The Ultimate Citrix Install Guide 		 
 DABCC Home  |    MIAB eBook   |    Citrix Tips   |   MIAB 4.0   |    MIAB 3.0   |    MIAB 2.1   |    MIAB 1.0   |    Sponsors   |   Quotes    |    Site Map
1 - Preface
2 - Project Management
3 - Analysis Phase
4 - Design Phase
5 - Implementation Phase
  1. Implementation Overview

2. Prepare the Network Environment

3. 3rd Party IMA Data Store Installation & Maintenance.

4. Install Operating System

5. Install MetaFrame XP with Feature Release 2

6. Tweak Windows 2000 / MetaFrame XP

7. How to Install and Configure Microsoft Office 2000

8. Install Image Applications

9. Rapid Server Deployment

10. Install Manual Applications

11. Resource Manager 2.2 Counters Explained

12. How to Setup Automatic Reboot for MetaFrame Servers

13. MetaFrame Delegated Administration.

14. How to Set the MetaFrame Server Preference for Data Collector Elections

15. How to Create a Zone & Move MetaFrame Servers to it

16. Citrix User Policies

17. How to Implement Automatic ICA Client Updates

18. Client Drive Mapping

19. How to Implement Client to Server Content Redirection

20. How to Implement Server to Client Content Redirection

21. Publishing through the Citrix Management Console

22. How to Build a Stable Printing Environment

23. NFuse Integration

24. How to Secure an Internet Information Services (IIS) Server

25. How to Secure ICA Session Traffic with Citrix Secure Gateway (CSG) 1.1

26. MetaFrame XP Remote Administration Tools

27. ICA Clients

28. Microsoft Terminal Services License Server

29. Implement Windows System Policies.

30. Implementation - Checkpoint
6 - Readiness Phase
7 - Rollout Phase
8 - Appendix

6. Tweak Windows 2000 / MetaFrame XP

Now that you have installed MetaFrame and all of its components, we are ready to configure MetaFrame and Windows 2000 for optimum performance.

 

The following procedures are just a starting point, you might need to add or remove some of the following procedures. For a detailed list, please check out Rick Dehlingers MetaFrame Installation & Tuning Tips document and Ricks new tuning tips web site: http://www.tweakcitrix.com. It is the bible of MetaFrame tips and tricks.

 

Note: The registry entries listed below have been scripted in to .REG files for your convenience. If you received this document independently from the other material (doc templates, REG file zip) then you will need to download the latest version of this doc and all the registry files discussed below from http://www.dabcc.com/projectinabox. In addition, most changes seen below are also configurable via the MIAB.ADM file as documented in the How to deploy MIAB.ADM later in this document.

 

Step

Description

1.

Remove / disable RDP-TCP Connection in Citrix Connection Configuration Utility

         Start Programs Citrix MetaFrameXP Citrix Connection Configuration Highlight rdp-tcp and press the delete key

 

2.

Remove the EVERYONE and GUEST account for security reasons on ICA-TCP connection in Citrix Connection Configuration Utility.

 

         Start Programs Citrix MetaFrameXP Citrix Connection Configuration Security Permissions

 

3.

Enable Auditing in Local Security Policy

         Start Settings Control Panel Administrative Tools Local Security Policy applet Local Policies Audit Policies folder Select the Success/Failure events you want to audit.

o        Account Logon Events: Success and Failure

o        Audit Logon Events: Success and Failure

o        Audit System Events: Failure

 

4.

Enable ICA Keep Alives.

[HKEY_LOCAL_MACHINE\System\CurrentControlSet\Control\Citrix]

"IcaEnableKeepAlive"=dword:00000001

"IcaKeepAliveInterval"=dword:0000003c

 

Registry File: Enable ICA Keep Alives.reg

 

5.

Enable TCP Keep Alives.

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters]

"KeepAliveTime"=dword:0000ea60

"KeepAliveInterval"=dword:000003e8

Registry File: Enable TCP keep alives.reg

 

6.

Clear the last persons name that logged into the server farm, from the username field of the Microsoft Client.

[HKEY_LOCAL_MACHINE/SOFTWARE/Microsoft/Windows/CurrentVersion/policies/system]

DontDisplayLastUserName=1

 

Registry File: DontDisplayLastUserName.reg

 


 

Step

Description

7.

Disable Client Audio Mapping [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Terminal Server\WinStations\ICA-tcp]

"fDisableCam"=dword:00000001

 

Registry File: disable client audio mapping.reg

 

8.

Disable Client COM Port Mapping [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Terminal Server\WinStations\ICA-tcp]

"fDisableCcm"=dword:00000001

 

Registry File: disable client COM port mapping.reg

 

9.

Disable Dr Watson

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\AeDebug] "Debugger"=""

 

Registry File: Disable Dr Watson.reg

 

10.

Disable paging of the Windows NT Executive [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Session Manager\Memory Management]

"DisablePagingExecutive"=dword:00000001

 

Registry File: disable paging of the Windows NT Executive.reg

 

11.

Disable Roaming Profile Cache

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Winlogon] "DeleteRoamingCache"=dword:00000001

 

Registry File: Disable Roaming Profile Cache.reg

 

12.

Set TcpMaxDataRetransmissions

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Tcpip\Parameters] "TcpMaxDataRetransmissions"=dword:0000000a

 

Registry File: Increase Performance and Reliability over WAN links and the Internet.reg

 

13.

Disable NTFS last access time stamp [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\FileSystem] "NtfsDisableLastAccessUpdate"=dword:00000001

 

Registry File: Prevent last access time stamp from being updated on NTFS.reg

 


 

Step

Description

14.

Enable ErrorMode

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Windows] "ErrorMode"=dword:00000002

 

Registry File: Set ErrorMode.reg

 

15.

Disable the printer beep. Disable it to reduce bandwidth/increase performance.

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Print\]

"BeepEnabled"=dword:00000000

Registry File: Disable Printer Beep.reg

 

16.

Set Event Log to overwrite entries as needed with a log size of 2MBs [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\EventLog\Application] "MaxSize"=dword:00200000 : "Retention"=dword:00000000 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\EventLog\Security] "MaxSize"=dword:00200000 : "Retention"=dword:00000000 [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\EventLog\System] "MaxSize"=dword:00200000 : "Retention"=dword:00000000

 

Registry File: Set Event Log Parameters.reg

 

17.

Set User ICA-TCP Overrides [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Terminal Server\WinStations\ICA-tcp\UserOverride\Control Panel\Desktop]

"AutoEndTasks"="1"

"MenuShowDelay"="10"

"CursorBlinkRate"="-1"

"DragFullWindows"="0"

"WaitToKillAppTimeout" = "20000"

"SmoothScroll" = dword:00000000

"Wallpaper" = "(none)"

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Terminal Server\WinStations\ICA-tcp\UserOverride\Control Panel\Desktop\WindowMetrics]

MinAnimate"="0"

 

Registry File: Set WinStation Overrides.reg

 

18.

Disable print events from the Event Log [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Print\Providers] "EventLog"=dword:00000000

 

Registry File: Disable Logging of Print Events to the System Event Log.reg

 

19.

Disable Spooler errors from being displayed on the server console [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Spooler] "ErrorControl"=dword:00000002

 

Registry File: Surpress Spooler Error Messages.reg

 


 

Step

Description

20.

Disable print spooler notification dialog screen from being displayed on the server console [HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Print\Providers] "NetPopup"=dword:00000000

 

Registry File: Turn off NetPopup.reg

 

21.

Disable the Alerter Service in the Services Applet.

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\Alerter]

"Start"=dword:00000004