XenApp Services Site
In Part 10, you learned to install and configure Citrix Secure Gateway 3.2 and test both external and internal secure access to published applications. In this Part, you will learn to create and configure a XenApp Services Site (XSS).
An XSS requires two items: the Citrix online plug-in client and the XSS created as part of Web Interface. XSS allows the option of installing icons on the desktop and/or the Start Menu. If you publish the server’s desktop, the online plug-in client can be installed on the server so users logging in to the server’s desktop will have their application icons ready for use. An XSS is required if you will be supporting the iPhone, iPod Touch or iPad or using Citrix Dazzle in your business. Configuring the iPad to use an XSS will be covered in Part 12.
Create XenApp Services Site
At the end of Part 10, you were at the server’s desktop. Start the Citrix Web Interface Management console. You are now at the Citrix Web Interface Management Console (Figure 11-1).
Click XenApp Services Sites in the left column and click Create site in the Actions column (Figure 11-2).
The Create Site wizard starts. Click Next (Figure 11-3).
Note: XenApp Services Sites were originally named PNAgent Sites. That is why most screens and configuration settings still use PNAgent.
Click Next (Figure 11-4).
Configure the XenApp Services Site
Make sure the Configure this site now is selected and click Next (Figure 11-5).
Change the Farm name from Farm1 to Learning and click the Add… button (Figure 11-6).
Note: The Farm name entered here has no relation to the XenApp farm you created in Part 5. Anything can be entered here for the Farm name.
Enter citrixone for the server name and click OK (Figure 11-7).
Click Next (Figure 11-8).
Note: In Part 5, you selected to share the XML Service Port between IIS and the XML Service. If the port number had been changed during installation or from the command line after installation, you would enter the new port number here.
Click Next to accept the default of Online (Figure 11-9).
Click Finish on the Confirm Settings screen (Figure 11-10).
You are now back at the management console with your Web Interface site created (Figure 11-11). Notice the new site picked up the SSL settings automatically.
Click the XSS in the middle column and then Authentication Methods in the right column (Figure 11-12).
Unselect Prompt, select Pass-through and click Properties (Figure 11-13).
Click Domain Restriction, click Restrict to the following domains and click Add… (Figure 11-14).
Type in citrixone and press Enter (Figure 11-15).
Click OK (Figure 11-16).
Click OK (Figure 11-17).
Click Session Options (Figure 11-18).
There are four sets of settings that can be configured (Figures 11-19 through 11-22). None need to be changed for our purposes. Feel free to make any changes you wish to see how they carry over for your environment.
Click Secure Access (Figure 11-23).
Click the Default/Direct line and click Edit… (Figure 11-24).
Select Gateway Direct from the dropdown list and click OK (Figure 11-25).
Selecting Gateway Direct will send to the client the external Public IP address of the Secure Gateway/Web Interface server instead of the internal Private IP address of the XenApp server.
Click Next (Figure 11-26).
Enter the FQDN that users will use to access the Secure Gateway/Web Interface server and click Next (Figure 11-27).
Click Add… (Figure 11-28).
Type in http://citrixone/scripts/ctxsta.dll and click OK (Figure 11-29).
Click Finish (Figure 11-30).
Click Shortcuts (Figure 11-31).
There are four sets of settings that can be configured (Figures 11-32 through 11-35). None need to be changed for our purposes. Feel free to make any changes you wish to see how they carry over for your environment.
Click Server Settings (Figure 11-36).
Select Use SSL/TLS for communication between plug-ins and the site and click OK (Figure 11-37).
Configure Applications for the XenApp Services Site
Exit the Web Interface Management console, start the Delivery Services Console, expand the Learning Farm node, and expand the Applications folder (Figure 11-38).
Click on Notepad, then Modify application properties in the middle column and click on Modify access control properties (Figure 11-39).
Expand Basic and click Shortcut presentation (Figure 11-40).
You can add icons to the client’s Start Menu and the client’s desktop. Select both and click OK (Figure 11-41).
Repeat the process for Paint and exit the Delivery Services Console.
Install the Online Plug-in
To use the XenApp Services Site requires the Online Plug-in. To install the online plug-in on the server, click Start -> Run and type in c:\fp3\Citrix Receiver and Plug-ins\Windows\Online Plug-in\CitrixOnlinePluginFull.exe and press Enter (Figure 11-42).
Type in the FQDN of your server plus /Citrix/PNAgent/config.xml, for me that is https://citrix.websterslab.com/Citrix/PNAgent/config.xml and click Update (Figure 11-43).
Enter the administrator’s login credentials and click OK (Figure 11-44).
Click OK (Figure 11-45).
Test XenApp Services Site
The icons for Notepad and Paint are on the server’s desktop (Figure 11-46).
The icons are also on the Start Menu (Figure 11-47).
And the icons are also on the Online plug-in’s menu (Figures 11-48 and 11-49).
Click any of the icons to start Paint and Paint runs (Figure 11-50).
Create Part 11 Snapshot
To create the Snapshot for this Part, right-click the VM and select Take Snapshot… (Figure 11-51).
- Enter a Name,
- Optionally enter a Description,
- Select Quiesce the VM before taking the snapshot, and then
- Click Take Snapshop (Figure 11-52).
Click on the Snapshots tab to see the Snapshot (Figure 11-53).
Click the Console tab to return to the Windows desktop.
Note: On my computer, there are video anomalies when switching from the Snapshot tab to the Console tab. The only way to resolve this issue is to reinstall XenTools after every snapshot is complete.
You have now successfully tested secure access to a published application from inside your network.
In this Part, you learned to create and configure a XenApp Services site and test internal secure access to a published application. In Part 12, you will learn to publish the server’s desktop, install Adobe Flash and use an Apple iPad to access the XenApp Services site.