Solved

Signaling out 1 Web Interface/Secure Gateway server to one specific DataStore

Posted on 2014-01-24
8
349 Views
Last Modified: 2014-01-27
Environment:  XenApp 6.5, backend SQL Server.

We are running a DR test and have seperate farms for production, test, and there is a duplicate of production for DR purposes.  The test?  To point the DR web interface/secure gateway to a seperate DB and then execute apps.  I have already pointed to the DR database using the basic procedure noted here, http://terenceluk.blogspot.com/2012/11/migrating-citrix-xenapp-65-data-store.html.   My issue?  We have items defined in Citrix App Center specific to this test, however; they do not show up on the web interface and furthermore, can only get the web interface address for the specific server to show up and populate, but not when routed through it's SSL address in Secure Gateway.

So, really, two issues here.

#1 - why wouldn't my items in App Center show up in the web interface for the server I am pointing to?  Is there another parameter to set to ensure this is pointed at the correct datastore?

#2 - why wouldn't I be able to point to the secure gateway address to properly execute the apps.

Thinking part of the disconnect maybe a misunderstanding on how Secure Gateway and Web Interface communicate to each other and pull the information needed to populate from the datastore, or, do I simply have some firewall rules blocking the requests?

Any ideas on where to dig to solve this is greatly appreciated.
0
Comment
Question by:jnordeng
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 5
  • 3
8 Comments
 

Author Comment

by:jnordeng
ID: 39806785
Should add, I can get to the web inteface with a host entry, but still can't access Secure Gateway, thoughts on this?  thanks.
0
 

Author Comment

by:jnordeng
ID: 39806958
Ok, I have been able to verify that updates to the Apps in AppCenter are written into the database.  I can access the Secured Web Page via a different box now... only remaining piece, why can't I see all the items in the database?  And a secondary one, now getting "You do not have hte proper encryiption level to access this session."

Any help is appreciated.
0
 
LVL 23

Expert Comment

by:Ayman Bakr
ID: 39810668
For this last issue, the reason is that the Web Interface presents the session with the default basic encryption, while you might have a policy set with a different encryption level. To correct this, you either:
1. modify the encryption to the level set in the policy in each published application
    OR
2. modify the level on the web interface to that set in the policy
    OR
3. reconfigure the level in the security policy to the basic level.

For more info check this:
http://support.citrix.com/article/CTX124879

But, frankly speaking, apart from your last issue, I couldn't really follow up on what you have done on first hand - therefore, if you provide more clarification how you moved to the new environment or what have been done in more details and with more info on the architecture, we might be able to pinpoint what had gone wrong.
0
Technology Partners: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

 

Author Comment

by:jnordeng
ID: 39812409
Thank you for your response.  I think I understand how to handle this, my main question in the end, is there a way to verify where the web interface is looking to pull the information to display the published apps list?


As far as the rest, I determined the encryption level was set incorrectly on published apps and I was able to execute the Secure Gateway/Web Interface section from a different server located on a different network (behind a certain firewall/DMZ restriction).


So, without the rest, I guess I would like to understand where the config or connection information is located on which the Web Interface references on the Web Interface/Secure Gateway severs to know where to point to pull the specific published apps in which it displays.

Thank you.
0
 
LVL 23

Expert Comment

by:Ayman Bakr
ID: 39812543
The Web Interface gets the enumerated published apps from the XML server/s which you would have set on the web interface.
0
 

Author Comment

by:jnordeng
ID: 39812586
Do you mean the STA's defined?  Just want to verify as we have several Web Interface/Secure Gateway servers per environment, but only a couple in each are STA's.  Thanks.
0
 
LVL 23

Accepted Solution

by:
Ayman Bakr earned 425 total points
ID: 39812895
The STA is the server which caters for providing the secure ticket for the user session to start. In XA, I believe 5 and above, the Data Collector holds the XML and STA as well (in fact all XA servers are candidates for these - with XA 6.5 only holders of controller and session host can hold the XML brokerage).

But, it all depends on which servers you set in the Web Interface. XML service is the responsible for enumerating the published application for the user and presenting them to the Web Interface.

To check which servers you have set, follow this:
1. On the web interface console, right click on the intended site and select Server Farm
2. Click on the intended farm and then click Edit
3. The entries you see in the list of servers, are the XML servers you have set there.
0
 

Author Closing Comment

by:jnordeng
ID: 39812980
Thank you, part of this process was to really understand how the pieces of the Citrix environment work together.  Thank you for your patience and explanation.
0

Featured Post

Enroll in June's Course of the Month

June's Course of the Month is now available! Every 10 seconds, a consumer gets hit with ransomware. Refresh your knowledge of ransomware best practices by enrolling in this month's complimentary course for Premium Members, Team Accounts, and Qualified Experts.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

#Citrix #Citrix Netscaler #HTTP Compression #Load Balance
CITRIX XENAPP 6.5 FARM CUSTOM POLICY - CHANGE MANAGEMENT WINDOW REBOOT SCHEDULE
How to install and configure Citrix XenApp 6.5 - Part 1. In this video tutorial we have explained step by step installation of Citrix XenApp 6.5 Server on Windows Server 2008 R2 is explained in this video. We have explained the difference between…
This demo shows you how to set up the containerized NetScaler CPX with NetScaler Management and Analytics System in a non-routable Mesos/Marathon environment for use with Micro-Services applications.

729 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question