The Ultimate Citrix Install Guide 		 
 DABCC Home  |    MIAB eBook   |    Citrix Tips   |   MIAB 4.0   |    MIAB 3.0   |    MIAB 2.1   |    MIAB 1.0   |    Sponsors   |   Quotes    |    Site Map
PROJECT MANAGEMENT
1. Project Management Overview
2. Project Management Methodology
3. Tips for Making Meetings Effective

ANALYSIS PHASE
1. Analysis Phase Overview
2. Vision / Project Scope (Statement of Work)
3. Project Plan
4. Infrastructure Assessment
5. Proof of Concept
6. Analysis Phase Checkpoint

DESIGN PHASE
1. Design Phase Overview
2. Server Design
3. MetaFrame Access Suite Design
4. Infrastructure Design
5. Design Phase Checkpoint

IMPLEMENTATION PHASE
1. Implementation Phase Overview

2. Prepare the Network Environment
2. 1. Create Required Network Shares
2. 2. Firewall Modifications
2. 3. Throttling Port Speed and Duplex Settings
2. 4. Add Users to a Terminal Services Environment
2. 5. Create Required Citrix Specific User Groups

3. Install Operating System(s) for MetaFrame XP
3. 1. Installing Microsoft Windows 2000
3. 2. Installing Microsoft Windows Server 2003

4. MetaFrame IMA Data Store Installation & Configuration
4. 1. How to Install & Configure Microsoft SQL Server 2000
4. 2. How to Install and Configure Microsoft SQL Desktop Edition (MSDE)

5. Install MetaFrame XP Server w/ Feature Release 3
5. 1. How to Remap MetaFrame XP Server Driver Letters
5. 2. Installing MetaFrame Feature Release 3 on Windows 2000
5. 3. Installing MetaFrame Feature Release 3 on Windows Server 2003
5. 4. Installing MetaFrame XP HotFixes
5. 5. How to Add Licenses through the Management Console for MetaFrame XP

6. Install “Image” Applications

7. Rapid Server Deployment
7. 1. How to Clone a Citrix MetaFrame XP Server
7. 2. How to Create a Network Boot Disk

8. Configure MetaFrame XP Farm Wide Settings
8. 1. Recycling Operating Systems
8. 2. MetaFrame XP Delegated Administration
8. 3. How to Create a Zone & Move MetaFrame XP Servers to it
8. 4. How to Set a Server’s Preference for Data Collector Elections
8. 5. MetaFrame XP User Policies
8. 6. How to Implement Automatic ICA Client Updates
8. 7. Client Drive Mapping
8. 8. How to Implement Client to Server Content Redirection
8. 9. How to Implement Server to Client Content Redirection
8. 10. Configure ICA Keep-Alive
8. 11. Configure SpeedScreen Browser Acceleration

9. Install “Manual” Applications
9. 1. How to Install and Configure Microsoft Office 2000
9. 2. How to Install and Configure Microsoft Office XP
9. 3. How to Install and Configure Microsoft Office 2003

10. MetaFrame Conferencing Manager 2.0
10. 1. How to Install the Conference Organizer Service
10. 2. How to Install the Conference Room
10. 3. How to Install Conferencing Manager User Interface
10. 4. How to Specify the License Type through the CM Configuration Tool
10. 5. How to Add Users to the Conferencing Manager
10. 6. Microsoft Exchange Server Integration
10. 7. Troubleshooting

11. Publishing Resources through the Management Console
11. 1. How to Publish an Application
11. 2. How to Publish Content
11. 3. How to Publish Application from a Shortcut
11. 4. How to Publish the Printer Folder
11. 5. How to Publish Windows Explorer

12. How to Configure the Printing Environment
12. 1. Set the proper expectations
12. 2. Setup the Print Environment
12. 3. Create Printer Compatibility Driver Mappings
12. 4. Set Printer Bandwidth Limits for Client Auto-Created Printers
12. 5. How to use Project Compatibility automate Driver Mapping
12. 6. How to Manually Connect a Client Printer within an ICA Session

13. Install MetaFrame Secure Access Manager 2.0
13. 1. Install MetaFrame Secure Access Manager on Windows 2000 Server
13. 2. Install MetaFrame Secure Access Manager 2.0 on Windows Server 2003
13. 3. How to Install MetaFrame Secure Access Manager 2.0 Service Pack 1
13. 4. Install the Access Management Console on MetaFrame XP or a Workstation
13. 5. Create an Access Center
13. 6. Configure the Access Center
13. 7. Customizing MetaFrame Secure Access Manager
13. 8. How to Configure Internet Explorer for a Secure Access Center

14. Install Web Interface 2.1
14. 1. How to Install Web Interface 2.1 (Clean Install)
14. 2. How to Upgrade a NFuse Server to Web Interface 2.1
14. 3. Web Interface 2.1 Web Administration Tool
14. 4. How to Customize Web Interface 2.1
14. 5. How to Repair Web Interface 2.1

15. Install SSL Certificates and Secure IIS Server
15. 1. How to install and configure the IIS Lockdown Tool (version 2.1)
15. 2. How to Enable SSL on an IIS Web Server
15. 3. How to Force the use of SSL Encryption on a IIS Web Site

16. Install Secure Gateway 2.0 for MetaFrame
16. 1. Pre-installation Check List
16. 2. How to Install and Configure the STA Component
16. 3. Install the Secure Gateway Service
16. 4. Secure Gateway for MetaFrame Management Tools

17. MetaFrame XP Remote Administration Tools
17. 1. Management Console for MetaFrame XP
17. 2. Citrix Web Console (CWC)

18. ICA Clients
18. 1. How to Install the ICA Win32 Program Neighborhood Agent
18. 2. How to Install the ICA Win32 Web Client
18. 3. How to Configure the ICA Java Client
18. 4. How to Utilize the ICA Program Neighborhood Pass-Through Client
18. 5. Citrix ICA Client 6.20 for OS 9.X
18. 6. Citrix ICA Client 6.30 for OS 10.x

19. Microsoft Terminal Services Licensing
19. 1. Summary of Licensing Options in Windows 2000 Server
19. 2. Summary of the licensing options in Microsoft Windows Server 2003

20. Implement Windows System Policies
20. 1. MIAB Administrative Template Overview
20. 2. How to Create an Administrative Template to Hide Drives
20. 3. Implementing Windows 2000 Active Directory Group Policies
20. 4. Implementing Windows NT, Terminal Server 4.0 System Policies

21. How to Install and Configure MetaFrame Password Manager
21. 1. Prepare the Directory Service
21. 2. Install and Configure the MetaFrame Password Manager Console
21. 3. Deploy the MetaFrame Password Manager Agent
21. 4. On-Going Maintenance

22. Implementation Phase Checkpoint

READINESS PHASE
1. Readiness Phase Overview
2. Testing your New MetaFrame Access Suite Environment
3. Pilot Implementation
4. Rollout Any Remaining Servers
5. Implement Change Management Policies and Procedures
6. Readiness Phase Checkpoint

ROLLOUT PHASE
1. Rollout Phase Overview
2. End-User Training
3. Administrator Training
4. Go Live!
5. Rollout Phase Checkpoint

APPENDIX
1. Additional Resources
2. MIAB3.0.ZIP - Files Explained

13. 2.       Install MetaFrame Secure Access Manager 2.0 on Windows Server 2003

If you will be installing MetaFrame Secure Access Manager 2.0 servers on Windows Server 2003 then you will be happy to know that the previous workarounds for installing Microsoft Windows Server 2003 servers have been resolved with Service Pack 1 for MetaFrame Secure Access Manager. To install MetaFrame Secure Access Manager on a Windows Server 2003 server all you need to do is install MetaFrame Secure Access Manager, as documented above, and then install Service Pack 1 for MetaFrame Secure Access Manager. The installation of Service Pack 1 migrates your configurations and adjusts them to function correctly for 2003 compatibility.

Since IIS 6.0 provides additional security; there where a few settings in the IIS Manager that needed to be modified in order to allow execution of ISAPI extensions. By default, ISAPI Extensions and Common Gateway Interfaces did not work unless they are enabled. Host.dll is an ISAPI extension that required to be enabled in order to process MetaFrame Secure Access Manager requests. Again, Service Pack 1 for MetaFrame Secure Access Manager addressed these issues.

If however you would like to verify the changes made to support the additional security enhancements in IIS 6.0 you will want to following the steps below.

1.       The first thing we will need to do is install and configure Install Internet Information Server 6.0 (IIS)

a.       Start Manage your Server Add or remove a role

b.       Select Application Server, and choose ASP.NET (You might be prompted for a Windows Server 2003 CDROM)

 

2.       Install Microsoft .NET Framework 1.0 with Service Pack 2. For more information of how to install .NET Framework please refer to section 3.1.4 How to Install Microsoft .NET Framework found earlier in this document.

3.       Register .Net Framework 1.0 and .NET Framework Service Pack 2. in the IIS Manager

a.       In IIS Manager, right-click Web Service Extensions Add a new web service extension

b.       Enter title as ASP.NET v1.0.3705

c.       Add following file: c:\windows\microsoft.net\framework\v1.0.3705\aspnet_isapi.dll

d.       Select Set extension status to Allowed

 

4.       Add a new Application Pool in IIS

a.       In IIS Manager, right-click Application Pools New Application Pool

b.       Enter title as MSAM_Pool

c.       Choose Use existing application pool as template DefaultAppPool

d.       Next, right-click MSAM_Pool Properties and click on Identity tab.

e.       Choose Configurable and enter the service account credentials you plan on using for your MetaFrame Secure Access Manager installation.

 

5.       Install MetaFrame Secure Access Manager, as detailed earlier in this section; make sure to use the same service account that was entered in your MSAM_Pool Application Pool in IIS.

 

6.       You need to register the Host.DLL needs to be registered in IIS.

Important! This needs to be done on every MetaFrame Secure Access Manager server in the farm.

a.       In IIS Manager, right-click Web Service Extensions Add a new web service extension

b.       Enter title as host.dll

c.       Add following file: C:\ Program Files\Citrix\MetaFrame Secure Access Manager\Bin\host.dll

d.       Select Set extension status to Allowed

 

7.       After creating an Access Center, the Application Pool needs to be set for its IIS virtual directory. By default, MetaFrame Secure Access Manager runs in-proc with a worker process from the Default pool. The user (Identity) under which this pool runs has limited access rights, thereby restricting access to critical resources on the web server. This prevents the Load Balancer from getting configuration information thereby getting an access denied COM error. To resolve this issue, we can create a new application pool and change its user (identity) to run under the MetaFrame Secure Access Manager service account. Follow the below steps to create a new application pool.

 

Important! This needs to be done on every MetaFrame Secure Access Manager server in the farm.

 

a.       In IIS Manager, under Web Sites Default Web Site, right-click on the access center name you created and select Properties.

b.       Select Application Pool MSAM_Pool

Note: If you disable the Web Service for a given server in Access Management Console, your Application Pool settings are reverted back to DefaultAppPool (only on that server), and will need to be reconfigured if you re-enable the Web Service for EVERY access center you create.

 

 

 

 
DABCC Site Map | Legal Notice | Privacy Statement | All Rights Reserved for DABCC, Inc.