My Chromebook Experience: Six Months later

After changing jobs nearly a year ago I found myself in need of a new laptop as I had handed back my corporate Sony Vaio and that left me with an old heavy weight dual core laptop with Windows 7.

I had wanted to try a Chromebook before and had seen several on demo stands at Citrix Synergy in LA. Having already moved over to Google apps where I keep docs, spreadsheets and pics, a Chromebook seem to be a logical move and I didn’t want to splash out hundreds of pounds in a Windows laptop with bulky updates and AV to maintain.

I had been using Google Docs to do some online coursework and found it very easy, reliable and was accessible on laptop, PC and my iPad.

So I set about reading up on product reviews and found some very capable devices ranging from cheaper sub £200 devices right up to the top Google Chromebook and HP models that come in at at £500-1000 pounds. A bit pricey for a first timer I thought. My old Sony was very lite with a dual core i7 CPU with 8GB Ram and a touch screen for £650 – a cracking price at the time some 5 years ago now.

In the end, I settled for a Acer Chromebook 14” with the full 1080 Full HD Screen and 32Gb local storage. Not a lot – but then Google kindly threw in an additional 100GB of online space.

When I went into my local PC World they made a big deal about telling me that the Chromebook didn’t have any Microsoft Office apps, and that it could not install any. This is not a problem to a Citrix guy, and a quick demo of published Word and a virtual desktop had them well impressed. I did try Word on Office 365 but was very disappointed when doing some documentation and found that Word was missing the Table Of Content feature and prompted me to download and instal the full application for local install. Google Docs just has it, and the ability to share docs from Google drive makes for easy collaboration. You can even have multiple people editing the same doc at the same time. Google Docs, Sheets and Slides is pretty much all I need. Business mail can stay in Outlook Web Access, and I’m writing this in Docs now before uploading to my blog.

As nearly all my work-work is designing, setting up and implementing Citrix virtual solutions, a Chromebook is a perfect tool for the job – both at home, in the office and on the move. Google Docs can be used offline – so I can work on the train with no connection quite comfortably. If I need Office or other business application – I just login to a Netscaler Gateway and launch any apps using the latest Citrix Receiver over HTML5. This is a great way to run published apps as the Receiver puts the apps along the bottom in a toolbar style – almost like running a full desktop.

Google Chrome web store has a load of techie apps including RDP connector, notes, screen snipping and even network troubleshooting tools. There are loads of others.

This little Acer has a great screen with 14”  full-hd, 4Gb RAM, and a nice keyboard, though it’s not backlit. Battery life is amazing at around 12 hours. Its silent, has USB3 and HDMI for external screen. The casing is finished in silver metal much like a Macbook Air and overall I’m very please with the quality for only a £300 layout. I could nearly buy four of these Acers for the price of one Macbook Air.

As for not having touch screen laptop – well, that novelty has passed me by. I have tried a Microsoft Surface – but I just don’t get Windows in tablet mode. Sorry, but I prefer the traditional laptop model, and would certainly prefer a £300 14” Chromebook to a 13” Surface Book  for £1300. I’ll keep using my Android phone or iPad if I need a tablet for other content.

For business users, I would definitely recommend giving Chromebooks ago. They can be centrally managed via Google MDM type service, and if you’re using Citrix already or moving apps to web or SAAS models – they make a great option for BYOD or CYOD without breaking the bank. This may be the first laptop that I buy twice, but there are plenty of great models to choose from.

Acer Chromebook 14 Review

http://www.trustedreviews.com/reviews/acer-chromebook-14

Citrix Receiver HTML5 Demo

https://www.youtube.com/watch?v=qn5ypf3UEVw

Advertisement

Building NVidia GRID and XenDesktop – Part 2

So how has that initial POC been going? After a year of production use the general feedback from the end user has been very positive with few calls to the customers helpdesk and no real issues passed onto me. With users designing detailed multi layer automotive diagrams from a country on the other side of the world – it’s been a very successful deployment.

This year has lead onto a couple of new installations. One local customer wanted to use AutoCad on XenApp 7.8 servers running a shared desktop on Windows Server 2008 R2, and some standalone virtual PCs running Windows 10.  Provisioning Server 7.8 was used to spin up some 10 XenApp servers. This solution is for students  – so the need for intense graphical rendering is somewhat lesser than what you would need in vehicle design or in construction. Having a NVidia vGPU shared across some 15 users is a great way to introduce CAD beginners to the tools and apps they will use later in their career while the the system itself is very capable of dealing with all they can throw at it.

The XenServer buid was 6.5 and completed just before v7 was released. A pair of Dell R710 servers each with 2 x  NVidia K2 cards. One thing to look out for is that Citrix XenServer does not officially support installation on SD cards, unlike other hyper-visors. While it will install and works ok – the OS footprint of v6.5 and v7 is noticeably different. Stick to a local pair of hard disks in a Raid 1 mirror so there is plenty of room to upgrade to the new OS – and make sure the server comes with a Perc Raid card..and right cable. Don’t ask me about getting those later!

Another recent build on a Dell Precision R7910 Workstation was completed with XenServer 7, XenDesktop 7.8 and PVS 7.8.  The Workstation  technical spec is actually better suited to multi user CAD than the equivalent server. Again, the customer was looking to run AutoCad Revit on a pre-built Windows 7 virtual machine imported from Hyper-v. All possible!  The big Dell itself had two NVidia Grid K2 cards, eight 400Gb local SSD drives, eight NICS and loads of RAM.

With no students in sight, this time the solution was for serious users. Designing and constructing world class buildings around the world needs decent hardware and graphics – no XenApp this time.  

The initial import of the virtual machine completed with no issues, but we then came across some boot problems after importing the local C drive up to the PVS to create a vdisk for multiple devices to use. With recurring BSOD –  initially this was suspected to be due to ghost network cards in the Device Manager. True enough, there were a few extra cards listed in there from the previous hyper visor build and and from a Cisco VPN adapter. Once removed, booting was better – but still the occasional blue screen. Closer analysis of the error and some Googling turned up some hints that AV was interfering with the PVS-TFTP streaming to the disk less clone. With some further digging we found that AV was being auto-deployed on boot from an inherited Group Policy. Once disabled – the boot issues were no longer present.

The size of the vdisk also posed some problems when scheduling reboots in the Studio Delivery Group. Due to the size, other devices were struggling to boot up as the first one or two PCs were still streaming. This was resolved with some help from Citrix support who suggested a PowerShell script to increase the time between each machines restart and boot. This worked a treat. Also very helpful was a hands-on customer keen to get to know all the components – who patiently worked through many of the issues after I had left site. Many thanks for that. 

It may have been said before, but the feedback from this customer’s end user was again – “Better than the physical PC!”. Citrix and NVidia Grid – Pretty awesome.

Don’t forget Part1!

 

 

 

Getting Legacy Apps to work on StoreFront 3

With many customers upgrading to Citrix StoreFront – I have been asked several times how you go about getting older Presentation Server 4 farms (Yes, its still out there!!) to work and present the apps inside your StoreFront.

Don’t forget these apps , operating systems and the PS4 platform will be long out of support, but still in use for legacy reasons.

The same fix applies for Web Interface 5.4 and comes from two settings that you need to change – which refer to Launch References.

So, to fix this – If using Web Interface:

Go to your WebInterface.conf on your web interface site – eg:

C:\inetpub\wwwroot\Citrix\XenApp\conf\WebInterface.conf

and change RequireLaunchReference and OverrideIcaClientname to Off and On respectively:

RequireLaunchReference=off
OverrideIcaClientname=on

If using StoreFront:

C:\inetpub\wwwroot\Citrix\Store\web.config  – and search for the two settings – set the same.

Then go to a admin command prompt – and do IISreset.

In StoreFront, add settings for a additional farm under Manage Delivery Controllers.

Then go into your desktop Receiver, and refresh the applications – and test the app works. Above, I tested an old copy of Visio from a 2003 Citrix server with Presentation Server 4.0.through latest StoreFront v 3.

KMS – Quick Guide for Citrix Provisioning Server Devices

Microsoft Key Management Server can be a tricky role to setup,  but it’s an important part of a solution that needs deployed carefully in AD and configured for Citrix virtual machines booting from the same vdisk. There are lots of detailed articles on how to setup KMS, and trouble shoot issues – this is a very quick guide to the main issues I have came across when setting up 2012 Server and Office 2010 and 2013.

This guide assumes you are using Windows 2008 R2 or 2012 server, and either Office 2010 or Office 2013 – and that you have created a vdisk from a gold-image build. The downloaded media maybe KMS or MAK – but needs to be KMS for Citrix Provisioning Server in most scenarios. The same steps apply for 2012 Server.

KMS Server

The KMS product licenses for your organisation must be install on a KMS server in your Active Directory. For Windows 2012, and Office 2013 – you will need the Office 2013 Volume License Pack installed on the 2012 KMS server hosting that role.

To install  2012 KMS have a look at this article – http://blogs.technet.com/b/askcore/archive/2013/03/14/installing-volume-activation-services-role-in-windows-server-2012-to-setup-a-kms-host.aspx

I would also recommend the Volume Activation Management Tool (VAMT) is installed. This is very helpful and enabled you to see what clients and software have registered and been granted a license. The tools are part of the Windows 8 deployment kit.

For PVS machines, KMS clients keys are required for the OS and for Office 2010 and 2013 – each version (ie Professional, Pro Plus, Std) has its own KMS or GVLK (see References). If you have Office, and separate licenses for Project or Visio – you need to add these separately.

The process to make a PVS machine a KMS client involves these steps:

1. Make server OS KMS client
2. Make Office KMS client
3. Re-arm Office
4. Re-arm OS
5. Shutdown – Set vdisk to use KMS, then reboot.

STEP 1   – Make server OS KMS client

Check vdisk is set to “none” in the Volume Licensing section of the Properties, and read/write mode enabled (Private mode)

At an Admin command prompt, type “slmgr /dlv – this will return something like:

To Change OS from MAK to generic KMS client:

Windows 2008 R2 Std –  Command Prompt: slmgr.vbs /ipk YC6KT-GKW9T-YTKYR-T4X34-R7VHC

Windows 2012 Std –       Command Prompt: slmgr /ipk XC9B7-NBPP2-83J2H-RHMBY-92BT4

To check it’s now KMS – use “slmgr /dlv” again – it should show the following;

“VOLUME_KMSCLIENT” will now be listed, along with the Partial Product Key – the last 5 digits of the generic KMS client key.

STEP 2  – Make Office KMS client

Install the Office KMS keys using the ospp.vbs script – located C:\Program Files (x86)\Microsoft Office\Office14 (eg Office 2010 x32) – of search for the location and move there in command prompt.

cscript ospp.vbs /inpkey: VYBBJ-TRJPB-QFQRF-QFT4D-H3GVB

 

STEP 3 – Re-arm Office

Locate the folder where the ospprearm.exe is located – for x32 bit Office its here:

C:\Program Files(x86)\Common Files\Microsoft Shared\ OfficeSoftwareProtectionPlatform

At a command prompt – move to that folder – and run the following command – ospprearm.exe

You should see a “successful” message to confirm this has worked.

STEP 4 – Re-arm the server OS

Type “slmgr /rearm” – a pop-up should return a successful rearm message.

STEP 5 – Shutdown the server

Do not reboot when prompted, shutdown. Go into PVS and set the Vdisk to KMS, then restart.

Test

Provided your KMS server has licenses, your VMs should now be able to ask it for a KMS key, and activate successfully.

Note, server clients like 2008 and 2012 require 5 machines to register before the server actually dishes out the license. So, you may need to spin up 5 PVS devices, even if you are only using 2-3 devices in production. Check in the machines system properties to see if it has been Activated.

Or, you could make some of your management servers use KMS ie a StoreFront server, or Delivery Controller. Office 2010/2013 has similar requirements in terms of numbers, while Windows 7 machines in XenDesktop need 25.

Useful links

Citrix Configuring KMS Licensing for Windows and Office 2010 and 2013

http://support.citrix.com/article/CTX128276

KMS Server

Office 2013 Volume License Pack – install on KMS server.

https://www.microsoft.com/en-gb/download/details.aspx?id=35584

Troubleshooting KMS error codes

http://blogs.technet.com/b/askcore/archive/2009/03/09/kms-error-0xc004c008-activating-client.aspx

Generic Keys

http://www.bonusbits.com/wiki/Reference:KMS_Client_Keys

Office 2013 https://technet.microsoft.com/en-us/library/dn385360.aspx

Office 2010 http://www.bonusbits.com/wiki/Reference:KMS_Client_Keys

Office 2010 Config Tools

https://technet.microsoft.com/en-us/library/ee624350(v=office.14).aspx

VAMT tools

https://www.microsoft.com/en-us/download/details.aspx?id=30652

Some Generic KMS Keys

Office 2013 Professional Plus        YC7DK-G2NP3-2QQC3-J6H88-GVGXT

Office 2013 Standard                     KBKQT-2NMXY-JJWGP-M62JB-92CD4

Project 2013 Professional              FN8TT-7WMH6-2D4X9-M337T-2342K

Project 2013 Standard                   6NTH3-CW976-3G3Y2-JK3TX-8QHTT

Visio 2013 Professional                 C2FG9-N6J68-H8BTJ-BW3QX-RM3B3

Office Professional Plus 2010       VYBBJ-TRJPB-QFQRF-QFT4D-H3GVB

Office Standard 2010                    V7QKV-4XVVR-XYV4D-F7DFM-8R6BM

Office Home and Business 2010   D6QFG-VBYP2-XQHM7-J97RH-WRC

54.633622 -5.670716

Cloud file sharing with Citrix ShareFile – Business Model and Main Features

Business Model

There are several different models of subscription for Citrix ShareFile, namely Basic, Professional, Corporate, Enterprise as well as Virtual Data Room (ShareFile,2015) –  all charged on a per users bases with options for monthly or annual charging.

A personal account with 100Gb storage will cost you about $15 per month, rising to $100 per month for 5 business users with unlimited storage. This give you access from almost any type of device. In addition to these options, customers who purchase Citrix XenMobile Enterprise Mobile Device Management, or WorkSpace Suite ( XenDesktop, XenServer, XenApp, MDM etc)  also get  ShareFile Enterprise as part of that bundle.

Main Features

As the name suggests, ShareFile is a file and document sharing tool like DropBox or OneDrive. Using a web browser or other ShareFile tool, users can upload or download files and folders, easily share with other colleagues or provide a link to external contacts or project team members. Clients for Android, iOS,BlackBErry and Windows Phone cover most of the mobile devices while PC and Mac tools include local sync, Outlook Plugin and a drive map capability that behaves just like a mapped network drive. Recently a ‘Print to’ capability has been added to allow you to print a PDF straight into your personal space (Citrix, What’s New 2015).

ShareFile Connector (Citrix,2015)

User features include web portal ‘Custom Branding, Unlimited Client Users, Mobile Apps, Desktop Widget,Multi-factor Authentication, Sync, FTP, Versioning’ (ShareFile,2015) as well as 24/7 telephone and email support.

The Enterprise product adds encrypted on-premise storage. By adding an internal Storage Zone controller, larger customer can attach a local disk resource and turn it into a ShareFile space. They can also add Connectors to access (and migrate) Dropbox, Google Drive, traditional file shares, and allow users to browse, edit and update SharePoint documents.

Application Platform and Architecture

The ShareFile platform consists of three tiers:

1 – SaaS Application Control Plane  –  broker, database, API servers

2 – Storage Zones – AWS,Azure,customer manager, on-premise

3 – Client device – PC/Mac, Android,iOS,BlackBerry,Windows Metro etc.

The ShareFile Control Plane resides in the Citrix cloud with multiple SSL web application servers providing secure access to the web portal. Behind that, API servers provide the access for mobile clients and other ShareFile tools such as Outlook plugin and Desktop Widget. Clustered database servers look after the user rights, accounts and folder metadata – but hold no end user files.  Fail over datacentres allow for disaster recover and backup. Load balancing is managed by physical Netscaler appliances hosted in a DMZ alongside the client facing web servers, with the rest of the API and database servers located within fire-walled production network. All client traffic to the Control Plane is secured to 256-bit SSL encryption (Citrix, Technical Overview 2015)

ShareFile Broker – connected user to files and shares.

Customer can select to store files on Citrix managed AWS or Azure cloud with client managed StorageZone servers hosted in Azure or in the on-premise data centre, and select a .com or  .eu region based on their data regulations and makes use of AWS storage.

SaaS Management Software

The customer managed StorageZone controller provides the secure brokered connection from the Citrix SaaS cloud resources. This requires a one time setup, that enables users to access  the internal encrypted file store, and network shares. A number of administration options are available in the web portal, including custom branding, password policy control, reporting and device security options.

ShareFile  – Portal Admin options (ShareFile,2015)

A User Management  tool can be setup to provide automated creation of users accounts. After checking Active Director for new additions to a ShareFile AD group – the User Management tool, running on the customer network –  provisions the user on the Citrix cloud resources with a matching password. Additional SAML authentication can be configured via a NetScaler URL to enable Single-Sign-On (SSO).

Integration

There are a wide range of ShareFile integration options including WebDav, and ShareFile API tools for developers to customise web and intranet sites,  as well as  SaaS vendor plugins  including SalesForce,CodeGreen,DocAuto, Microsoft ADFS,Ping. Integrating with Point.io enables connections to other vendors pruducts such as EMC Documentum, IBM FileNet, OpenText, HP/Autonomy WorkSite iManage (Citrix,2015). GoToMeeting,Podio and XenMobile and RightSignature are also closely integrated with ShareFile, as you would expect coming from the same vendor. A new Office 365 connector is also available, and even a client for Apple Watch (Citrix 2015).

References:

Citrix (2015) ShareFile Technical Overview [Online] Available from https://www.citrix.com/content/dam/citrix/en_us/documents/products-solutions/citrix-ShareFile-enterprise-a-technical-overview.pdf (accessed 27/06/2015)

Citrix [2015) Licensing Models [Online] Available from https://www.citrix.com/buy/licensing/product.html (accessed 27/06/2015)

Citrix (2015) ShareFile Platform -Integration [Online] Available from

http://blogs.citrix.com/tag/ShareFile-platform/ (accessed 27/06/2015)

Citrix (2015) ShareFile  – Whats New [Online] Available from http://www.citrix.com/products/ShareFile/whats-new.html (accessed 27/06/2015)

Citrix (2015) ShareFile Security WhitePaper [Online] Available from https://www.citrix.com/content/dam/citrix/en_us/documents/products-solutions/ShareFile-enterprise-security-whitepaper.pdf (accessed 27/06/2015)

Citrix (2015) ShareFile Enterprise Product Integrations [Online] Available from  http://www.citrix.com/products/ShareFile/tech-info/partners.html (accessed 27/06/2015)

Citrix (2015)  Working Easier From Screen-To-Screen: Citrix ShareFile Goes Wherever You Go [Online] Available from  http://blogs.citrix.com/2015/05/12/working-easier-from-screen-to-screen-citrix-ShareFile-goes-wherever-you-go/  (accessed 27/06/2015)

Sharefile (2015) Procing for Business [Online] Available from http://www.sharefile.com/industries/Business/pricing.aspx?src=direct&v=e&cat=1 (accessed 27/06/2015)

Building NVidia GRID and XenDesktop POC – Part1

It’s always exciting to get your hands on some new technology that breaks the mold when it comes to deploying VDI and applications on Citrix. For years, using CAD and high end graphics has been a no go area on shared desktops hosted on Presentation Server or XenApp. The best you could probably achieve would be  CAD viewer for some light review work – no chance of full blown Auto-Cad or video editing software. You really needed to keep your big workstation PC or MAC with expensive hardware to do any serious work. More recently though Citrix have been able to connect you into dedicated PCs or blade-PC hosted in you data center with much improved graphics and capabilities for rendering images and video. We have had some success with this in hospital environments where medical staffs can remote in to their desktop and review x-ray and other patient videos from their home PC of tablet.

NVidia GRID and XenDesktop really do change the game. With dedicated Graphics Processing Units that you can allocate to your Windows PCs – the days of using hardware PC or blade PCs are banished. The NVidia cards can be fitted into a server running XenServer 6.2.  A XenServer plugin then allows access to the GPU and the XenDesktop Agent talks to the hardware. The result is quite spectacular! The POC I have been working on recently involves users in India accessing a XenDesktop Windows 7 PC in a server room in Northern Ireland. That’s a looonnng way away to be using a CAD application over a 3G connection. Results?  “Better than a desktop PC” was one user’s feedback.

So here are some tips.

Make sure you have all the cards, cables and components to put in the server. Check you have enough network ports, and switch connections for storage.

I was using HP DL380g8 servers with 2 NVidia GRID cards per server. To fit these, you need to order alternative PCI riser cards with cage from HP – and you need two different parts. One has an additional PCI slot, the other has not. The additional PCI slot is critical as you need this to facilitate another PCI card – in my case a HP dual port HBA for connecting to the fiber channel SAN. Without this, you’re pretty stuck with only local storage, unless you’re using iSCSI perhaps.

You’ll also need a set of torque screwdrivers as the cages (that house the NVidia cards) have tiny screws that would be easily damaged if you try to force them loose with something else.

It’s also worth ordering your server with on-board 10GB NICS instead of the standard 1Gb NICS. This will provide better connectivity that the standard 4 port 1Gb NIC card.

To fit these new risers and cage – you need to remove the CPU heat sinks and grab handle on the mother board and replace these with new ones that fit with the cages. If your happy enough to do that, make sure you have an anti-static wrist band and be very careful not to drop any screws into the server.

If you have all the cards, cages and cables – you can do it all in one go instead of having to rack and stack the servers and then come back and have more downtime.

BIOS – After installing the cards – go into the BIOS and make sure the on-board graphics card is still the main display card. If your server is set to use the external or extended graphics card as the main one – you won’t be able to see anything on the console, or on the iLO card for remote management.

Then you’re ready to install XenServer 6.2 + Spk1 , and add in the NVidia graphics plugin. Check here – https://www.citrix.com/go/private/vgpu.html

This needs to be copied to the root folder of the server using WinSCP or similar tool. Once installed, the XenCentre tools should show a new tab for GPU.

RAM – Make sure your server is fully loaded with as much RAM as you can get. If you’re running a CAD application like Auto-Desk or Creo you’re going to need a minimum of 16 Gb per Windows 7/8 virtual PC. If you need more per PC, you won’t be long running low on resources.

In deploying an initial server for a proof-of-concept, I limited the number of users to six. After building the OS, and installing the NVidia drivers, you then install the XenTools as normal and you’re ready to install whatever software you need. I left this to the customer to do while I created the Machine Catalogs and Delivery groups in Desktop Studio.

More later..

Citrix Reference doc:

https://www.citrix.com/content/dam/citrix/en_us/documents/go/configuring-xenserver-to-use-nvidia-grid.pdf

NVidia:

http://www.nvidia.com/object/virtual-gpus.html

Get Certified

Along with experience and academic qualifications – product certification is essential for systems engineers AND software engineers in the modern IT world. I have worked a lot with Microsoft, Citrix and VMware in their partner programs over the last ten years for my company, for both individual staff requirements and partner status.

The latest Citrix certifications focus on XenDesktop/XenApp design, deployment and management. You can get certified on most of the Citrix product line but its best to start with products you work with every day, have just been trained on or are targeting a new career path. Starting at the bottom, Citrix Certified Associate – Virtualization covers XenApp/Desktop, some licensing and basic deployment. You can then add a few more separate exams for enterprise management, basic NetScaler and work towards the high end exam for Citrix Certified Professional (CCP-V) and Expert (CCE-V). Most recent additions are the Citrix Certified Professional – Mobility (CCP-M) which covers XenMobile design and deployment.

Why bother?

Throughout my career I have had to do certifications for PC’s, server operating systems and especially Citrix products, as well as mentor younger staff and colleagues and point them down the right certification track for their career development. In the last ten years for example, I have completed forty certifications. Some have expired, and some are very recent such as CCP-M, CCP-V. I would not be in my current job, earning a good salary if I had not kept my certifications up to date.

The disadvantages of certification are few. You will need to spend time, usually your own, studying and installing products, following training guides and best practice papers in order to pass any exams. You may not always get on a training course. Passing the exams also requires a certain amount of determination and calmness, along with exam technique.

A training course, if you need one is usually not free – and exams cost between £100 and £250 in the UK. Another disadvantage is that certifications expire, hence  it is important to keep up to date. To do this, you should target 2-3 exams per year as a minimum. That way, you will be refreshing exams every year, gaining new knowledge and keeping ahead.

The advantages are plenty. For one, you will gain more in depth knowledge of the products and maybe one or two products you don’t use if you are following a “track” system like Citrix and Microsoft’s where you must complete 5-6 exams to become a Citrix CCP-V, or Microsoft Certified Professional Developer , MCPD.

A typical “track” may take you down the MCPD :“Design and Development of Web Applications in .NET Framework” for example. If you’re considering a Citrix path – start with a single product like XenApp server, then XenDesktop. You can then try the enterprise exams and work your way towards CCV-E and CCP-V for Virtualisation.

Most partner companies will also provide study guides, access on online training and videos and special partner programs with a specialist contact that can assist you and your team with certifications in their “tracks”. You may even get exam vouchers. There are many good exam preparation books availably, study guides and “brain dumps”. I often recommend http://www.citrixxperience.com.

Microsoft, Adobe and others are constantly updating products, and often require certification in order for your company to sell the new products or retain your status. This may mean that a team of developers may need to have 10-15 certifications as a minimum just for the company to be a Gold Partner. In a few years, this may change and a new product release will force an update to the certifications.

When applying for jobs, a person with certifications will almost certainly be in with a better chance of employment than a person without. Your current employer should also recognize your studying and reward you financially. Indeed, your whole career path should be based on experience, project success, work competence – and your certifications.

When I interview for staff – I also think the person with more certifications is more interested in their career, in IT and in developing themselves than someone who hasn’t bothered. If you are really “into” IT – you will be keen to get certified in products you are working with.

Product certification is essential for the employer.

Partner status with Microsoft come in different levels –Core,Silver,Gold etc. These are partly based on sales, but also on the number of certified engineers or developers you have. This in turn can impact your companies’ discount purchasing and reselling in the supply chain. You may also be given sales leads, and involvement in new product releases ahead of non-certified companies.

Partners often get free partner licenses. This not only saves your company money, but gives them access to nearly all the partners’ products for free, as well as getting beta releases and access to software “api”’ that non-partners won’t get access to.

Partner status is an important status symbol. Potential customers will compare company certifications and individual CV’s to award contracts. Certifications for staff could make the difference between your company winning the business – or closing down!

I don’t see too many areas where certification is not possible. You can be certified in developing, Prince II, Ethical Hacking, security, HP hardware, EMC storage, VMware, Citrix,ITIL, ISO Auditing – the list is almost endless.

The one area you can’t be certified in is your own communications skills, personal interaction, and ability to talk to customers and present your solutions. This really comes with experience and practice – so get some colleagues together and practice on them to hone your presentation skills.

Certification is not a replacement for great experience, but in my opinion is essential for IT staff, engineers and developers alike – if they want to progress their career, keep skills up to date and be regarded as subject matter experts in their field or specialist area. Having both, means you know the products in depth.

In terms of actually doing exams, these are typically done in exam centers with monitored rooms in industry approved organisations. Pearson-View and Sylvan Prometric are two such companies, and will have an office or training partner in most countries and big cities. Individual product exams typically have about 60 multiple choice questions. The Citrix Professional and Expert have a split of about 30 multiple choice and the rest are based on a scenario or analysis report and you then have to make choices, and backup your design. Good luck!

References:

Citrix http://training.citrix.com/cms/education/certification/

Citrixxperience http://citrixxperience.com/

EMC https://education.emc.com/guest/certification/default.aspx/

ITIL http://www.itil-officialsite.com/Qualifications/ITILQualificationScheme.aspx

Microsoft http://www.microsoft.com/learning/en-us/certification-overview.aspx

Sylvan-Prometric https://www.prometric.com/en-us/Pages/home.aspx

Enabling XenApp Administrative logs

If you have a busy XenApp farm with lots of published apps, users and administrators who have (I hope!) got delegated access – you may often want to check on who made a change, or removed a published app or affected some other settings. XenApp 7.5 Desktop Director has logging enabled by default.

 

It often gets over looked during setup, but the History node in the XenApp AppCentre console is all you need. If you click on it, and it’s blank – then it’s not enabled and you will need to configure it. Here’s how!

Create a  service account for the DB owner- AD or a local SQL account on the database server, documenting the account and password.

Setup a new SQL database on your preferred server. By the way  –  If you want put the logs on the same server as your Farm DataStore server, you could look in the MF20.dsn and look for the “server=” line.  Start/Run  – \\citrixserver1\C$\Program Files (x86)\Citrix\Independent Management Architecture\  – should take you to mf20.dsn.

You can use Oracle, but all customers I come across are on SQL server.

Then create the database with a suitable name – eg xenapplog and assign the service account as the DB Owner.

Now – login to a DataCollector in your Citrix Farm. Right click on the farm name, and go to Farm Properties and click on Configuration Logging.

 

Then click on Configure Database.

Enter the name of the database server, the authentication mode and the service account details.

Then select the database you created from the list.

Unless your database  uses encryption, select No for Use Encryption. Click Next.

Then click on Test Database Connection – OK, then Finish.

The only other option is to secure the delete options – by ticking the box for “Require Admin to enter database credentials before clearing log”. You did record that account password didn’t you?

Click on Get Log – and recent changes should start to appear. You can also amend the columns and set Filters for tasks and data range if looking to narrow down the search for changes.

So, a very useful addition to the console, and easy to setup. Happy Logging!

ShareFile Enterprise – to Mobility and beyond!

With so many customers looking at ShareFile I often get asked how it works and where does the data get saved and sync’d. In this blog, I will give you a quick overview of ShareFile Enterprise and some of the useful tools you can use for accessing, sharing and syncing your files and data to a secure location in your data centre.

ShareFile is a Citrix product that competes directly with Dropbox, Google Drive and other online file sync tools of which there are now dozens available – all with cloud storage, some with on premise and varying security standards. With ShareFile you can store data in the cloud and in your data centre as well as getting access to your existing file server resources and NAS drives in your secure network.  For full details, check out the Citrix web site – but here is a quick overview for now. 

The StorageZone Controller provides users with secure access to SharePoint document libraries and network file drives through Storage Zones Connectors. Users log onto ShareFile from their mobile device and retrieve a list of enterprise data repositories, which may include network drives and SharePoint document libraries.

After choosing an enterprise resource, the user authenticates with the StorageZone Controller using their company credentials, and is then able to enumerate and securely transfer files between the mobile device and the customer data center.

 

All  folders here – except Internal NovoShare – are hosted on Citrix ShareFile cloud. We have a 20gb cloud store. By default, all users’ folders are on the internal storage.

The Internal NovoShare is an iSCSI attached NAS with 3TB data available to staff. This is called a StorageZone, and runs on an internal Windows 2008 R2 server and gives our users about 20Gb each.

Being ISO certified, all our key data resides in a secure data center with very controlled access. Only our BCP documents would be stored in the Citrix cloud for emergencies.

Below – Connectors – links into your existing NTFS shares and SharePoint document repositories. New connectors can link into DropBox and other storage to enable migration or two way collaboration.

All of these folders are residing in our secure hosted data center. None of the files get sent to the Citrix Cloud – which only acts as a broker and authentication.

Single Sign-On from AD

Logging into the MDM portal on a browser, allows you to click on ShareFile – and seamlessly login to the ShareFile web site.

SAML single sign-on can also be enabled for using the /SAML/login extension to the normal web portal.

Outlook Plugin

 

 

 

 

This is very useful and allows files to be attached easily from ShareFile –  and to attach new files, that are then sent into ShareFile instead of emailed to multiple recipients.

Desktop Widget

Allows you to browse into your files and folders from a Windows/Mac desktop.

Sync Tool

Sync Tools allows you to sync local folders up to your ShareFile storage.

So, if your local laptop drive is encrypted as it should be , you can sync all or some of the data files to the Sharefile cloud folders.

Citrix World Wide ShareFile

Citrix ShareFile uses a “Control Plane” – sharefile.com and sharefile.eu, are used for broker authentication and location of data when hosted.  For example, European customers can choose to have the data in .eu. The Control Plane provides users with a list of files and folders, but doesn’t hold them in the Citrix cloud if they are onsite – instead, the device is directed to the on premise store.

Guest users and other contacts can be given access to shares and files very easily for single download or time restricted periods. FTP service? – no problem. Customizing your web portal is also very easy and provides a nice familiar interface for users. Various administrative rights can be delegated, and folder permissions granted so you can allow other users to control access and content.

ShareFile Enterprise is available as a separate product. However, if you are also considering an enterprise mobile device management (MDM) solution  Citrix XenMobile Enterprise includes ShareFile Enterprise for just a few dollars more than ShareFile on its own. Definitely worth checking that out. Free 30 days trial also available on request.

 

Some useful links:

Main product information

http://www.sharefile.com/

ShareFile for Health

http://www.sharefile.com/industries/Healthcare/?src=direct&v=e&cat=1

Security

http://www.citrix.com/products/sharefile/features/secure-by-design.html

Choose where data is stored

http://www.citrix.com/products/sharefile/features/storagezones.html

XenDesktop & XenApp 7.5 – time to get planning!

Time is moving on for the current XenApp 6.5 platform with only some two years left to go on the standard Life Cycle, that will come around sooner than you think.

There are many things to consider when moving to a new XenApp platform, not least of all changes in operating systems, application compatibility and printing (as always). Since my early days of working on MetaFrame 3, Citrix has been promising reduced management overheads, fewer consoles and better support for mixed OS environments. However, while they did do away with the old Citrix Management Console eventually, you were still left with Web Interface, Licensing and AppCentre to manage different parts of your environment. Then of course XenDesktop came along and brought new consoles, new management protocols and another database – and a StoreFront. Nearly forgot –  a Provisioning Server farm, console and database just to keep you on your toes!

My previous blog post on AppDNA touched on the challenge of making applications compatible with new desktop and server operating systems. But what about the management challenge of hosting virtual desktops, shared desktops and publishing your applications?

Citrix has been working hard on that chestnut for a couple of years and the recent launch of XenDesktop/XenApp 7.5 now provides administrators with the ability to manage and deploy various operating systems and applications from a more unified console, namely Citrix Studio.

Key to this new platform is the FlexCast Management Architecture, or FMA. FlexCast was previously used in licensing terms only. For nearly twenty years now Citrix Presentation Server based products including XenApp 6.5 have relied on IMA – Independent Management Architecture for the underlying farm communications, load balancing, policies, and admin etc etc. A tried and tested product, many millions of users have been relying on IMA all over the world for application and desktop delivery.

Here are a few of the new terms to get your head around –

Instead of this in XenApp 6	Think of this in XenApp 7
Independent Management Architecture (IMA)	FlexCast Management Architecture (FMA)
Farm	Delivery Site
Worker Group	Session Machine Catalog, Delivery Group
Worker	Virtual Delivery Agent, Server OS Machine Desktop OS Machine
Zone and Data Collector	Delivery Controller
Delivery Services Console	Citrix Studio and Citrix Director
Publishing applications	Delivering applications
Data store	Database
Load Evaluator	Load Management Policy
Administrator	Delegated Administrator Role

(Source, XenApp eDocs – http://support.citrix.com/proddocs/topic/xenapp-xendesktop-75/cds-previous-xa-admins.html )

FMA however introduces some new capabilities that IMA could not deliver. The main being the ability to deploy the Citrix Virtual Desktop Agent (VDA) to both Windows desktop operating systems, and servers –  and manage both in the same place. Think about that for a second. No more multiple farms with different version of Windows and XenApp. A single console where you manage desktops, machine images and applications. You can even use the VDA on physical PCs – useful for administrator or power users with heavy graphics and connect directly with HDX.

Key Components:

Of course, with change – there are some things that are no longer. User Shadowing, Oracle Database support, SSO for Win 8.1/2012, Local Text Echo, Legacy Printing (XP/DOS clients) –  are no longer supported. Secure Gateway, still in use by some customers, is no longer supported and customers are advised to move to NetScaler Gateway as a replacement for remote access. Web Interface is still supported but customers are also expected to migrate to StoreFront with Web Interface having a limited shelf life and no further development.

So get planning! A two year window to get all your old x32 or 16 bit applications tested, upgraded or redeveloped is really not very long. Some will be easier than others. With an AppV now bundled, you could give that a try or look at Unidesk. Licensing, print strategy, remote access and your hyper visor platform all need careful consideration. I’ll be looking into those in more depth in my next few blogs.

Useful Links:

XenApp 7.5 and XenDesktop 7.5

XenApp/Desktop 7.5 – Not supported

XenApp Support Matrix