Still celebrating National IT Professionals Day with 3 months of free Premium Membership. Use Code ITDAY17

x
?
Solved

Citrix XenApp Sites

Posted on 2015-01-01
7
Medium Priority
?
481 Views
Last Modified: 2015-01-06
In Citrix Web Interface Management console there are :
XenApp Web SItes and XenApp Services Sites
What is the difference between them ?

for test purposes I have created a site by Selecting Xenapp Services Sites, then from Windows 7 I have opened the browser to the URL of the site I created and managed to download citrix receiver. This sounds good, but how do I restrict which user can download the receiver and which cannot.

Any help will be very much appreciated.

Thank you
0
Comment
Question by:jskfan
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
7 Comments
 
LVL 14

Assisted Solution

by:amichaell
amichaell earned 668 total points
ID: 40527740
XenApp web sites are accessible through web browsers.  Services sites are intended to be accessed through the XenApp Services agent, which Citrix is deprecating in favor of pushing access either through a browser or the Receiver via StoreFront.

To my knowledge there is no way to restrict who can download the client.  Users could just as easily go to Citrix.com to download the client for free.  If you are attempting to restrict access to published applications then you can do so using Active Director security groups in the properties of the published application.
0
 
LVL 37

Assisted Solution

by:Carl Webster
Carl Webster earned 664 total points
ID: 40527796
A XenApp web site is accessed using the Citrix Receiver, the Web Receiver or the old name online plug-in.

A XenApp Services Site (also known as a PNAgent site) is accessed using what most Citrix people call the PNAgent client.  Even though Citrix renamed the site from PNAgent to XenApp Services, the actual configuration name is still PNAgent, the site name URL, by default, is PNAgent and almost all configuration file references are still PNAgent.

While both types of Sites allow users to access published resources (Desktops, Applications, URLs), the PNAgent (Services) site also has the option to place icons for published resources on the user's desktop and or Start Menu.

The standard XenApp Site, allows the admin to give the users the ability save shortcuts to published resources.

Web Interface has been around for almost a decade so there are 1000s of articles on the Internet about both the original XenApp Site and the Services/PNAgent site, how to create them, configure them, load balance them, make them secure, deploy clients, etc etc etc.

There is no real way to restrict any users access to the Citrix plethora of client software.  Any user can go to the Apple App Store, Google Play, Windows app store, receiver.citrix.com or any number of sites that offer older versions of Citrix clients for download.  Unless you have a company policy that says if you install any Citrix client outside of what IT delivers you will be fired, there is no practical way to restrict access to any Citrix client.
0
 

Author Comment

by:jskfan
ID: 40530827
If anyone can open the internet browser and goes to Our citrix website and download the receiver, would not be that too much load on the server and slows it down, especially if malicious user will create a script that keeps downloading the receiver over and over ..??
0
Does Your Cloud Backup Use Blockchain Technology?

Blockchain technology has already revolutionized finance thanks to Bitcoin. Now it's disrupting other areas, including the realm of data protection. Learn how blockchain is now being used to authenticate backup files and keep them safe from hackers.

 
LVL 14

Expert Comment

by:amichaell
ID: 40530866
You don't have to permit downloading the Receiver from your site.  Users can still download the client from Citrix.com.
0
 

Author Comment

by:jskfan
ID: 40530875
You don't have to permit downloading the Receiver from your site
.
how can you do that ?

Though I would like to permit users inside the network to download receiver from the website
0
 
LVL 6

Accepted Solution

by:
Kentrix70 earned 668 total points
ID: 40532102
How many users will access your Web Interface Server - Web Interfaces scales up quite good, as it is build on IIS technology.
If you are giving Secure access through Netscaler Gateway from people outside of your corporate network, the Netscaler would only give access to users, who are authenticated, and that is happening before the Web Interface server is even accessed, so that should prevent any "misuse" of your internal Web Interface sites, and there will be no need to worry.
0
 

Author Closing Comment

by:jskfan
ID: 40533616
Thanks...as long as only authenticated users will be able to download it then it is fine.
0

Featured Post

Are your AD admin tools letting you down?

Managing Active Directory can get complicated.  Often, the native tools for managing AD are just not up to the task.  The largest Active Directory installations in the world have relied on one tool to manage their day-to-day administration tasks: Hyena. Start your trial today.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Citrix policies are the most efficient method to configure and tune XenDesktop environments, allowing organizations to control connection, security and bandwidth settings based on various combinations of users, devices or connection types.  Citrix …
This article explains how to install and use the NTBackup utility that comes with Windows Server.
This tutorial will show how to push an installation of Backup Exec to an additional server in both 2012 and 2014 versions of the software. Click on the Backup Exec button in the upper left corner. From here, select Installation and Licensing, then I…
This tutorial will walk an individual through the steps necessary to join and promote the first Windows Server 2012 domain controller into an Active Directory environment running on Windows Server 2008. Determine the location of the FSMO roles by lo…

688 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question