Implementation-Phase-13. 3. How to Install MetaFrame Secure Access Manager 2.0 Service Pack 1 - MIAB The Utimate Citrix Install Guide

The Ultimate Citrix Install Guide

PROJECT MANAGEMENT
1. Project Management Overview
2. Project Management Methodology
3. Tips for Making Meetings Effective

ANALYSIS PHASE
1. Analysis Phase Overview
2. Vision / Project Scope (Statement of Work)
3. Project Plan
4. Infrastructure Assessment
5. Proof of Concept
6. Analysis Phase Checkpoint

DESIGN PHASE
1. Design Phase Overview
2. Server Design
3. MetaFrame Access Suite Design
4. Infrastructure Design
5. Design Phase Checkpoint

IMPLEMENTATION PHASE
1. Implementation Phase Overview

2. Prepare the Network Environment
2. 1. Create Required Network Shares
2. 2. Firewall Modifications
2. 3. Throttling Port Speed and Duplex Settings
2. 4. Add Users to a Terminal Services Environment
2. 5. Create Required Citrix Specific User Groups

3. Install Operating System(s) for MetaFrame XP
3. 1. Installing Microsoft Windows 2000
3. 2. Installing Microsoft Windows Server 2003

4. MetaFrame IMA Data Store Installation & Configuration
4. 1. How to Install & Configure Microsoft SQL Server 2000
4. 2. How to Install and Configure Microsoft SQL Desktop Edition (MSDE)

5. Install MetaFrame XP Server w/ Feature Release 3
5. 1. How to Remap MetaFrame XP Server Driver Letters
5. 2. Installing MetaFrame Feature Release 3 on Windows 2000
5. 3. Installing MetaFrame Feature Release 3 on Windows Server 2003
5. 4. Installing MetaFrame XP HotFixes
5. 5. How to Add Licenses through the Management Console for MetaFrame XP

6. Install “Image” Applications

7. Rapid Server Deployment
7. 1. How to Clone a Citrix MetaFrame XP Server
7. 2. How to Create a Network Boot Disk

8. Configure MetaFrame XP Farm Wide Settings
8. 1. Recycling Operating Systems
8. 2. MetaFrame XP Delegated Administration
8. 3. How to Create a Zone & Move MetaFrame XP Servers to it
8. 4. How to Set a Server’s Preference for Data Collector Elections
8. 5. MetaFrame XP User Policies
8. 6. How to Implement Automatic ICA Client Updates
8. 7. Client Drive Mapping
8. 8. How to Implement Client to Server Content Redirection
8. 9. How to Implement Server to Client Content Redirection
8. 10. Configure ICA Keep-Alive
8. 11. Configure SpeedScreen Browser Acceleration

9. Install “Manual” Applications
9. 1. How to Install and Configure Microsoft Office 2000
9. 2. How to Install and Configure Microsoft Office XP
9. 3. How to Install and Configure Microsoft Office 2003

10. MetaFrame Conferencing Manager 2.0
10. 1. How to Install the Conference Organizer Service
10. 2. How to Install the Conference Room
10. 3. How to Install Conferencing Manager User Interface
10. 4. How to Specify the License Type through the CM Configuration Tool
10. 5. How to Add Users to the Conferencing Manager
10. 6. Microsoft Exchange Server Integration
10. 7. Troubleshooting

11. Publishing Resources through the Management Console
11. 1. How to Publish an Application
11. 2. How to Publish Content
11. 3. How to Publish Application from a Shortcut
11. 4. How to Publish the Printer Folder
11. 5. How to Publish Windows Explorer

12. How to Configure the Printing Environment
12. 1. Set the proper expectations
12. 2. Setup the Print Environment
12. 3. Create Printer Compatibility Driver Mappings
12. 4. Set Printer Bandwidth Limits for Client Auto-Created Printers
12. 5. How to use Project Compatibility automate Driver Mapping
12. 6. How to Manually Connect a Client Printer within an ICA Session

13. Install MetaFrame Secure Access Manager 2.0
13. 1. Install MetaFrame Secure Access Manager on Windows 2000 Server
13. 2. Install MetaFrame Secure Access Manager 2.0 on Windows Server 2003
13. 3. How to Install MetaFrame Secure Access Manager 2.0 Service Pack 1
13. 4. Install the Access Management Console on MetaFrame XP or a Workstation
13. 5. Create an Access Center
13. 6. Configure the Access Center
13. 7. Customizing MetaFrame Secure Access Manager
13. 8. How to Configure Internet Explorer for a Secure Access Center

14. Install Web Interface 2.1
14. 1. How to Install Web Interface 2.1 (Clean Install)
14. 2. How to Upgrade a NFuse Server to Web Interface 2.1
14. 3. Web Interface 2.1 Web Administration Tool
14. 4. How to Customize Web Interface 2.1
14. 5. How to Repair Web Interface 2.1

15. Install SSL Certificates and Secure IIS Server
15. 1. How to install and configure the IIS Lockdown Tool (version 2.1)
15. 2. How to Enable SSL on an IIS Web Server
15. 3. How to Force the use of SSL Encryption on a IIS Web Site

16. Install Secure Gateway 2.0 for MetaFrame
16. 1. Pre-installation Check List
16. 2. How to Install and Configure the STA Component
16. 3. Install the Secure Gateway Service
16. 4. Secure Gateway for MetaFrame Management Tools

17. MetaFrame XP Remote Administration Tools
17. 1. Management Console for MetaFrame XP
17. 2. Citrix Web Console (CWC)

18. ICA Clients
18. 1. How to Install the ICA Win32 Program Neighborhood Agent
18. 2. How to Install the ICA Win32 Web Client
18. 3. How to Configure the ICA Java Client
18. 4. How to Utilize the ICA Program Neighborhood Pass-Through Client
18. 5. Citrix ICA Client 6.20 for OS 9.X
18. 6. Citrix ICA Client 6.30 for OS 10.x

19. Microsoft Terminal Services Licensing
19. 1. Summary of Licensing Options in Windows 2000 Server
19. 2. Summary of the licensing options in Microsoft Windows Server 2003

20. Implement Windows System Policies
20. 1. MIAB Administrative Template Overview
20. 2. How to Create an Administrative Template to Hide Drives
20. 3. Implementing Windows 2000 Active Directory Group Policies
20. 4. Implementing Windows NT, Terminal Server 4.0 System Policies

21. How to Install and Configure MetaFrame Password Manager
21. 1. Prepare the Directory Service
21. 2. Install and Configure the MetaFrame Password Manager Console
21. 3. Deploy the MetaFrame Password Manager Agent
21. 4. On-Going Maintenance

22. Implementation Phase Checkpoint

READINESS PHASE
1. Readiness Phase Overview
2. Testing your New MetaFrame Access Suite Environment
3. Pilot Implementation
4. Rollout Any Remaining Servers
5. Implement Change Management Policies and Procedures
6. Readiness Phase Checkpoint

ROLLOUT PHASE
1. Rollout Phase Overview
2. End-User Training
3. Administrator Training
4. Go Live!
5. Rollout Phase Checkpoint

APPENDIX
1. Additional Resources
2. MIAB3.0.ZIP - Files Explained

13. 3. How to Install MetaFrame Secure Access Manager 2.0 Service Pack 1

You are now required to install Service Pack 1 for MetaFrame Secure Access Manager 2.0.

For more information on Service Pack 1 please visit: http://support.citrix.com/kb/entry.jspa?entryID=3193&categoryID=235

To download SP1 please visit: ftp://ftp.citrix.com/msam/sp1/MSAM_SP1.exe

This service pack includes all hotfixes that were previously released separately, and additional fixes that were not previously released. The issues described in this section are resolved after the installation of MetaFrame Secure Access Manager 2.0, Service Pack 1.

The Logon Agent for Secure Gateway does not function correctly for MetaFrame Secure Access Manager 2.0 installed on Windows 2003 Server.

If you create a user account using Windows Users and Groups and select "User must change password at next logon," the user cannot authenticate to access centers.

If you set the default theme to a theme other than Chrome and do not allow users to change the theme, the Chrome theme is rendered when a user clicks Submit on the Settings page. When a user navigates to a different page, the default theme is applied to the page.

The Refresh button in the header of a WebForm CDA does not function correctly.

Configuration of the Authentication Service of Secure Gateway for MetaFrame fails if the access center name contains spaces.

If you create a custom CDA that allow users to download files from the CDA, additional characters may be inserted into the file.

If you will be patching or installing MetaFrame Secure Access Manager 2.0 servers running on Windows Server 2003 then you will be happy to know that the previous workarounds for installing MetaFrame Secure Access Manager 2.0 on Windows 2003 have been resolved. You do not need to implement the instructions in the previous version.

Changes to implementation: The following changes were made to accommodate the installation of MetaFrame Secure Access Manager, Service Pack 1 on a Windows 2003 Server.

During Setup, MetaFrame Secure Access Manager, Service Pack 1 creates an IIS application pool that uses the Network Service account.

Each access center is associated with the MetaFrame Secure Access Manager application pool.

MetaFrame Secure Access Manager uses the local IIS guest account (IUSR_MACHINENAME) for anonymous access to the virtual directories.

The MetaFrame Secure Access Manager and Secure Ticketing Authority (STA) modules are configured as Web service extensions.

If the scripts virtual directory does not exist, MetaFrame Secure Access Manager creates one and points to the directory where the STA IIS modules are installed (that is, the physical scripts directory).

The scripts virtual directory is not deleted on rollback or uninstall.

Important! If you are going to be deploying Service Pack 1 to a MetaFrame Secure Access Manager 2.0 server then you will be required to deploy this service pack to ALL MetaFrame Secure Access Manager servers.

Important! If you adding additional MetaFrame Secure Access Manager servers to the access server farm, you will be required to disable (uncheck) the Agent server and Web server components during the installation of MetaFrame Secure Access Manager 2.0. After you install Service Pack 1 on the new server, you can use the Access Management Console to enable the Agent server and Web server components.

The following details how to install Service Pack 1 for MetaFrame Secure Access Manager 2.0.

1. Obtain the SP1 from the above link and copy it to the MetaFrame Secure Access Manager server. Double click on MSAM_SP1.exe to execute the service pack.

2. Extract the contents of the service pack to a folder on the MetaFrame Secure Access Manager server.

3. Browse to the folder you extracted SP1 to and click autorun.exe.

4. Click Next to continue.

5. Click to check the I accept the license agreement check box. Select the appropriate language in the Language dropdown box and click Next to continue.

6. The next screen you are presented with asks if you would like to upgrade the current CDAs. If you have existing CDAs that have been customized after installation then you will want to save the customizations before installing SP1. If you choose to upgrade your CDAs, all customization made to your CDAs will be lost. For more information on how to save your CDA customizations, refer to the MetaFrame Secure Access Manager Upgrade Guide.

Service Pack 1 includes updates to the following CDAs:

Framework CDAs Footer

Header

Java Launch

Launch

No Home Page Error

Session Init Settings

Citrix CDAs

Embedded Application

Program Neighborhood

Shared Documents

Web Favorites

Website Viewer

Once you have saved any custom configuration you will be ready to click to select the Upgrade CDAs radio button and click Next to continue.

1. Verify the settings are correct and click Next to continue.

2. Click Finish.

You have now successfully upgraded your system to Service Pack 1 for MetaFrame Secure Access Manager 2.0. You will be required to repeat the steps for every MetaFrame Secure Access Manager server in the farm.

Important! If you adding additional MetaFrame Secure Access Manager servers to the access server farm, you will be required to disable (uncheck) the Agent server and Web server components during the installation of MetaFrame Secure Access Manager 2.0. After you install Service Pack 1 on the new server, you can use the Access Management Console to enable the Agent server and Web server components.