separate
dialogs together
– Allows for easier
administration
Advanced Store Settings
• Simplifies configuration
settings
• Includes many items
previously only
available via
PowerShell
Receiver for Web
• Deploy
– Can disable option to
download Receiver
– Can define Receiver
upgrade requirements
Receiver for Web
• Session settings
– Server communication
attempts
– Communication timeout
– Session timeout
– Sign in timeout
Receiver for Web
• Workspace Control
– All configurable within
management console
– Logoff action
– Automatic reconnection
– Reconnect and
disconnect button
configuration
Receiver for Web
• Client Interface
Settings
– Auto launch desktop
– Show desktop viewer
– Enable Receiver
configuration
– Apps and desktop view
options
Receiver for Web
• Advanced Settings
– Numerous settings
configurable in console
– Previously required
PowerShell
Authentication Methods
• Authentication via
– Active Directory
– Delivery Controller XML
Multi-Site Aggregation
Gateway Gateway
Application Application
XML XML
HDX HDX
StoreFront StoreFront
Application Application
Data Center A Data Center B Data Center A Data Center B
NetScaler gateway use cases
•Authentication only
– User authentication processed on
NetScaler gateway no HDX ICA Proxy
feature will be used.
App Management
How?
App Is the app compatible? Windows 10
Workspace
Application
Procure Validate Publish Retire
Life-Cycle
Patch
App Management
Step 1: Gather apps
App
App Management
Step 2: Analyze and remediate apps
App AppDNA
App Management
Step 3: Sequence and layer apps • App-V
– Automated sequence creation
– Supports app isolation
– No extra infrastructure required
Create – 1 sequence to many targets
App-V Sequence
• Manual Install
– Traditional approach
– App part of the desktop image
App AppDNA Manual Install
• AppDisk
– Integrated layer interoperability analysis
– No extra infrastructure required
Create – 1 layer to many targets
AppDisk Layer
App Management
Step 4: Publish & deliver apps Personal VDI
Create
App-V Sequence
Pooled VDI
Engineering image
• Image sprawl
IT image
• Duplicate application deployments
• Increased management time
Finance image
• Patch same app hundreds of times
App Layer
Corporate Layer
Operating System
Common application management beliefs
1. Managing base image and separate app layers is more time and cost efficient
2. Allows more modular assembling of desktops for multiple service offerings
3. App layers make provisioning desktops faster and easier
4. Managing app layers is easier than managing lots of traditional golden images
5. Snapping together a base image with a bunch of app layers will be reliable
6. I will have one way to package all apps for physical or virtual machines
Citrix AppDisk
Application layers for easy and efficient management
Dependencies
Priorities
Conflicts
• If only the OS was just DOS again where “app installs = xcopy”
• Best case is having 2 or 3 methods for packaging and delivering apps
– I don’t want to figure out which app goes with which method
– Too time consuming and error prone
AppDNA
Nucleus of Citrix Application Lifecycle Management
AppDisk
Citrix AppDisk with AppDNA
Three levels of analysis
Dependency
App Layer
App Layer
Corporate Layer
?
Operating System
App Layer Priority
Priority 4
Layer 1
Priority 3
Layer 2
Priority 2
Layer 3
Priority 1
Layer 4
App Conflicts
Layer 1
Layer 2
Conflict
Layer 3
Isolate
with App-V
Layer 4
Design considerations
• Deployment types
• Machine Creation Services and Provisioning Services
• Pooled virtual desktops without Personal vDisk
AppDisk
• Dual administration
– App-V Packages added to App-V Management Console
– Configure Studio, App-V Packages visible in Studio
• Challenges
– Reliance on the full App-V infrastructure model of deployment
– User permissions must be managed in the App-V Management console and Studio
Citrix App-V Integration (v2)
• Add Applications
• Associate with Delivery Group
• Select the Application Source
• Select appropriate applications
• Applications can now be accessed
Citrix App-V Integration (v2)
Considerations
• Source Types:
– From start menu
– Manually
– Existing
– App-V
ICA
SIP
User 1 VDA 1
RTP
Lync Online
ICA SIP
User 2 VDA 2
Microsoft Lync with Citrix Optimization Pack
ICA
User 1 VDA 1
RTP SIP
Lync Online
ICA
User 2 VDA 2