1Y0-300 Citrix Study Guide Section Two, Part 2 of 2

1Y0-300 Deploying Citrix XenDesktop 7 Solutions Study Guide Section 2, Part 2 of 2

2.16

 

Testing Aspect: When

 

Task Description:Create a resource pool for virtual desktops using XenServer

 

An engineer should create an ESX cluster pool and a shared NFS storage or a XenServer resource pool and a shared NFS SR for MCS.

 

  • Both an ESX cluster pool with shared NFS storage and a XenServer resource pool with a shared NFS SR are supported for MCS.

 

To take advantage of MCS and dynamically moving VMs from one host to another:

 

  • Configure a XenServer resource pool with an NFS SR.

 

  • MCS won't work with a CIFS file share.

 

  • Dynamically moving VMs won't work without a SR.

 

  • VMWare ESX allows neither vMotion or dynamic placement.

 

  • Hyper-V will allow both MCS and dynamic placement if one Hyper-V server is in the hosting unit.

 

2.17

 

Testing Aspect: Why

 

Task Description: Determine the appropriate shared storage

 

XenServer shared storage must be NFS to use IntelliCache.

 

XenServer shared storage must be NFS to host VMs and support MCS.

 

2.18

 

Testing Aspect: How

 

Task Description: Configure HA for XenServer

 

On the HA Plan page, under Server failure limit, the number of server failures to allow within the HA plan can be set.

 

  • This value should be less than or equal to the maximum failure capacity for the pool, shown as max.

 

  • If max is 0 (zero), the pool is overcommitted, and the HA Configuration wizard will not be able to continue to the next page.

 

  • To continue to the next page, do one of the following:

 

¨    Adjust the HA restart priorities.

 

¨    Make more resources available within the pool.

 

To enable HA for a resource pool using the Configure HA wizard:

 

  • On the XenCenter Pool menu, click High Availability.

 

  • Note: There are alternative ways to complete this task.

 

  • Ensure the HA requirements are satisfied.

 

  • Select a SR as the heartbeat SR.

 

  • Configuring multipath storage for the heartbeat SR is strongly recommended but not required.

 

  • On the HA Plan page, select one or more VMs in the list and set the required VM startup settings.

 

  • Set Server failure limit to less than or equal to the maximum failure capacity of the pool.

 

2.19

 

Testing Aspect: How

 

Task Description: Configure the network interfaces

 

A management interface is an IP-enabled NIC in XenServer.

 

In order to isolate NFS network traffic, the NFS network must be in a different storage subnet than management network traffic.

 

  • By assigning an IP address from a storage subnet to a XenServer network, a secondary management interface is created for NFS storage.

 

When creating machine catalogs, if the master image has multiple network interface cards, configure one or more cards to work with networks.

 

  • In the Create Catalog wizard, select the Network Cards Configuration node.

 

  • Select a card in the display and make sure it is enabled.

 

  • Select one or more virtual networks to associate with the selected card.

 

  • Optionally add or remove cards and then click Next to continue to create the machine catalog.

 

2.20

 

Testing Aspect: How

 

Task Description: Optimize DOM0

 

For systems running more than 50 VMs it is recommended that 2940MB of RAM is allocated to dom0 so the amount of memory allocated to the control domain should be increased.

 

2.21

 

Testing Aspect: How

 

Task Description: Configure the StoreFront Store

 

To create or remove Desktop Appliance sites, Windows PowerShell commands must be executed.

 

Changes to Desktop Appliance site settings are made by editing the site configuration files.

 

By default, requests from StoreFront to a server providing resources for a store time out after 30 seconds.

 

  • The server is considered unavailable after two unsuccessful communication attempts.

 

  • To change these settings, edit the configuration file for both the authentication service and store.

 

  • Use a text editor to open the web.config files for both the authentication service and store.

 

¨    The files are typically located in the following directories:

 

  • C:\inetpub\wwwroot\Citrix\Authentication\

 

     AND

 

  • C:\inetpub\wwwroot\Citrix\storename\

 

  • Storename is the name specified for the store when it was created.

 

2.22

 

Testing Aspect: How

 

Task Description:  Configure access to StoreFront through NetScaler Gateway

 

When configuring a session profile for access to StoreFront through NetScaler Gateway:

 

  • Use the NetScaler Gateway Plug-in for Java.

 

  • The NetScaler Gateway Plug-in for Windows or Mac OS X do not restrict the connection to using the ICA protocol.

 

2.23

 

Testing Aspect: How

 

Task Description: Configure remote user access

 

If StoreFront for NetScaler Gateway 10.1, Access Gateway 10, Access Gateway 9.3, or a single Access Gateway 5.0 appliance is being configured, complete the NetScaler Gateway authentication service URL in the Callback URL box.

 

  • StoreFront automatically appends the standard portion of the URL.

 

  • Enter the internally accessible URL of the appliance.

 

  • StoreFront contacts the NetScaler Gateway authentication service to verify that requests received from NetScaler Gateway originated from that appliance.

 

2.24

 

Testing Aspect: How

 

Task Description: Configure CNAME and ALIAS for Receiver for Web and Receiver Controller

 

Complete the following procedure to re-enable the CNAME function, allowing FQDN rerouting and the use of NETBIOS names:

 

  • Disable the Citrix policy for the auto-update feature.

 

  • On each delivery agent, open the registry and set the following registry value to 1:

 

  • HKEY_LOCAL_MACHINE\SOFTWARE\Citrix\VirtualDesktopAgent REG_DWORD UseCnameLookup Enabled = 1

 

  • (Disabled=0)

 

2.25

 

Testing Aspect: Why

 

Task Description: Configure HA for StoreFront

 

Multiple StoreFront servers can be added to a server group

 

Starting with StoreFront 2.0 there is no SQL database requirement.

 

To provide HA and load balancing, all StoreFront servers can be placed behind NetScaler.

 

  • DNS Round Robin is not suitable since a failure of a single server will affect portion of the users.

 

  • Windows Network Load Balancing (WNLB) is supported with StoreFront.

 

  • WNLB lacks intelligent monitoring capabilities.

 

  • WNLB will not protect against StoreFront web site issues.

 

2.26

 

Testing Aspect: When

 

Task Description: Configure session profiles

 

In the following scenario:

 

  • An engineer is deploying XenDesktop and StoreFront and users will access the environment remotely using Windows laptops, Chrome notebooks, Mac laptops, as well as various iOS and Android tablets.

 

  • Some clients might not have the latest version of Citrix Receiver.

 

  • A pair of NetScaler appliances has been purchased and installed in the DMZ.

 

  • The engineer plans to use the NetScaler appliances to provide access to the environment.

 

The engineer should take the following three steps:

 

  • Configure one NetScaler Gateway virtual server for all clients.

 

  • Bind all session profiles and policies to one NetScaler Gateway virtual server.

 

  • Configure separate session profiles and session policies for different types of clients.

 

  • Although it is possible to create separate NetScaler Gateway virtual servers for different types of clients it would force different clients to use different URLs to access the environment.

 

  • Creating a single NetScaler Gateway virtual server and using session policies and profiles to accommodate different types of clients is the best configuration for this scenario.

 

  • In this case there may be several session policies and profiles that need to be configured:

 

  • For legacy clients

 

  • For current Citrix Receiver clients running on Windows and Mac OS

 

  • For Chrome OS clients

 

  • For Android and iOS clients.

 

¨    Session profiles get associated with session policies which then get bound to a NetScaler Gateway virtual server.

 

2.27

 

Testing Aspect: When

 

Task Description:Configure NetScaler Gateway to accept user connections using email-based discovery

 

Email-Based Discovery simplifies the configuration of Citrix Receiver to managed and unmanaged devices.

 

  • When users connect from inside a network or a remote location and install Receiver for the first time, they enter their email address or the StoreFront URL.

 

  • Receiver then queries the appropriate DNS server.

 

  • The DNS server responds with the StoreFront or NetScaler Gateway URL.

 

  • The URL depends on whether users connect from the internal network or they connect from a remote location.

 

  • Users then log on to Receiver with their user name, password, and domain.

 

  • If users connect from a remote location, NetScaler Gateway provides the StoreFront URL to Receiver.

 

  • Receiver gets the account information from StoreFront.

 

  • If users connect through NetScaler Gateway, the appliance performs Single Sign-On to StoreFront.

 

  • If more than one account is available, users receive a list of accounts from which to choose.

 

  • When users log on to an account, a list of applications appear in Receiver.

 

  • Users can then select an app to open.

 

2.28

 

Testing Aspect: How

 

Task Description: Configure ICA proxy

 

To configure ICA proxy using NetScaler:

 

  • LDAP is used to authenticate

 

  • STA is used to verify ICA session secured ticket

 

  • StoreFront replaces Web Interface to present applications

 

  • Note: DDC information is not needed for configuring NetScaler; however it is needed to configure StoreFront.

 

  • Note: NetScaler uses a license file but NetScaler does not need a Citrix Licensing server to finish the configuration of ICA proxy.

 

2.29

 

Testing Aspect: How

 

Task Description: Configure NetScaler Gateway for load balancing StoreFront servers

 

Load balancing StoreFront servers is similar to load balancing SSL web servers.

 

  • First, enter all StoreFront servers in NetScaler.

 

  • Then for simplicity a Service Group should be configured.

 

  • Since StoreFront servers use SSL, the Service Group should be configured with the SSL protocol and HTTPS monitor.

 

  • Upload an SSL certificate to NetScaler and create a Virtual Server with the SSL protocol and bind the Service Group and the certificate to it.

 

2.30

 

Testing Aspect: How

 

Task Description: Configure end point analysis scans

 

When configuring Endpoint Analysis, the session policy expressions should be configured so that the Endpoint Analysis scans do not run on Android or iOS mobile devices.

 

Endpoint Analysis scans are not supported on mobile devices.

 

If an Endpoint Analysis policy is bound to a virtual server, a secondary virtual server must be created for mobile devices.

 

Do not bind pre-authentication or post-authentication policies to a mobile device virtual server.

Comments are closed.