The Ultimate Citrix Install Guide 		 
 DABCC Home  |    MIAB eBook   |    Citrix Tips   |   MIAB 4.0   |    MIAB 3.0   |    MIAB 2.1   |    MIAB 1.0   |    Sponsors   |   Quotes    |    Site Map
PROJECT MANAGEMENT
1. Project Management Overview
2. Project Management Methodology
3. Tips for Making Meetings Effective

ANALYSIS PHASE
1. Analysis Phase Overview
2. Vision / Project Scope (Statement of Work)
3. Project Plan
4. Infrastructure Assessment
5. Proof of Concept
6. Analysis Phase Checkpoint

DESIGN PHASE
1. Design Phase Overview
2. Server Design
3. MetaFrame Access Suite Design
4. Infrastructure Design
5. Design Phase Checkpoint

IMPLEMENTATION PHASE
1. Implementation Phase Overview

2. Prepare the Network Environment
2. 1. Create Required Network Shares
2. 2. Firewall Modifications
2. 3. Throttling Port Speed and Duplex Settings
2. 4. Add Users to a Terminal Services Environment
2. 5. Create Required Citrix Specific User Groups

3. Install Operating System(s) for MetaFrame XP
3. 1. Installing Microsoft Windows 2000
3. 2. Installing Microsoft Windows Server 2003

4. MetaFrame IMA Data Store Installation & Configuration
4. 1. How to Install & Configure Microsoft SQL Server 2000
4. 2. How to Install and Configure Microsoft SQL Desktop Edition (MSDE)

5. Install MetaFrame XP Server w/ Feature Release 3
5. 1. How to Remap MetaFrame XP Server Driver Letters
5. 2. Installing MetaFrame Feature Release 3 on Windows 2000
5. 3. Installing MetaFrame Feature Release 3 on Windows Server 2003
5. 4. Installing MetaFrame XP HotFixes
5. 5. How to Add Licenses through the Management Console for MetaFrame XP

6. Install “Image” Applications

7. Rapid Server Deployment
7. 1. How to Clone a Citrix MetaFrame XP Server
7. 2. How to Create a Network Boot Disk

8. Configure MetaFrame XP Farm Wide Settings
8. 1. Recycling Operating Systems
8. 2. MetaFrame XP Delegated Administration
8. 3. How to Create a Zone & Move MetaFrame XP Servers to it
8. 4. How to Set a Server’s Preference for Data Collector Elections
8. 5. MetaFrame XP User Policies
8. 6. How to Implement Automatic ICA Client Updates
8. 7. Client Drive Mapping
8. 8. How to Implement Client to Server Content Redirection
8. 9. How to Implement Server to Client Content Redirection
8. 10. Configure ICA Keep-Alive
8. 11. Configure SpeedScreen Browser Acceleration

9. Install “Manual” Applications
9. 1. How to Install and Configure Microsoft Office 2000
9. 2. How to Install and Configure Microsoft Office XP
9. 3. How to Install and Configure Microsoft Office 2003

10. MetaFrame Conferencing Manager 2.0
10. 1. How to Install the Conference Organizer Service
10. 2. How to Install the Conference Room
10. 3. How to Install Conferencing Manager User Interface
10. 4. How to Specify the License Type through the CM Configuration Tool
10. 5. How to Add Users to the Conferencing Manager
10. 6. Microsoft Exchange Server Integration
10. 7. Troubleshooting

11. Publishing Resources through the Management Console
11. 1. How to Publish an Application
11. 2. How to Publish Content
11. 3. How to Publish Application from a Shortcut
11. 4. How to Publish the Printer Folder
11. 5. How to Publish Windows Explorer

12. How to Configure the Printing Environment
12. 1. Set the proper expectations
12. 2. Setup the Print Environment
12. 3. Create Printer Compatibility Driver Mappings
12. 4. Set Printer Bandwidth Limits for Client Auto-Created Printers
12. 5. How to use Project Compatibility automate Driver Mapping
12. 6. How to Manually Connect a Client Printer within an ICA Session

13. Install MetaFrame Secure Access Manager 2.0
13. 1. Install MetaFrame Secure Access Manager on Windows 2000 Server
13. 2. Install MetaFrame Secure Access Manager 2.0 on Windows Server 2003
13. 3. How to Install MetaFrame Secure Access Manager 2.0 Service Pack 1
13. 4. Install the Access Management Console on MetaFrame XP or a Workstation
13. 5. Create an Access Center
13. 6. Configure the Access Center
13. 7. Customizing MetaFrame Secure Access Manager
13. 8. How to Configure Internet Explorer for a Secure Access Center

14. Install Web Interface 2.1
14. 1. How to Install Web Interface 2.1 (Clean Install)
14. 2. How to Upgrade a NFuse Server to Web Interface 2.1
14. 3. Web Interface 2.1 Web Administration Tool
14. 4. How to Customize Web Interface 2.1
14. 5. How to Repair Web Interface 2.1

15. Install SSL Certificates and Secure IIS Server
15. 1. How to install and configure the IIS Lockdown Tool (version 2.1)
15. 2. How to Enable SSL on an IIS Web Server
15. 3. How to Force the use of SSL Encryption on a IIS Web Site

16. Install Secure Gateway 2.0 for MetaFrame
16. 1. Pre-installation Check List
16. 2. How to Install and Configure the STA Component
16. 3. Install the Secure Gateway Service
16. 4. Secure Gateway for MetaFrame Management Tools

17. MetaFrame XP Remote Administration Tools
17. 1. Management Console for MetaFrame XP
17. 2. Citrix Web Console (CWC)

18. ICA Clients
18. 1. How to Install the ICA Win32 Program Neighborhood Agent
18. 2. How to Install the ICA Win32 Web Client
18. 3. How to Configure the ICA Java Client
18. 4. How to Utilize the ICA Program Neighborhood Pass-Through Client
18. 5. Citrix ICA Client 6.20 for OS 9.X
18. 6. Citrix ICA Client 6.30 for OS 10.x

19. Microsoft Terminal Services Licensing
19. 1. Summary of Licensing Options in Windows 2000 Server
19. 2. Summary of the licensing options in Microsoft Windows Server 2003

20. Implement Windows System Policies
20. 1. MIAB Administrative Template Overview
20. 2. How to Create an Administrative Template to Hide Drives
20. 3. Implementing Windows 2000 Active Directory Group Policies
20. 4. Implementing Windows NT, Terminal Server 4.0 System Policies

21. How to Install and Configure MetaFrame Password Manager
21. 1. Prepare the Directory Service
21. 2. Install and Configure the MetaFrame Password Manager Console
21. 3. Deploy the MetaFrame Password Manager Agent
21. 4. On-Going Maintenance

22. Implementation Phase Checkpoint

READINESS PHASE
1. Readiness Phase Overview
2. Testing your New MetaFrame Access Suite Environment
3. Pilot Implementation
4. Rollout Any Remaining Servers
5. Implement Change Management Policies and Procedures
6. Readiness Phase Checkpoint

ROLLOUT PHASE
1. Rollout Phase Overview
2. End-User Training
3. Administrator Training
4. Go Live!
5. Rollout Phase Checkpoint

APPENDIX
1. Additional Resources
2. MIAB3.0.ZIP - Files Explained

20. 4.    Implementing Windows NT, Terminal Server 4.0 System Policies

MetaFrame XP Servers that are members of Microsoft NT 4.0 domains and or Novell Netware environments, implement System Policies using policies files configured through the System Policy Editor.

The System Policy Editor is a graphical tool provided with Windows that allows you to easily update the registry settings to customize and lockdown a particular user or group of users. The System Policy Editor creates a file that contains registry settings that are then written to the user or local machine portion of the registry database. User Profile settings that are specific to a user who logs on to a given workstation or server are written to the registry under HKEY_CURRENT_USER. Likewise, machine-specific settings are written under HKEY_LOCAL_MACHINE.


How to Set the System Policy File Share Location

By default, servers reference the Ntconfig.pol located in the Netlogon share. This reference can be found in the registry, located at:

HKEY_LOCAL_MACHINE\System\CurrentControlSet\ Control\Update

In order to create specific policies for MetaFrame XP Servers you will need to create modify the above registry key value to point to a dedicated MetaFrame XP policy file located on a network share. The value for this registry key is modified on a computer-by-computer basis. To modify this value, I recommend you use the System Policy Editor and modify the update section found in the network section of the default machine properties. The Common.adm administrative template defines this registry key as shown below.

Note: This change will need to be made on every MetaFrame XP Server that you want to take advantage of System Policies.

1.      Click Start click Run type: poledit and click OK. Click File Open Registry

2.      Double click on the Local Computer icon.

3.      The Local Computer Properties box opens. Browse to the Remote update. (expand Network System polcies update and then check the Remote update. Choose Manual (use specific path) from the Update mode drop down box and then enter the UNC location that the system policy will be stored in the Path for manual update text box. Click OK with finished.

4.      Follow steps 1 through 4 on every MetaFrame XP Server running in Application mode.

 

You are now ready to create user and computer system polcies.

 

20. 4. 1 How to add Administrative Templates to the System Policy Editor

1.      Click Start click Run type: poledit and click OK.

2.      Click Options click Policy Template

3.      Click Add

4.      Browse to a Policy Template and click Open.

5.      If you would like to add more Policy Templates then repeat steps 3 and 4 when finished click OK.

 

You are now ready to create or edit System Policies.

20. 4. 2 How to create a System Policy with the System Policy Editor

The following procedures document how to create a system policy with the System Policy Editor utility.

1.      Click Start Click Run type: poledit

2.      Click Edit click Add Group

3.      The Add Group dialog box will open and prompt you to enter the groups name. Click Browse to select the group

4.      Select the groups you would like to add and click OK.

Note: I highly recommend you add the Domain Admins group and for every change you make to a group you make the adverse change to the Domain Admins group. This will guarantee you do not lock yourself out.

 

5.      You are now presented with the System Policy that, in this example, consists of the Default Computer, Default User, CTX Users and Domain Admins groups. Double Click on the CTX Users account to open the policy

Note: The CTX Users account is a group made up of every user that has log on access to the MetaFrame XP Server. I recommend crating such a group instread of using the Domain Users group.


6.      You are now presented with the CTX Users Properties and are free to configure the policy by selecting polices.

 

7.      Now that you have imported the HideCalc Policy Template you will want to enable the policy by checking the Hide Drives as defined by Hidcalc. You will also want to make other changes as well but remember to make the adverse changes to the Domain Admins group. Click OK with finished.

8.      Now you will want to make the adverse policy change to the Domain Admins group to ensure that you do not lock yourself out of any features or functions.

9.      Click to uncheck any policy that was enabled in step 7.

Note: An unchecked checkbox mean the policy is not enabled. A grayed out check box means it will inherit the current applied policy and a checked box means the policy is enabled.

10. Click OK.

 

11. Click File click Save

 

12. Save the policy to the policy share that was created earlier in the document.

 

You are now ready to test your policy and tweak them as needed.

 

 

 

21. How to Install and Configure MetaFrame Password Manager

Now that we have our MetaFrame XP Server environment setup we are ready to move on to installing and configuring MetaFrame Password Manager. MetaFrame Password Manager allows end-user to authenticate once and then allow MetaFrame Password Manager to manage and secure authenticate to any application, web page and or terminal emulation session.

Below we have documented the basic steps needed to deploy Password Manager utilizing the File System directory service. Please refer to the MetaFrame Password Manager 2.0 Administrators Guide for more detailed installation and configuration information.

Citrix MetaFrame Password Manager is broken down in to the following three components that will need to be deployed and configured.

       Directory (File Sync, Microsoft Active Director) Stores configuration information

       MetaFrame Password Manager Console Utility used to create and configure application definitions, Agent settings and everything else associated with Password Manager.

       MetaFrame Password Manager Agent Is the client side component that uses an intelligent engine to recognize web sites, applications, and or terminal emulations sessions requiring authentication and password management.

In order to configure the MetaFrame Password Manager Agent to synchronize with the directory service you will be required to perform the following tasks:

       Prepare the Directory Service

         File Share

         Microsoft Active Directory

       Install the Administrative Console and configure MetaFrame Password Manager.

         Configure Agent Settings

         Configure User Questions

         Create any required application definitions

         Generate MetaFrame Password Manager Agent installation program (MSI).

       Deploy MetaFrame Password Manger Agent

         Manually

         From Installation Manager, Active Directory and or other rapid deployment method.

 

The following details how to perform a basic installation and configuration of MetaFrame Password Manager 2.0.


DABCC Site Map | Legal Notice | Privacy Statement | All Rights Reserved for DABCC, Inc.