Learning the Basics of XenApp 5 and XenServer 5.5 (Part 10 of 10)


	Related Articles Documenting a Citrix XenApp 5 Farm with Microsoft PowerShell and Word – Version 2 Documenting a Citrix XenApp 6.5 Farm with Microsoft PowerShell and Word – Version 3.1 Java Runtime Installation Failure (Error 1330) Updated June 30, 2011 for JRE Update 26 Adding an SSD Storage Device to Citrix XenServer Fixing a Broken Delivery Services Console on Citrix XenApp 5 for Windows Server 2003


	About Carl Webster Webster is an independent consultant specializing in Citrix, Active Directory and Exchange. Webster has been working with Citrix products for over 18 years starting with Multi-User OS/2. Webster has led complex projects for key customers in multiple industries, including medical suppliers, direct mail providers, sports marketing, a major grocery chain and large regional medical facilities.


	Virtualization Podcasts GreenBytes and Desktone: On-Premises, Cloud-Managed Virtual Desktops Podcast with Stephen O’Donnell and Danny Allan - May 13, 2013 Episode 178


	DABCC TV-Videos LogicMonitor: SaaS Performance Monitoring Video Podcast with Steve Francis - Episode 44

To start the installation of CSG change the VM’s DVD Drive to the XenApp 5 ISO file (Figure 87).

Figure 87

The XenApp 5 installation starts. Click Browse Media (Figure 88).

Figure 88

Double-click Secure Gateway (Figure 89).

Figure 89

Double-click Windows (Figure 90).

Figure 90

Double-click the CSG_GWY.msi file and click Next (Figure 91).

Figure 91

Click Next (Figure 92).

Figure 92

Select I accept the license agreement and then click Next (Figure 93).

Figure 93

Select Secure Gateway and then click Next (Figure 94).

Figure 94

Click Next to accept the default installation folder (Figure 95).

Figure 95

Citrix Best Practice is to place the Secure Gateway/Web Interface server in the DMZ and the server should not be a domain member. Since this server, outside of this Learning series, is an Internet facing server it should be protected by all means possible. This includes using an account that has the least possible privileges and not putting the server on your internal network.

On the Service Account page you have the option of running the Secure Gateway service under Local System or Network Service accounts. What is the difference and which one should be chosen? According to http://msdn.microsoft.com/en-us/library/ms684190(VS.85).aspx, the Local System account runs at a very high privilege level. The article recommends using the Network Service account if a high privilege level is not needed. The Secure Gateway service does not need, and should not be given, such a high privilege level. According to http://msdn.microsoft.com/en-us/library/ms684272(VS.85).aspx, the Network Service account has very few privileges. You should seriously consider using the Network Service account for the Secure Gateway service. It is very odd that this important decision is not mentioned in the Secure Gateway for Windows Administrator's Guide or any Citrix Support Tech Notes.

Using the Network Service account reduces the attack surface should your Secure Gateway/Web Interface server be hacked. Since this account has no domain privileges it will make it harder for an attacker to compromise your domain.

If you do decide to place the Secure Gateway/Web Interface server on your internal network, then you must use the Network Service account.

Select NETWORK SERVICE from the dropdown list and then click Next (Figure 96).

Figure 96

Verify the install options (Figure 97). If any corrections need to be made, click Back and make the necessary corrections. If everything is correct, click Next.

Figure 97

Click Finish (Figure 98).

Figure 98

Click OK to start the Secure Gateway Configuration wizard (Figure 99).

Figure 99

Please click the desired page number to continue reading:
1
2
3
4
5
6
7
8
9
Next

White Paper: Citrix XenClient 2.1 Setup and Usage Guide

Sponsored Link: Immidio Flx Profiles – windows profile management - download free trial

Article Tags

Webster’s Presentation Virtualization Tips and Tricks from the Trenches

Citrix Presentation Server 4.x (CPS4 and 4.5) Support and Training Resources

Citrix Secure Gateway Support and Training Resources

Citrix Support and Training Resources

Citrix XenApp (Presentation Server) News, Support and Training Resources

Citrix XenServer Virtualization News, Support and Training Resources

TRAINING

Web Interface Support and Training Resources

Article Comments

posted by Guest - 04/28/2011

Thank you the best
Thanks for the nice and easy way of explaining "XenApp" setup.

I had big problems getting the system to operate after a WindowsUpdate on the server (explorer9). using your explanation and setup, the system is up running again.

Thank you ;-)

Henrik S. Fløytrup

henrik@floytrup.dk

» reply

posted by Guest - 06/09/2010

Hardware requirements

I would like to say you have done a great job with this tutorial. I still have concerns about harware requirements.I have a budget and will purchase a substantial box, but need to know for 64bit and Virtualization what is a good setup that will last me for at least a few years for testing and even personal use. My biggest concern is Processor, Bios, Motherboard. Drives and raid should be easy enough to work out. Thank you for any suggestions. Great work you have done.

» reply

posted by Guest - 02/16/2010

Doc version

Carl - Great information - do you have this in a single 1-10 download version (.doc maybe)

» reply

posted by Carl Webster - 02/22/2010
Re: Doc version
CURSE YOU!! LOL

This has turned out to be a LOT of work. Combining 11-parts into one eBook/book/booklet or whatever you want to call it has turned into almost 350 pages and 16 hours of work so far. I estimate, I am maybe close to 50% finished.

I will make an annoucement when this sorry sucker is complete.

CURSE YOU I SAY, CURSE YOU!!! In a good, light hearted way of course. :)
» reply
posted by Carl Webster - 02/16/2010
RE: Doc version
Let me check with Doug on that. Maybe I can rework the 10 DOC files and combone them into one and he can generate a downloadable PDF.

Webster

» reply

posted by Guest - 01/23/2010

Congratulations

Hi Carl,

Congratulations on the excellent work, I have learned a lot with the series "Learning XenApp".

My next step is to take a certification exam.

Thank you so much,

Luiz Andrade - lhlandrade@hotmail.com

» reply

posted by Carl Webster - 01/23/2010
RE: Congratulations
Thank you for the kind words. Glad the articles were of benefit to you.

If you are going for Citrix certification, make sure you check out my 3-part certification series:

http://www.dabcc.com/article.aspx?id=12529

http://www.dabcc.com/article.aspx?id=12530

http://www.dabcc.com/article.aspx?id=12570

Best wishes on your certification journey.

Webster

» reply

Submit a Comment

DABCC User:
Guest
Subject:
Message:
Image Code: