Citrix VDI question

Please can you confirm if DreamweaverMX v7/ColdFusion licensing methods are compatible with the Citrix VDI Setup and Windows 7 or are there compatability issues and it needs to run on Windows XP?

Similar Messages

Citrix VDI In A Box and Office 365

Hi Folks,
Wanting to see what experiences people have had when deploying Office 365 Pro Plus to Citrix VDI In A Box in terms of licensing, performance etc.
This topic first appeared in the Spiceworks Community

Hi Folks,
Wanting to see what experiences people have had when deploying Office 365 Pro Plus to Citrix VDI In A Box in terms of licensing, performance etc.
This topic first appeared in the Spiceworks Community

DSfW and Citrix VDI-in-a-Box/Kaviza/Vertex DTAgent

Greetings,
I am attempting to connect an evaluation VDI-in-a-Box to a DSfW environment.
I have successfully joined the appliance to a DSfW domain after applying all patches to the DSfW server.
All appears well starting out with the setup. However, I have observed the following problem.
Normal Scenario
In a Microsoft AD Domain, the virtual desktop exhibits no problems after the Citrix Desktop Agent (dtagent) is installed.
DSfW Scenario
Joining the virtual desktop to the domain exhibits no problems until after the Citrix Desktop Agent is installed. After installation of the dtagent, all user profiles stop functioning after reboot. As a result, many services fail during boot, and logins no longer function with various errors including "User Profile Service Failed the Logon," "Access Denied," and "RPC Service is Unavailable." Safe Mode also fails with the system rebooting before a logon screen appears.
I am looking for insight into this problem and am wondering if anyone on the list can point me in the right direction.

Hi,
I have tried this already with good and bad result.
My problem was the following, with a "old" tree without the country top object there was no way to to provisioning vdi-in-abox desktops, you have to be able to do a ldap search in the format cn=domain,cn=ad and that does not work if you install dsfw in a existing tree.
But if you are aware of that and create a new dsfw tree with the country top object, it should work fine or at least did that for me after getting some help from Novell's dsfw team.
I did have issues using the Swedish spelled standard administrator after changing to English spelled administrator (and no non English characters in the password), but this was more a Kaviza thing I think.
So I can say that it should work with dsfw and I have not see the problem you are facing, so I'm not to much help to you there.
But at least you know that it is possible.
I had no issues installing the desktop agent in Windows 7 (x86 and x64) or Windows XP.
Best regards
Lennart
Originally Posted by shawniverson2
Greetings,
I am attempting to connect an evaluation VDI-in-a-Box to a DSfW environment.
I have successfully joined the appliance to a DSfW domain after applying all patches to the DSfW server.
All appears well starting out with the setup. However, I have observed the following problem.
Normal Scenario
In a Microsoft AD Domain, the virtual desktop exhibits no problems after the Citrix Desktop Agent (dtagent) is installed.
DSfW Scenario
Joining the virtual desktop to the domain exhibits no problems until after the Citrix Desktop Agent is installed. After installation of the dtagent, all user profiles stop functioning after reboot. As a result, many services fail during boot, and logins no longer function with various errors including "User Profile Service Failed the Logon," "Access Denied," and "RPC Service is Unavailable." Safe Mode also fails with the system rebooting before a logon screen appears.
I am looking for insight into this problem and am wondering if anyone on the list can point me in the right direction.

Citrix VDI-in-a-Box and DSFW

Hi,
I'm trying to authenticate vab to a fresh installation of DSFW in an existing tree on OES11 SP1 (with latest patches), but vab failed to find the domain. I took a LDAP trace and it failed when it search for :
Filter: (&(objectClass=domain)(distinguishedName=dc=exampl e, dc=com))
I tried the ldap request manually and it finds no result. If I remove the space between "dc=example," and "dc=com", it works as expected. I verified the schema and distinguishedName is declared as SYN_DIST_NAME, which seems correct and should not care about spaces between commas. I tried with another attribute declared as SYN_DIST_NAME on eDirectory and it works as expected with or without spaces.
Is this a known bug of DSFW? What could I do to circumvent the problem?
Thanks,
Nicolas

Originally Posted by nicolas_michaux
Hi,
I'm trying to authenticate vab to a fresh installation of DSFW in an existing tree on OES11 SP1 (with latest patches), but vab failed to find the domain. I took a LDAP trace and it failed when it search for :
Filter: (&(objectClass=domain)(distinguishedName=dc=exampl e, dc=com))
I tried the ldap request manually and it finds no result. If I remove the space between "dc=example," and "dc=com", it works as expected. I verified the schema and distinguishedName is declared as SYN_DIST_NAME, which seems correct and should not care about spaces between commas. I tried with another attribute declared as SYN_DIST_NAME on eDirectory and it works as expected with or without spaces.
Is this a known bug of DSFW? What could I do to circumvent the problem?
Thanks,
Nicolas
Hi Nicolas,
Thanks for reaching to us. Please help us understand the following,
1. Whether if this search is from XenDesktop and if so, its release version OR any other specific product ?
2. Operation that you are attempting here which is leading to this failure.
3. Whether if this search is done by the product internally without any manual input or if it is the user input that is taken by the product that comes as filter?
4. Copy us the exact LDAPSEARCH command that you are using to reproduce the behavior and the ndstrace output you are mentioning.
We tried the following search and found it working where there is space in filter DN as you mentioned.
>> ldapsearch -D"cn=administrator,cn=users,dc=seal,dc=com" -w '*******' -s sub -b"dc=seal,dc=com" "(&(objectClass=domain)(distinguishedName=dc=s eal, dc=com))" -Z dn distinguishedname
----------------------- ndstrace snippet --------------------------------
537011968 LDAP: [2013/01/15 10:36:29.45] (127.0.0.1:40035)(0x0003:0x63) Search request:
base: "dc=seal,dc=com"
scope:2 dereference:0 sizelimit:0 timelimit:0 attrsonly:0
filter: "(&(objectClass=domain)(distinguishedName=dc=s eal, dc=com))"
attribute: "dn"
attribute: "distinguishedname"
# seal.com
537011968 LDAP: [2013/01/15 10:36:29.51] (127.0.0.1:40035)(0x0003:0x63) Sending search result entry "dc=seal,dc=com" to connection 0xe50e000
537011968 LDAP: [2013/01/15 10:36:29.51] (127.0.0.1:40035)(0x0003:0x63) Sending result reference to connection 0xe50e000
Thanks
Kamalesh

App-V 4.5 SP1 - SP2 Upgrade Question

Hello,
I am taking over our App-V environment and trying to get us all up to date before beginning our 5.0 migrations (and trying to become familar with the products in general). All clients are currently on 4.6 SP3 (HF1 is out there but not sure it's needed
at this time) and sequencers on 4.6 SP2 (SP3 available but not sure if it's needed at this time) but our Management servers are still on 4.5 SP1. I want to update our Management servers to 4.5 SP2 (or SP2 HF2) ASAP but have a few questions. We
are load balanced behind an ACE (2 servers total) and we have a very large Citrix/VDI footprint. We are also heavily relying on Shared Cache.
1 - Do both servers need to have services stopped during the upgrade and can I upgrade 1 at a time while the second is still used for connections? Thinking of doing one server at a time and ensuring it works before upgrading the second, assuming they
can be different versions during the upgrade.
2 - Does traffic need to be stopped via the load balancer or stopping the services OK?
3 - What all on the DB needs to be updated? Any big issues with this part?
4 - Anything different need to be done since we are running with Shared Cache mostly?
I know we are on an older version so hoping I can get some assistance to get us on 5.0 ASAP. Just not sure with all of our moving parts (Load balanced behind an ACE, Citrix footprint, Shared Cache, etc) how tricky this will be so any suggestions
would be greatly appreciated.
Thank you!

Hi,
the challenging point could be the database. I don't know if 4.5 SP2 would introduce any modification to the database (and if so... how 'old' SP1 servers would deal with that), but in theory it could happen that you upgrade server 1 (that you removed from ACE
load balancing before), upgrade it and thus silently apply a change to the database.
If the still unpatched server2 connects to that DB there could be issues.
As in Shared Cache mode a connection to the App-V servers is essential you should test that process in a test lab. Create a backup of your database, and use that along with two App-V servers to practice the migration in the lab.
If you can't do that, find a maintenance window that is long enough run and roll back.
Falko
Twitter
@kirk_tn   |   Blog
kirxblog   |   Web
kirx.org   |   Fireside
appvbook.com

VDI Access Control with ISE

Hi Guys,
Can ISE do the Access Control for the VDI users with thinclients like PCs? Now we wanna to setup the 802.1x authentication for the VDI users, but i'm not sure if this can be done by ISE. Do we just need to configure the access switch ports to open 802.1x as usual and the switch then will relay the radius to ISE?

Rodrigo,
You are right if it is using the same IP+MAC, then I don't think the identity-based firewall feature of the ASA will work for you unless you can set the Citrix VDI to use DHCP to give a unique IP for each desktop.
This is how it worked with vmware::
1. Single VDI pool with a unique IP for each desktop assigned by DHCP on the same subnet.
2. User logs in to floating desktop and Windows login server is updated with username and IP
3. Cisco Directory Agent (CDA) gets the username/IP mapping from Windows login server.
4. Cisco ASA is configured to allow access based on Windows AD group X.
5. ASA gets username/IP mapping from CDA and checks AD directly for group assignment.
6. ASA enforces access policy on the IP that is currently used by the user of group X. Users of groups Y and Z would have different policies.
NOTE: Anyconnect is not used with identity-based firewall for Windows devices. If used for 802.1x (wired or wireless) or any other supplicant, it does allow Identity-based firewall to work with non-windows devices. If Cisco would only enhance RA VPN to work when using ISE authentication with windows domain detection or assignment, it would be a complete identity-based solution. RA VPN can work if authenticating directly with AD.

VDI in a box cannot connect DSfW

Dear All ,
I try VDI in a box user database to connect DSfW Domain ,
but they will show error " Could not connect to the user database"，
have any one Has been set user database connect DSfW Domain?
Please tell me how config it .Thanks.

Hi,
I got same problem also.
We using VDI-in-a-Box 5.2 and DSfW of OES11 SP1.
When I configure VDI-in-a-Box 5.2 initial set up on web console.
I got error message "Could not connect to the user database at xxx.xxx.xxx.xxx with user administrator in domain xxxxx.com."
Vovo.
Originally Posted by rkamalesh
Hi John,
Please share with us the setup details
1. OES release version with patch level
2. Citrix VDI version
3. If any other details that will help.
Please confirm if you are entering the IP address of your Domain Controller/DNS Server, the domain name, and the corresponding administrative login credentials in the user database option. The domain administrator must be the Database administrator too.
If you are not able to figure out the reason for failure, request you to raise an SR with NTS. Our support will be able to resolve it.
-Kamalesh

ISE integration with Mobile Device Management ( MDM ) help required

Dear Techies,
     Am here bring to your notice an different issue and no much resources to support even in PEC or Cisco Document.
     We are conduction a Proof Of Concept (PoC) on Secure Bring Your Own Device ( BYOD ) using Cisco ISE and gonna test all the scenarios like Wired, Wireless and VPN user access.
Setup Brief :
=========
      Our Setup has ISE VM acting as Admin, Monitor and Profiling Device, we have NAC 3315 physical Appliance as Inline posture Device, Wireless LAN controller, Access point and the Identity source as Microsof Active Directory
     Having Plans to Integrate Mobile Device Management ( MDM ) and Citrix VDI setup also.
Activity Brief:
=========
     As of now we have tested the Wired Scenario Authentication and authorization for guest users and gonna carry out the profiling and posture.
Clarifications Required
================
Wired Scenario - Require some configuration / steps on how to carryout posture for the guest wired users i.e. LAPTOP.
Wireless Scenario
MDM can be integrated to ISE ?
How the MDM can be integrated to Cisco ISE configuration or Guide to show the same?
What is the demarcation between MDM and ISE ( i.e. What is the role of ISE and MDM on Mobile Devices ) ?
If MDM is available so then when the control of ISE ends, does MDM do management or ISE will do management of the devices ?
Is MDM will do client provisioning or ISE should do ?
Is MDM send or update patches of Mobile Devices ?
As of now these are the scenarios, kindly revert if any good documents to show this or share your expertise on the Integration Part.
Thanks for Reading...
Arun

I would like to avail your valuable inputs to understand on the Client provisioning part for the Mobile Devices/ Laptop. I understand from your reply that MDM integration is not available in the current release ISE 1.1 - That is correct.
Kindly let me know your views or any documents on the following scenarios with the current release in mind
1. User with Mobile devices connecting to Wireless ( both Employee and Guest ) , How the Flow differs for the Employee and Guest. How the client provisioning is done ( i.e. Like Posturing or Compliance Check ).
The posturing and compliance check is done based on the user authentication information (i.e. AD memberOf vs Guest user) combined with the users endpoint (windows, mac osx, or a mobile device), ISE then has a few decisions to make based on the authorization policies. For example, if a Domain User coming from a Windows 7 machine joins the network, then can either use the nac agent, or the web agent. Then you can scan for registry settings, file settings, program requirements, hotfix compliance...and the list goes on. If the user fails a check then you can either assign an acl for the user so they only have guest access, or you can place them into a remediation vlan the options are entirely up to the requirements and however the solution is implemented.
2. User with Laptop connecting to Wireless ( both Employee and Guest ). How the client provisioning is done ( i.e. Like Posturing   or Compliance Check ).
Guests are usually redirected to the guest portal which they authenticate and their user group falls within the Guest container that is on the ISE internal database, that is usually coupled with an authorization profile that grants them internet access. For the client provisioning, that is usually done based on the operating system, via profiling (dhcp, and user agent string., netmap...etc) and can be fine tuned for all laptops or to a specific set of users based on their group membership.
3. What are advantages of having ISE also in place for Mobile devices, since most of the Mobile related tasks ( like Authentication, Authorization, Profiling and Posture ) are carried out by MDM. I am checking for the significant advantage of having ISE for Client network having only Mobile devices. Kindly clarify.
Currently the advantage of Cisco ISE is that it supports profiling within wireless and really fits well within a network that has mostly Cisco products since they are all part of of the Borderless security initiative being driven on the backend. The product teams for wireless, wired, security (vpn..etc) and ISE are pretty close in building their solutions so that you can get connected with any device any where (sorry for the sales pitch). The latests wireless code is improving and is going to have support similar to the ios sensor for wired devices where dhcp, cdp, and other attributes can be sent in the radius packet for better profiling decisions. With integration for an MDM platform coming soon, and also support for TACACS rumored (have to verify with your account rep) you have options that really stand out from a unit that only supports MDM. Cisco ISE also comes with a wireless product ID so that makes the budget work when it comes to deploying ISE if you arent looking for enforcement on your wired devices.
4. Do you recommend 802.1X Authentication to use for the Employee and Contractor? The Guest user authentication as Open ?
For internal users and vendors the best option by far is dot1x, almost all operating systems are capable of performing dot1x and the 1.1.1 MR has a piece now that can provision the supplicant for the users, by using scep to enroll certificates or configure peap settings.
There is a feature within the guest portal that allows you to statically assign guests into endpoint group, that feature is called device registration web authentication. It seems like an open network but uses mac filtering to assign these devices to an endpoint without requiring users to enter any credentials. They are presented with an AUP page, once they accept their mac address is mapped to the endpoint group
5. How can we ensure the Encryption of traffic from the Guest user to the NAD ( Network Access devices ) ?
This may be a wireless question but I am sure the encryption is done using AES and using dot1x as the key management here is a brief background for this - http://www.cisco.com/en/US/tech/tk722/tk809/technologies_configuration_example09186a00807f42e9.shtml#L2
You can also use the anyconnect client which can provide macsec which is layer 2 encryption for wired - http://www.cisco.com/en/US/prod/collateral/vpndevc/ps6032/ps6094/ps6120/qa_c67-622477_ns1049_Networking_Solutions_Q_and_A.html
6. We are also looking for VDI ( Citrix, VMware ) solution for the client ( both Employee and Guest ) , how ISE can play a role in securing the VDI environment.
For most thin clients you can perform dot1x authentication on the device itself, however that is something the manufacturer will have to support. This is a little gray for me.
7. Is that any integration required with Citrix or VMware. How the VDI can be offered based on the User role ( i.e. Employee, Contractor or Guest ), since Guest database is available only with ISE, how the checks are made from the VDI environment.
IN ISE there is an identity sequence which can authenticate users in AD first, if the user is not found then it can look in the internal database.
Our solution demands MDM in the integrated solution, As on today ISE cant be integrated with MDM. so what kind of solution we can propose to have MDM and Cisco ISE .Do the clients now enter the network should have already installed the MDM agent (or) any other way of pushing the same to the Client.
Today there is no integration between the devices, the last release time I heard was December for this feature. However it would be best to confirm with your Cisco Account rep on this issue.
Thanks,
Tarik Admani
*Please rate helpful posts*

This copy of Microsoft Office 2013 cannot be used on a computer running Terminal Services" error message when you try to open the Click-to-Run version of an Office 2013 program or suite on a terminal server

Hi All,
I have Citrix VDI (Virtual Desktop Infrastructure) Implemented
in my company and installed few Applications on App Server lets say.... MS Office 2013, filzialla, putty, etc...
I assigned these apps to the users through CITRIX STUDIO, when I try to use these apps. on VDI everything is working fine only when i tried to open Word, Excel or Powerpoing, outlook it throws error as
""This copy of Microsoft Office 2013 cannot be used on a computer running Terminal Services" error message when you try to open the Click-to-Run version of an Office 2013 program or suite on
a terminal server"" and apps gets closed.
Please help me on this ASAP.
Thanks & Regards,
Sachin Shinde

Hi,
As mentioned in ths article below, run for Office 365 products on to a Remote Desktop Session Host server is not supported. You can install Office products for Office 365 to a virtual desktop, but the virtual desktop must be assigned to a single user.
http://technet.microsoft.com/en-us/library/jj219423(v=office.15).aspx
Regards,
Melon Chen
TechNet Community Support

Frontrange HEAT

Please note for this recipe I will provide the instructions for 4.6 SP2. These instructions can also assist if using App-V 5.0. An important thing to note. You should ensure you have any and all application fixes provided by the vendor and also Crystal Reports
is a pre-requisite for some of the reporting functions in this application
Step 1 - Prepare the sequencing machine by adding the following Exclusions to the Exclusions list:
Launch the App-V Sequencer. Browse to Tools-->Options
%CSIDL_COMMON_APPDATA%\Microsoft\RAC
%CSIDL_WINDOWS%\Installer
\REGISTRY\MACHINE\Software\Microsoft\Windows\CurrentVersion\Internet Settings
\REGISTRY\MACHINE\Software\Microsoft\Windows\CurrentVersion\Uninstall
\REGISTRY\MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Internet Settings
\REGISTRY\MACHINE\Software\Wow6432Node\Microsoft\Windows\CurrentVersion\Uninstall
Step 2 - Sequence the Application
Choose all defaults in the App-V Sequencing Wizard until you get to the window prompting you to provide a Package name. Name the package accordingly e.g. FrontRange HEAT 2007. Take note of the Primary Directory e.g. Q:\FrontRange HEAT as you'll want to install
the application here, if using 4.6. Click Next.
If you use App-V 5.0 your primary directory can be the Installdir for this applicaton which is C:\Program Files (x86)\FrontRange Solutions Choose Perform a custom installation. Click Next.
Install Crystal Reports required for your version of HEAT. Upon completion run Setup.exe. Ensure you select custom during the installation, For this application ensure it installs to the same directory as the Primary Directory. This installation should install
both the Call Logging feature and also the Alert Monitor. If you have a single Data Source for your company you can configure this now. Next you should Check the box to indicate the install has been completed once you have successfully installed the application.
On the next screen If you set the Data Source for the application, I would not launch the application at all, this is because it may authenticate and pull down your own information which you will not want other users to use. If you do not configure
the Data Sources as part of the sequence you should launch and Once at the login dialog you should close, this application requires authentication and you don't want to capture your own credentials. Click Next.
Next you can Edit the shortcuts if you require, for this I ensured only the Alert Monitor and Call Logging shortcuts were left in there and also ensured there's no Desktop Shortcuts.
Now you may launch to capture the Feature Block 1 (What will appear first to the user) Here I launch the application and then close them again, not much for this one because of the login as mentioned earlier.
You can then either save or continue to modify. Continue to modify. You will now see the Sequencer Interface with multiple tabs e.g. Deployment, Files, Virtual Registry etc. You should check your Virtual Registry for any hardcoded references or references
to your machine name and username. Delete if they exist. If using App-V 5.0 it might be a good idea to select to download the application autmotically due to it's size.
When complete you may select File-->SaveAs
Save the application to the relevant path (what you set in the Deployment tab)
Step 3 - Application Complete
You can now deploy the application however you see fit. I hope this is helpful for somebody!
PLEASE MARK ANY ANSWERS TO HELP OTHERS Blog:
rorymon.com Twitter: @Rorymon

Thanks a lot for this article, it has helped me with my first version of Heat. I know it's been a while, and not sure if you'll see this comment, but while sequencing, since i did not open the app and log in as I was using a packaging account, Heat
is extremely slow.
I was a bit confused when you said " If you set the Data Source for the application, I would not launch the application at all." Where exactly do i do this, i just followed the prompts while sequencing without opening the app as i didn't want it pulling
any credentials.
You also say it might be a good idea to select to download the application automatically due to it's size, it that different from downloading it from the client to make available for offline use?
I am using Appv-5 publishing through Citrix VDI.
Thanks!

Autovue desktop deployment installation on terminal.

Hi,
We are trying to install Autovue desktop deployment installation on citrix - VDI solution.
It seems like the installation installs files on the user that run the installation and when other users are trying to open autovue they are getting error message.
I tried to put config.properties file on each %userprofie% but it doesn't help.
Do you know if there are special installation instructions for installing on terminals server / citrix?
Regards,
Sagi.

From the KM article
Using AutoVue Desktop Deployment on Citrix(Doc ID 1905348.1)
Citrix is not a supported environment which means that we can't log bug when an issue is only reproducible in a Citrix environment.
Putting %userprofie% in the config.properties is useless as it is a WINDOWS convention not a java one
it is also not a must that all user have a config.properties (c:\Users\username\AutoVue\Offline_Files\Config.properties), not for Desktop deployment (for OCX, it is)
You will need to look in to the logs (see related KM notes articles (Enabling Logging when Using AutoVue Desktop Deployment(Doc ID 1342222.1)
and debug it from there, it will probably be a file permission issue

PIX latency issue

Hi
I have the following device
Cisco PIX Security Appliance Software Version 7.2(4)
Device Manager Version 5.2(4)
Compiled on Sun 06-Apr-08 13:39 by builders
System image file is "flash:/image.bin"
Config file at boot was "startup-config"
FW1-Primary up 1 year 161 days
failover cluster up 2 years 32 days
Hardware: PIX-525, 256 MB RAM, CPU Pentium III 600 MHz
Flash E28F128J3 @ 0xfff00000, 16MB
We have a 100Mbps uplink to the internet, yet we always seem not to get the full bandwidtth. I've ruled out a number of other factors, the uplink isn't over utilized I've confirmed this by placing myself outside the FW and I get alot more bandwidth. There's no interface errors, nor high CPU or memory utilzation. I'm just wondering if excessive disabled rules would play a factor? Are usual average rx is around 12Mbps and tx is 5Mbps, yet download speeds are crazy low.
Any thoughts, thanks
John

John,
Its unlikely you will ever get "the full bandwidth" for so many reasons. most ISP oversubscribe their bandwidth. we just got one large one to admit they have a deal with HULU and youtube to carry their traffic first, causing our citrix vdi traffic to crawl all day between NJ and Missiouri.
So, dont worry too much about the fact you are not getting "the full bandwidth".
I would go to speedtest.net for your area of the country, run 4-5 speed tests and figure out what you can expect. keep in mind, tcp rtt has a huge effect on how much utilization your tcp/ip stack can load on the network.
finally, if you are concerned about the pix -
put a server right on the outside and do a bidirectional iperf test with a 1M window size to the server right outside the pix from your inside client
on server --
c:\users\admin\downloads\iperf -s -w 1M
on client
c:\users\admin\downloads\ipsef -c 65.10.10.10 -w 1M -d
(where 65.10.10.10 is the server's ip on the outside of your Pix)
if you get a really low speed - like 20mpbs - check the speed and duplex of all devices in the path.
I recommend auto/auto on all server, pix to switch, pix to router links.
thanks,
Joe
19366

Citrix XenApp 7.6 & VDI Plugin works for some users but not others

I have a customer with XenApp 7.6 and Lync 2013 SE. They have two users homed to the same pool, both with the same VDI client policy however on one account the VDI pairing works fine over Citrix XenApp, but the other the pairing fails. On both accounts I
get prompted for the credentials, however the second account will not authenticate. I have tried domain\username, domain.local\username and [email protected] but all fail then I get the red cross through the VDI icon.
This is all from the same Windows 7 machine, all user accounts are within the same AD domain.
If anyone has seen similar before any assistance would be greatly appreciated as I am banging my head against the wall!
Lync Tips Blog - [email protected] - If this post has been useful please click the green arrow to the left or click 'Propose as answer'

Here is some further info:
360admin - can sign in to Lync and pair correctly
msltest - can sign into Lync but the credentials are not accepted for pairing
Identity : CN=360 Admin,CN=Users,DC=localdomain,DC=co,DC=uk
VoicePolicy :
VoiceRoutingPolicy :
ConferencingPolicy :
PresencePolicy :
DialPlan :
LocationPolicy :
ClientPolicy : HEADSET_USER
ClientVersionPolicy :
ArchivingPolicy :
ExchangeArchivingPolicy : Uninitialized
PinPolicy :
ExternalAccessPolicy :
MobilityPolicy :
PersistentChatPolicy :
UserServicesPolicy :
HostedVoiceMail :
HostedVoicemailPolicy :
HostingProvider : SRV:
RegistrarPool : LyncFEG.localdomain.co.uk
Enabled : True
SipAddress : sip:[email protected]
LineURI : tel:+44**
EnterpriseVoiceEnabled : True
ExUmEnabled : False
HomeServer : CN=Lc Services,CN=Microsoft,CN=1:3,CN=Pools,CN=RTC Se
rvice,CN=Services,CN=Configuration,DC=localdomain,DC=co,D
C=uk
DisplayName : 360 Admin
SamAccountName : 360Admin
PS C:\Users\360admin> Get-CsUser -Identity "msl test"
Identity : CN=MSL Test,DC=localdomain,DC=co,DC=uk
VoicePolicy :
VoiceRoutingPolicy :
ConferencingPolicy :
PresencePolicy :
DialPlan :
LocationPolicy :
ClientPolicy : HEADSET_USER
ClientVersionPolicy :
ArchivingPolicy :
ExchangeArchivingPolicy : Uninitialized
PinPolicy :
ExternalAccessPolicy :
MobilityPolicy :
PersistentChatPolicy :
UserServicesPolicy :
HostedVoiceMail :
HostedVoicemailPolicy :
HostingProvider : SRV:
RegistrarPool : LyncFEG.localdomain.co.uk
Enabled : True
SipAddress : sip:[email protected]
LineURI : tel:+44******
EnterpriseVoiceEnabled : True
ExUmEnabled : False
HomeServer : CN=Lc Services,CN=Microsoft,CN=1:3,CN=Pools,CN=RTC Se
rvice,CN=Services,CN=Configuration,DC=localdomain,DC=co,D
C=uk
DisplayName : MSL Test
SamAccountName : MSLTest
PS C:\Users\360admin> Get-CsClientPolicy
Identity : Tag:HEADSET_USER
PolicyEntry : {}
Description :
AddressBookAvailability : WebSearchOnly
AttendantSafeTransfer :
AutoDiscoveryRetryInterval :
BlockConversationFromFederatedContacts :
CalendarStatePublicationInterval :
ConferenceIMIdleTimeout :
CustomizedHelpUrl :
CustomLinkInErrorMessages :
CustomStateUrl :
DGRefreshInterval :
DisableCalendarPresence :
DisableContactCardOrganizationTab :
DisableEmailComparisonCheck :
DisableEmoticons :
DisableFeedsTab :
DisableFederatedPromptDisplayName :
DisableFreeBusyInfo :
DisableHandsetOnLockedMachine :
DisableMeetingSubjectAndLocation :
DisableHtmlIm :
DisableInkIM :
DisableOneNote12Integration :
DisableOnlineContextualSearch :
DisablePhonePresence :
DisablePICPromptDisplayName :
DisablePoorDeviceWarnings :
DisablePoorNetworkWarnings :
DisablePresenceNote :
DisableRTFIM :
DisableSavingIM :
DisplayPhoto : PhotosFromADOnly
EnableAppearOffline :
EnableCallLogAutoArchiving : True
EnableClientMusicOnHold : False
EnableConversationWindowTabs :
EnableEnterpriseCustomizedHelp :
EnableEventLogging :
EnableExchangeContactSync : True
EnableExchangeDelegateSync :
EnableFullScreenVideo :
EnableHighPerformanceConferencingAppSharing : False
EnableHotdesking :
EnableIMAutoArchiving : True
EnableMediaRedirection : True
EnableNotificationForNewSubscribers :
EnableSkypeUI :
EnableSQMData : False
EnableTracing :
EnableURL :
EnableUnencryptedFileTransfer :
EnableVOIPCallDefault : False
ExcludedContactFolders :
HotdeskingTimeout : 00:05:00
IMWarning :
MAPIPollInterval :
MaximumDGsAllowedInContactList : 10
MaximumNumberOfContacts :
MaxPhotoSizeKB : 30
MusicOnHoldAudioFile :
P2PAppSharingEncryption : Supported
EnableHighPerformanceP2PAppSharing : False
PlayAbbreviatedDialTone :
SearchPrefixFlags :
ShowRecentContacts : True
ShowManagePrivacyRelationships : False
ShowSharepointPhotoEditLink : False
SPSearchInternalURL :
SPSearchExternalURL :
SPSearchCenterInternalURL :
SPSearchCenterExternalURL :
TabURL :
TracingLevel : Light
WebServicePollInterval : 00:01:00
HelpEnvironment :
MSL Test Login
TL_ERROR(TF_SECURITY) [3]21A4.17E8::03/25/2015-22:39:21.107.00005d39 (SIPStack,SIPAdminLog::WriteSecurityEvent:SIPAdminLog.cpp(319))[1363057693] $$begin_record
Text: Failed to validate user credentials
Result-Code: 0x8009030c SEC_E_LOGON_DENIED
Source: LyncEdgeG.localdomain.co.uk:49201
SIP-Start-Line: REGISTER sip:domain.com SIP/2.0
SIP-Call-ID: 2cab650cdf3e4d62aea1cb0c2166c07e
SIP-CSeq: 3 REGISTER
Lync Tips Blog - [email protected] - If this post has been useful please click the green arrow to the left or click 'Propose as answer'

Using Citrix Receiver with Firefox 30 to connect to VDI it fails. There is no error message appears. Running MS Windows 7 Professional.

Using Citrix Receiver 4.1 with Firefox version 30 on Windows 7 Professional to connect to VDI it does not connect. The ICA does not load. Tried all mentioned fixes found for this problem and nothing has resolved the problem. It worked successfully prior to Firefox version 30.
There is no error message.

Many site issues can be caused by corrupt cookies or cache.
* Clear the Cache
Press the '''<Alt>''' or '''<F10>''' key to bring up the tool bar.
Followed by;
Windows; '''Tools > Options'''
Linux; '''Edit > Preferences'''
Mac; ''application name'' '''> Preferences'''
Then '''Advanced > Network > Cached Web Content: Clear Now'''
and
* Remove Cookies
''This will log you out of all sites you're logged in to. ''
Press the '''<Alt>''' or '''<F10>''' key to bring up the tool bar.
Followed by;
Windows; '''Tools > Options'''
Linux; '''Edit > Preferences'''
Mac; ''application name'' '''> Preferences'''
Then '''Privacy.'''
Under '''History''', select Firefox will '''Use Custom Settings'''.
There is a button on the right side called '''Show Cookies'''.
If there is still a problem,
'''''[https://support.mozilla.org/en-US/kb/troubleshoot-firefox-issues-using-safe-mode Start Firefox in Safe Mode]''''' {web link}
While you are in safe mode;
Press the '''<Alt>''' or '''<F10>''' key to bring up the tool bar.
Followed by;
Windows; '''Tools > Options'''
Linux; '''Edit > Preferences'''
Mac; ''application name'' '''> Preferences'''
Then '''Advanced > General.'''
Look for and turn off '''Use Hardware Acceleration'''.
Poke around safe web sites and see if there is still a problem. Then restart

Architecture question, global VDI deployment

I have an architecture question regarding the use of VDI in a global organization.
We have a pilot VDI Core w/remote mysql setup with 2 hypervisor hosts. We want to bring up 2 more Hypervisor hosts (and VDI Secondaries) in another geographic location, where the local employees would need to connect desktops hosted from their physical location. What we don't want is to need to manage multiple VDI Cores. Ideally we would manage the entire VDI implementation from one pane of glass, having multiple Desktop Provider groups to represent the geographical locations.
Is it possible to just setup VDI Additional Secondaries in the remote locations? What are the pros and cons of that?
Thanks

Yes, simply bind individual interfaces for each domain on your web server,
one for each.
Ensure the appropriate web servers are listening on the appropriate
interfaces and it will work fine.
"Paul S." <[email protected]> wrote in message
news:407c68a1$[email protected]..
>
Hi,
We want to host several applications which will be accessed as:
www.oursite.com/app1 www.oursite.com/app2 (all using port 80 or 443)
Is it possible to have a separate Weblogic domain for each application,all listening
to ports 80 and 443?
Thanks,
Paul

Citrix VDI question

Similar Messages

Maybe you are looking for