Solved

Citrix, Citrix Presentation Server, 4.5, TERMINAL SERVER, logon issue

Posted on 2008-10-15
12
1,200 Views
Last Modified: 2013-11-21
When a user tries to run a published application via citirx, they are first prompted for an RDP username and password after they are already authenticated via the web interface.
citrix-rdp-prompt.bmp
0
Comment
Question by:mjm21
  • 6
  • 2
  • 2
  • +1
12 Comments
 
LVL 2

Expert Comment

by:Ron9909
ID: 22725226
From the screenshot, your user's credentials are trying to use the local computer domain, rather than your AD.

Are your users using pass-through authentication?  If so, have you made the required mods to the user's Appsrv.ini file (on the client, located within the user's profile.  Add EnableSSOnThruICAFile=On
SSOnUserSetting=On to the WFCLIENT section)

Have you tried configuring domains within the configured authentication methods for WI within the Access Suite Console?

Its also possible to configure a default logon domain by modifying the Winlogon entry for your servers - provided that your users all belong to the same domain.

If none of this helps, can you give me a complete description of the setup - how users access WI, how its configured, where users and servers are located etc.  Thanks.
0
 

Author Comment

by:mjm21
ID: 22725402
Hi, Thanks.

1. No passthrough.
2. do not think so, will have to check.  Remember this is after they logon through web interface and click the published app.
3. There is only one domain.

Let me take a look.  Can I get back to you.....

Scenario:  users access citrix apps via web interface/ secure gateway. 3 PS servers, 1 farm, separate license server, one of the three server in the far is running terminal server licensing, several published apps.
0
 
LVL 18

Expert Comment

by:sk_raja_raja
ID: 22725413
open the Program Neighborhood, go to Tools>ICA Settings
Check 'Allow pass through'
Check Use local credentials.
Close Program Neighborhood.
Log off windows (don't reboot), then logon again.
Open program neighborhood
Right click and go to properties on published application/application set, go to 'Logon Information'  
input the username and password and domain


0
 
LVL 18

Assisted Solution

by:sk_raja_raja
sk_raja_raja earned 50 total points
ID: 22725421
0
 

Author Comment

by:mjm21
ID: 22725794
I am taking a look now to what is going on.   I will get back to you.
0
 

Author Comment

by:mjm21
ID: 22726003
I will have more info tomorrow when the group of users are in.....they are from Germany
0
Free Gift Card with Acronis Backup Purchase!

Backup any data in any location: local and remote systems, physical and virtual servers, private and public clouds, Macs and PCs, tablets and mobile devices, & more! For limited time only, buy any Acronis backup products and get a FREE Amazon/Best Buy gift card worth up to $200!

 
LVL 11

Expert Comment

by:Eric
ID: 22726030
See attached.  You may not be able to use passthrough.
I dont allow it on my network.

citrix-policy.jpg
0
 

Accepted Solution

by:
mjm21 earned 0 total points
ID: 22733063
I figured it out.  I physically went to the server that was causing the issue.  Took a keyboard, mouse and monitor and hooked them up.

What I saw was the log in prompt was set as the following:

username: domainname\username
Password:
local server: local server hostname

Someone logged on locally to this server..and that was the issue.

Solution:  Logged in as domain administrator with the the domain name, not the local server.

Logged off.  Issue resolved!!  Had a user test and worked fine.

Wierd, but it worked....  Great!

I will see tomorrow if the other users from Germany have no problem as well.
0
 
LVL 11

Expert Comment

by:Eric
ID: 22733102
That was Ron's First suggestion for the record.
0
 

Author Comment

by:mjm21
ID: 22733975
this:  From the screenshot, your user's credentials are trying to use the local computer domain, rather than your AD.

I agree, but who knew you had to go to the local machine and check this.  It is as if the server forced local log in via citrix session.
0
 
LVL 2

Expert Comment

by:Ron9909
ID: 22734050
Yes - in this case, if you haven't specified a logon domain, either through WI authentication, or through the DefaultDomainName registry entry, then it uses the domain/realm of the locally logged on user.  To prevent this happening again, you should specifiy the domain to be used.  Easiest way is through the Access Suite console - authentication methods for the WI site.
0
 

Author Comment

by:mjm21
ID: 22737060
I am specifying the domaon name being used through web interface man.....I will provide for you screen shots...
0

Featured Post

Complete Microsoft Windows PC® & Mac Backup

Backup and recovery solutions to protect all your PCs & Mac– on-premises or in remote locations. Acronis backs up entire PC or Mac with patented reliable disk imaging technology and you will be able to restore workstations to a new, dissimilar hardware in minutes.

Join & Write a Comment

This article is an update and follow-up of my previous article:   Storage 101: common concepts in the IT enterprise storage This time, I expand on more frequently used storage concepts.
This is an issue that we can get adding / removing permissions in the vCSA 6.0. We can also have issues searching for users / groups in the AD (using your identify sources). This is how one of the ways to handle this issues and fix it.
How to install and configure Citrix XenApp 6.5 - Part 1. In this video tutorial we have explained step by step installation of Citrix XenApp 6.5 Server on Windows Server 2008 R2 is explained in this video. We have explained the difference between…
In this video tutorial I show you the main steps to install and configure  a VMware ESXi6.0 server. The video has my comments as text on the screen and you can pause anytime when needed. Hope this will be helpful. Verify that your hardware and BIO…

758 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

17 Experts available now in Live!

Get 1:1 Help Now