For small businesses, outsourcing the hassles of IT to a service provider hosted service provides anytime, anywhere access to information from a secure, hosted modern office. To better explain the possibilities with hosted desktops, Citrix shared today a new "which is a hosted desktop?" Short video that explains basic concepts of desktop-as-a-Service (DaaS) in language that SMB buyers understand best.

a hosted desktop unleashes the device's desktop and puts it in a secure data center where it can be delivered to any device at any time. This may make some major differences. For employees, it allows more productivity and flexibility. For businesses, it allows the company to centralize and secure business data

Citrix Service Provider partners program can download the short video "which is a hosted desktop solution?" For use on the website of the business partner., Social media, email campaign events, in person, and webinars.

Citrix Service Provider Partners can share this new "What is a hosted desktop?" Video to explain Desktop-as-a-Service users end

small and medium businesses looking to experience the security and flexibility of a hosted desktop may begin today's discussion. Contact a partner provider Citrix Service to learn more about how they can help with a desktop-as-a-Service (DaaS) solution.

Partners, mark your calendars for January 13 when your new sales activation platform, Citrix SalesIQ goes live!

What Citrix SalesIQ ? Citrix SalesIQ is a platform powerful sales activation that provides a single source of content. By offering mobility, intuitive usability, collaboration and ongoing developments, SalesIQ Citrix provides access to the best content for specific roles and sales situations and freshest, the most valuable resources.

The new user experience offered by Citrix SalesIQ makes it easy to find the content you need most, including sales packaged resources to help you cross-sell the entire stack of Citrix solutions. This platform will help you expand your wallet share with customers and shorten sales cycles.

content Success Kits and additional sales materials on Partner Central as consultation toolkits, PND, promotions and incentives will be available from Citrix SalesIQ, your single source for all your marketing needs. In addition, a great feature is the ability to click on a link in Partner Central and access Citrix SalesIQ - or vice versa - without having to log in again. Single sign-on technology provides a seamless navigation throughout.

More details will be provided in future issues of Citrix Partner News and blogs so stay tuned.

1. Overview

XenMobile AppController with WorxHome customer can make a single sign-on to mobile Sharefile. In this configuration, a user connecting to Sharefile using a Web browser or other Sharefile customer is redirected to the XenMobile WorxHome for user authentication and SAML token. After successful authentication XenMobile, the user receives a SAML token that is valid for connection to its Sharefile account.

This document lists the steps that must be done to achieve this. Below is the list of prerequisites:

1. XenMobile 8.6.1 components (AppController 2.9)

2. MR1 version of the MDX toolbox (ie build 2.3.372 ).

3. The following is a list of supported versions of the application Sharefile Mobile.

• Sharefile 2.1.5 for iPAD
• Sharefile 2.1.4 for iPhone
• Sharefile 2.4 for Android Tablet
• Sharefile 2.4 phone

4. WorxHome for iOS 8.6.1 and 8.6.1 for Android WorxHome

5. Sharefile admin account.

2. Configurations steps

• Wrap Android and iOS app Sharefile Mobile using MR1 XenMobile MDX toolbox.
• Log into the AppController checkpoint of the portal and go to the Applications & Docs tab.

• mdx Download times Sharefile Android and iOS applications in AppController.
• Configure MDX policies for Android and iOS, as required.
• In the App & Docs tab select Sharefile and click edit.

• Enter Sharefile domain and in the dropdown list select the role you want to assign this application. Sharefile enter administrator credentials and click Save. When you hit save AppController speak to Sharefile application using the above information and will push the parameters SAML SSO to Sharefile

• Note 1 :. If a new user / existing is added to this role (ie AD group) and if it does not have Sharefile account AppController will self-supply Sharefile. For initial test objective, it is advisable to report a small group where you have few users and make sure that you have enough licenses Sharefile AppController that will self-provisioning of users who did not have an account existing Sharefile. Users who belong to this role can not access the application.
• Note 2: Make sure AppController is able to reach Sharefile doing a ping test from AppController CLI.

3. Validation of iOS / Android Sharefile MDX.

• Set WorxHome using the URL of the server XenMobile (ie MDM NetScaler URL or gateway)
• Download and install the appropriate version Sharefile MDX implementation of WorxStore.
• Launching Sharefile MDX app. It should do SSW Sharefile without asking for more connection details

4. Validation of WorxMail

• Set WorxHome using the server URL XenMobile (ie MDM NetScaler URL or gateway)
• Download and install the appropriate version of WorxMail MDX implementation of WorxStore.
• Set WorxMail using your Exchange credentials.
• Click New to compose email.
• Enter the recipient's email address and click attachments, select Attach to Sharefile. (Note: for Android, you should have Sharefile MDX already installed on the device)
• When you click Attach to Sharefile it will SSW Sharefile and show you the files available in Sharefile

.

5. Receiver Validation for the Web.

• Open a web browser and enter the URL NetScaler gateway.
• Enter your credentials to login.
• Click Add and add applications Sharefile.
• When you click Sharefile, you will SSO experience.

Important notes for SSO failure:

• use the right versions of server and client components (use XM components 8.6.1 MR1)
• All times in IDP (AppController) and SP (Sharefile) must be identical.
• domain users must have the email address in Active Directory, such as SAML token will be prepared using the email address provided in Active Directory and Sharefile also accepts that the e-mail address as the user name.
• SSO can fail if the user has not reconciled in Sharefile request. AppController can take 20 to 30 minutes to self-provision a new user.
• AppController and a client device must be able to reach Sharefile.

Director: Troubleshooting with client-side tools such as Firebug

Sometimes when you're looking at data Director, you may wonder what happens on the bottom and where the data comes from. You can use existing tools to find the same and to resolve issues Director. A tool used by Citrix mostly to solve these is Firebug.

After reading this blog, you will be able to give an answer to the following questions.

1) What is Firebug?

2) How to install Firebug?

3) How to troubleshoot Citrix Director with Firebug?

What is Firebug?

Firebug is an extension or add-on for Mozilla Firefox, Google Chrome and Safari, etc. Internet Explorer, Google Chrome and Apple Safari also comes with an integrated development tool that is also like Firebug and can be used to solve Director. Firebug allows the user to debug and inspect HTML, CSS, the Document Object Model (DOM) and JavaScript while browsing the site. It detects site performance and track cookies and sessions. We will discuss troubleshooting director with Mozilla Firefox, Internet Explorer and Google Chrome only.

How Firebug?

There are two ways to install Firebug on your machine.

1) Open Firefox, go to Tools> Extensions> Get Addons then search Firebug. Now click Install. Restart after installation and you are ready to use Firebug now.

2) You can go to getfirebug.com and click "Install Firebug for Firefox" button.

Internet Explorer, Google Chrome and Apple Safari comes with the integrated development tool that can be opened by pressing the F12 key.

How to solve Director?

1. Using Firefox with Firebug:

After installing Firebug, you will be able to see a gray icon "Firebug" in bar Firefox navigation tools. Click on the icon to start. Or press F12 to start the Firebug.

After starting Firebug, you will be able to see the Firebug toolbar. This bar of tools Firebug is shown below

toolbar Firebug is to have seven panels

Panel Console: .. This panel shows all calls made to the server from the browser. This panel meets most of our target director troubleshoot. So we will discuss this in detail panel. Other panels mainly used by the developer to test the site

HTML Panel: .. This panel shows the HTML code of the web page opened in that the particular browser tab

CSS Group: This panel shows the CSS used in the current web page

panel Script: .. This panel shows all the scripts used in the current web page

DOM panel: This panel list of all DOM objects shows

net panel: .. This panel is used to monitor calls made from the browser to the server

panel cookies :. This panel shows what the different witnesses are set to build trust between frontend and backend for that particular session

now we will discuss steps to follow for troubleshooting Director.

Open Website Manager in Firefox browser. Open the Firebug or by pressing F12 or by clicking the bug in the right side of the browser navigation bar. Then you'll Firebug UI bottom tab manager in the browser. By clicking on the icon in the Firebug pane you'll get "location Firebug UI" option to move this interface. Select the console panel from the Firebug toolbar and select the "All" under the console panel

Panel Console :.

This panel is widely used for troubleshooting Citrix. As soon as you connect to the manager this panel starts to show all calls to the backend manager from the browser. You can see the time taken by the call from to apply to get the answer. You can also see a fair number after the name of the API. This number is an HTTP status code. If the call is followed by the code 0, this means that the call was successfully returned the server response. If code other than 0, it means that the appeal might was failing to get the server response.

The user can see the particular call answer by clicking on this call. The user will see five tabs under this call

heads :. This tab shows the header of this call. This shows biscuit, X-XSRF-Token, Host, content length, etc.

Post : This tab displays the parameters sent to the background. The user must check if the passed parameters are correct or not

Response :. This tab shows the response received from the back-end as plain text.

JSON : This tab displays the received response back end as JSON. The user can check if the values ​​received from backend are correct or not

Cookies : .. This tab shows the cookies used for making this call

1.1 Troubleshoot a Failed call

Sometimes you see red calls followed by the 500 code in the console panel as shown below in the screenshot. This means that these calls were failed due to some reason. When you double-click such a call you get an error code and details about the failure in response. As shown in the screenshot below GetConnectedSessionData call screen is failing with error code 105.

Error Code 105: DNS server does not try to

so this is the cause of the failure of this call and need. to give the correct name of the DNS server. You can get the error code and look Firebug which means that the error here

2. Using Internet Explorer :.

IE comes with custom construction development tool that can be used to solve Director. Press F12 to launch this tool.

This tool has eight panels, but especially a panel is needed to solve the problems that director is called Network panel. Once any appeals sent from UI to back-end tool to capture.

You can get the detailed view of the call by clicking on the call. Here is the screenshot of the application of this call header. It is as or more than we saw in the previous section.

Here is the screenshot of the request body of the appeal.

Below is the screenshot of the body of the response call.

Here is the screenshot of the time spent by the call to recover the result.

debugging stages of a failure of the call is quite similar to the measures we discussed in the previous section Firefox .

3. Using Google Chrome:

Google Chrome also comes with custom development tool built that can be used to solve Director. Firebug Lite version also available for the Chrome browser that can be used to solve Director. Chrome Version 32.0 and tool build developer is used for all screenshot in this section. Press F12 to launch this tool.

This tool is very similar to the Internet Explorer development tool, except for some changes in the user interface. It also has eight panels but only Network panel is sufficient for troubleshooting director we have in Internet Explorer. Here is the screenshot of this tool with the information of a call header contains.

Here is the screenshot of the request body of the appeal.

Here is the screenshot of the body of the response call.

Here is the screenshot of the time spent by the call to recover the result.

Google Chrome also have the same stages of debugging a failure of the call we discussed in the previous section of Firefox .

All this information can be used to find out what happens to the AC Backend. If an appeal fails, then we can find what is wrong by looking in the error code in response to this call. These tools are also useful to determine if a call is correct in response values, but the user interface shows incorrect behavior to the user.

We hope at this point you have an understanding of exactly how to solve Director in Firefox or Internet Explorer. If you need further information or assistance then please leave your comment or suggestion, we will be happy to hear from you.

Cisco and Citrix have a successful partnership through which we supplied processing solutions around BYOD, mobility, development network, desktop and application virtualization, and cloud. Today we are pleased to announce another technological innovation of our partnership which addresses one of the main transmission companies face in adopting hybrid clouds -. Delivering secure interoperability through clouds

At Citrix, we have witnessed firsthand the rapid growth in cloud adoption by our customers. Over the past 2.5 years, Citrix cloud infrastructure solutions have powered hundreds of clouds through both service providers and enterprises. While many began witth focus on the specific use case, they have experienced rapid growth and our largest customers today have more than 40,000 servers in their cloud. Our experience confirms a wider industry trend - CIOs accelerate cloud adoption and see the clouds as one of their top five spending priorities for 2014. In parallel with this growth, companies seeking to take advantage of a mixture of private and public clouds

This hybrid cloud scenario is based on the ability to orchestrate safely workloads among different clouds - for managing computing, storage, and applications in the cloud while maintaining the company's access and security policies. The partnership between Cisco and Citrix, Citrix CloudPlatform powered by Apache CloudStack will interoperate with Cisco InterCloud just been announced to safely orchestrate workloads across hybrid clouds. In addition, through integration with NetApp storage orchestrating CloudPlatform firmly in hybrid clouds. And with XenDesktop and XenApp running on CloudPlatform, customers can safely workstations and application workloads across hybrid clouds.

A good example of how this integration will be used is the first cloud provider, BT. BTCloud runs on Citrix CloudPlatform and BT leverages the integration between Citrix, Cisco and NetApp to offer companies the opportunity to expand their on-premises applications to public clouds. BT has worked with Cisco, Citrix and NetApp to develop and launch its Cloud Compute service in 17 countries in Europe, the Americas, the Middle East and Africa and Asia Pacific. The service is currently used by companies across different industries. For example, the life sciences can work together on key projects of R & D with the BTCloud to improve the time to market. It is also used by leading international law firms to work across Europe, the Middle East, and Asia Pacific.

We are pleased to work with Cisco to provide hybrid cloud solutions that enable customers to support strategic business objectives by leveraging a world of many clouds.

This post is relevant to the Nike (8.6) and au above the outlet XenMobile Enterprise Edition

• Construction Manager devices: -8.6.33292
• AppController - 2.9.0_111000
• Netscaler construction: - NS10.1 : Build 0.1316.e.nc

prerequisites for this configuration is that the CA is configured and the settings on the MDM server are made to provide user certs to the device. This configuration will require additional NSG to be configured for HDX applications to work with receiver

In AppController> Settings> Deployment> Edit Add the NetScaler Gateway

• type Set Logon certificate + domain
• does not require passwords to be cleared
• external URL should be set to the NSG URL
• Settings StoreFront
  • Allow Storefront aggregate AppController Apps: - Set to YES
  • authentication server: - Set NO

  

on the Netscaler, Netscaler Gateway> virtual Servers (prerequisite NSG is already added and configured)> Open the NSG

Add the root certificate of the CA as CA

Click the Link authentication and LDAP policy and certification policy and give them the same priority tab

If politics certificate is not already created, you can go ahead and create here

Give it a name certificatePolicy in this case and set the authentication type ERCSW

Click New on the server

Give it a name and user name field, select "SubjectAltName: PrincipalName"

Two factor must be set to oN. Click Create

Back in the "Create an authentication strategy" server should now show the certificate we created in the previous step

Next click on the expressions called "customer is different geographic reg ..." drop and scroll right to the bottom and select "TrueValue" and click "Add term"

this should add "ns_true" in expressions window. Click Create

Ensure that the priorities on authentication policies are the same

Back Click on the "certificates" tab and select "SSL Settings"

Check the "authentication customer "and to" client certificate - required "and click OK and OK

Then we need to add additional NSG using the same IP address to work on port 4443 for HDX applications to work

Netscaler> gateway NetScaler> Select the NSG is stocked above and select add and change the port to 4443, giving it a NetScaler_Gateway2 and add the server certificate

Go to the tab authentication and ensure "Enable authentication" is checked (do not add an authentication policy)

Click on the published applications and Add "Secure ticket Authority" Storefront URL of

Click Create and close. Create and close the virtual server

If you open the new Vserver (created above) and click the Applications tab Published. STA servers will be displayed as UP

Then we need to change the port on StoreFront to 4443

Log into the StoreFront server> Netscaler gateway

Click Change general settings

Attach the Netscaler URL gateway with port 4443

Add the URL Callback with port 4443

Click OK and restart the IIS service. HDX apps must be successfully able to start using the receiver with certificate is mandatory for worxhome

Using this method admins can provide additional security layer using certificate authentication for mobile applications to provide seamless integration of HDX applications behind the NetScaler

Peripherals for XenDesktop

Often while connected to a remote session (see definitions), users need to access devices connected to their physical ends. For many of these devices, Citrix (or the device vendor) have build virtual channels that allow the use of the device in a XenApp or XenDesktop session. These virtual channels are designed to optimize the performance of the device and make it available in a transparent manner in the session. For USB devices, generic USB redirection (sending first USB data on the wire) is available as a useful fallback for specialized devices.

This post will clarify the statements above.

Definitions:

• Other - this term will be generously used to expand some of the lists below to receive new technologies or use cases that might become relevant in the future.
• Device - Auxiliary device or attached on the inside (using USB or other) physical endpoint device of the user.
• physical endpoint device User ( "device", customer or EP) - refers to PC, Mac, laptop / macbook, mobile device or other used to connect or establish a session.
• session - the resource that the user wants to use, it could be a virtual desktop, a server application, a Web application or another.
• virtual channels - Citrix HDX technologies that enable optimized use of devices in a session.
• generic redirect USB - industry term describing redirecting a physical USB port on a device to appear as a virtual USB port in the session. This redirection makes the connected USB device appear locally on the session.
• administrative settings - rarely used Settings cluttering a graphical user interface (GUI) and are available for administrators informed via GPO, register or otherwise. Note : By design, certain administrative settings could replace or disable settings on the GUI.

HDX optimized use (virtual channels)

Some virtual channels available. Note that Citrix has a virtual channel SDK (https://www.citrix.com/downloads/citrix-receiver/sdks/virtual-channel-sdk.html) that was used by device vendors to create custom virtual channels that are beyond the scope of this blog.
An important virtue is that allow the devices to be used in both the endpoint and session.

keyboard and mouse - These devices are used in both the endpoint and the session, even simultaneously, for example when accessing only applications server from an end office.

Audio (speaker / microphone) - may be needed on the endpoint, and in the session. HDX has a virtual channel and even synchronizes the volume. Some HDX multimedia optimizations play sound directly on the endpoint and take advantage of the peripheral device is available in both places

Cam -. Citrix Receiver webcam captures the images of the physical endpoint device, optimizes and sends that display session. Note: cameras can not be used simultaneously by a single application, locally or session. This is a webcam limitation, not HDX. This virtual channel requires much less bandwidth you use the USB redirection from a webcam.

USB memory sticks, CDs, DVDs, even end players -. HDX has a file access virtual channel that allows users to access all (or administratively selected) data storage devices endpoint

smart cards -. in the most secure environments (generally smartcards are used) the smart card must be available on the terminal and session and removal of the chip card is used to automatically lock or logoff

So why USB redirection?

Here are some examples of where the USB redirection may be necessary. Keep in mind when a USB device is redirected to a session, it becomes unavailable to the physical endpoint device of the user until the session is disconnected and the connection of a USB device is returned the endpoint. In addition, the more bandwidth is required to use the device (compared to the use of virtual channel) and its use affected by round trip delay.

• Devices without a virtual channel - Some devices do not just have a virtual channel. Examples include: game controllers, toys, developer access to mobile devices (eg Android ADB) inherited iTunes iPhone communications, on the other.
• specialty pointer devices - mouse space, embedded mice with additional buttons. IMPORTANT : Make sure you have more than one mouse on the physical endpoint device and does not redirect all mice to always have control of the endpoint.
• Specialty Keyboard - If a keypad includes other user interface USB redirection devices may be needed to take advantage of these. Note : Some keyboards include additional buttons that are simply multi-key shortcuts. These can be used with virtual channels without having to redirect the keyboard.
• Webcam - Strongly discouraged to use the USB redirection, but only if neccesary to access the software features advanced camera like zoom, pan, visual effects, etc. USE AT YOUR OWN RISK.
• The storage devices - When more than reading or writing files is necessary, as burning a CD / DVD, some encrypted file systems, other share.
• Non-compliant devices or use cases - Citrix made a best effort to optimize the systems, but we depend on these devices that comply with industry standards. If a device is non-compliant or it is used not according to the original USB redirection intentions might be the only way to use the device

Additional links for USB redirection :.

virtual channels - list, priorities and multi-stream
redirection eDocs
Citrix studio policies, adding the rules of the device in regedit
More information on the rules of unit (end side)
Setup for DO NOT use the parameter viewer Office