Upload File

citrix techedge 2014 - troubelshooting top issues with xenmobile enterprise edition

  • Home
  • Technology
  • Citrix TechEdge 2014 - Troubelshooting Top Issues with XenMobile Enterprise Edition
29
Troubleshooting XenMobile Enterprise Karen Sciberras and Adolfo Montoya May 2014 Deep dive Authentication Flow

Upload: david-mcgeough

Post on 15-Jan-2015

1.678 views

Category:

Technology


0 download

Report

Tags:

DESCRIPTION

XenMobile Enterprise Edition includes multiple Citrix components which can result in many different integration issues. In this session we will review the top integration issues and discuss the recommended troubleshooting and prevention steps for each issue. What you will learn: - Device Manager and App Controller integration best practices - NetScaler configuration troubleshooting - SSL Bridge vs. SSL Offloading - Device Manager enrollment - using a 3rd party certificate

TRANSCRIPT

  • 1. Troubleshooting XenMobile Enterprise Karen Sciberras and Adolfo Montoya May 2014 Deep dive Authentication Flow

2. 2014 Citrix. Confidential.2 Agenda Authentication flow from Worx Home to Worx Store Single Sign-on process between NetScaler Gateway and App Controller Step-up authentication for Worx apps 3. XenMobile Enterprise Authentication flows 4. 2014 Citrix. Confidential.4 Authentication flow Device Worx Home MDM MAM NetScaler Load Balancer Gateway Active Directory XDM App Controller 5. 2014 Citrix. Confidential.5 Authentication flow 6. 2014 Citrix. Confidential.6 Authentication flow App Controller XDM Device Worx Home MDM MAM NetScaler Load Balancer Gateway Active Directory Load Balancer HTTPS 443 HTTPS 8443 SSL Offload vServer 1 SSL Offload vServer 2 HTTP 80 HTTP 80 7. 2014 Citrix. Confidential.7 Authentication flow App Controller XDM Device Worx Home MDM MAM NetScaler Load Balancer Gateway Active Directory User mapped to Device Identity 8. 2014 Citrix. Confidential.8 Authentication flow Active Directory App Controller XDM Device Worx Home MDM MAM NetScaler Load Balancer Gateway Active Directory 9. 2014 Citrix. Confidential.9 Authentication flow App Controller XDM Device Worx Home MDM MAM Worx Mail MDX Apps Worx Web Office HD NetScaler Load Balancer Gateway Active Directory 10. 2014 Citrix. Confidential.10 Troubleshooting Obtaining XenMobile Device Manager logs Accessing helper.jsp console 11. 2014 Citrix. Confidential.11 Troubleshooting 12. 2014 Citrix. Confidential.12 Troubleshooting Obtaining XenMobile Device Manager logs Accessing helper.jsp console Worx Home Logs Same process to obtain MDX logs 13. 2014 Citrix. Confidential.13 Troubleshooting 14. 2014 Citrix. Confidential.14 Troubleshooting Obtaining XenMobile Device Manager logs Accessing helper.jsp console Worx Home Logs Same process to obtain MDX logs Reading Worx Home logs MDM and MAM logs 15. 2014 Citrix. Confidential.15 16. NetScaler Gateway and XM App Controller How Single Sign-on Works 17. 2014 Citrix. Confidential.17 How Single Sign-on works? App Controller Device Worx Home MDM MAM NetScaler Load Balancer Gateway Active Directory Active Directory Username / Password Validate Credentials Credentials Valid! Is user valid? Start SSO Process 18. 2014 Citrix. Confidential.18 How Single Sign-on works? App Controller Device Worx Home MDM MAM NetScaler Load Balancer Gateway HTTP Header X-Citrix-Via HTTP Header X-Citrix- Gateway HTTP Header X-Citrix-Via-VIP Gateway trusted! Perform Single Sign-on 19. 2014 Citrix. Confidential.19 What are these HTTP Headers for? XenMobile App Controller needs to trust NetScaler Gateway incoming communication HTTP headers are very important! Client-side (Worx Home) HTTP Headers: X-Citrix-Gateway: NetScaler Gateway FQDN NetScaler-side HTTP Headers: X-Citrix-Via: NetScaler Gateway FQDN X-Citrix-Via-VIP: NetScaler Gateway VIP 20. 2014 Citrix. Confidential.20 Why HTTP Headers? X-Citrix-Via HTTP Header These values provide key information to App Controller to process trust verification X-Citrix-Via value needs to match with External URL POST /Citrix/StoreWeb/Authentication/Login HTTP/1.1 Host: appc.amc.ctx . X-Citrix-Via: ag.amc.ctx X-Citrix-Via-VIP: 172.16.0.63 X-Forwarded-For: 10.12.59.17 X-Citrix-Via = External URL! 21. 2014 Citrix. Confidential.21 Why HTTP Headers? X-Citrix-Via-VIP HTTP Header X-Citrix-Via-VIP HTTP header is valuable for multiple NetScaler Gateway setup Assists App Controller which NetScaler Gateway VIP to contact for SSO POST /Citrix/StoreWeb/Authentication/Login HTTP/1.1 Host: appc.amc.ctx . X-Citrix-Via: ag.amc.ctx X-Citrix-Via-VIP: 172.16.0.63 X-Forwarded-For: 10.12.59.17 22. 2014 Citrix. Confidential.22 What to check? NetScaler and App Controller (App Controller) Ensure External URL is correct(NetScaler) Ensure WIHome contains App Controller URL for RfWeb site 23. Step-up Authentication Policy 24. 2014 Citrix. Confidential.24 Benefits New MDX application policy introduced with App Controller 2.9 Allows users authenticate through particular NetScaler Gateway vServer Configured on a per application basis Users are asked to enter additional credentials, such as an RSA token 25. 2014 Citrix. Confidential.25 Troubleshooting 26. 2014 Citrix. Confidential.26 Further Reading Worx Home - User Authentication and Communication Flow - http://www.citrix.com/tv/#videos/9438 XenMobile: WorxWeb Single Sign On with NetScaler - http://blogs.citrix.com/2013/12/24/xenmobile-worxweb-single-sign-on-with-netscaler/ XenMobile 8.6 - Understanding Authentication Timeout Values - http://support.citrix.com/article/CTX139600 Enrollment Process for XenMobile - http://support.citrix.com/article/CTX139029 Myth Buster: NetScaler Gateway MicroVPNs multiple tunnels? - http://blogs.citrix.com/2013/09/13/myth-buster-netscaler-gateway-microvpns-multiple-tunnels/ XenMobile Logs Collection Guide - http://support.citrix.com/article/CTX139421 27. 2014 Citrix. Confidential.27 Take Aways Authentication process from server URL to Worx Store Using helper.jsp console to obtain XenMobile Device Manager logs Obtain Worx Home and MDX application logs from Worx Home Reading a log file How does Single Sign-on works between NSG and App Controller Different HTTP headers used Step-up Authentication 28. 2014 Citrix. Confidential.28 @XMtipster | @XMinformer 29. 2014 Citrix. Confidential.29 WORK BETTER. LIVE BETTER.


Citrix TechEdge 2014 - Understanding and Troubleshooting Authentication Flow in XM Enterprise Edition

XenMobile and beyond! - virtuEs.IT Brussels XenMobile v1.0... · XenMobile and beyond! PepperByte: ... Agenda > Introduction > XDM > XAC > Enterprise > Deep Dive > Citrix Workspace

Securing and Managing Office 365 with XenMobile - Citrix · management of Office 365 with Citrix XenMobile There are quite a few reasons why Microsoft Office 365 is so popular

Citrix XenMobile Mobile Application Management Advantages · Citrix XenMobile MAM Advantages 2 As enterprises transition from corporate owned and managed laptops, tablets and smartphones

Secure Mobile Collaboration with Citrix XenMobile and ... · Secure Mobile Collaboration with Citrix ... the likelihood of Man in the Middle attacks. ... Mobile Collaboration with

Citrix XenMobile and ShareFile Performance - 5 Steps for a Better BYOD Experience

Enabling Mobile Workstyles Whitepaper with Citrix XenMobile

Enterterprise Mobile Managment - Citrix XenMobile

V2 March © 2015 Citrix Troubleshooting Common Issues with XenMobile WorxMail Citrix TechEdge 2015 Juan Zevallos Senior Escalation Engineer May 2015

Citrix TechEdge 2014 - A Deep Dive Look Into Supporting XenDesktop

XenDesktop and XenMobile Reference Architecture - Citrix Docs · Citrix XenDesktop overview XenDesktop 7 is a reimagining of application and desktop virtualization for the mobile

ForeScout CounterACT Integration with Citrix XenMobile MDM ... · factors obtained from XenMobile MDM, including the type of device, operating system, ownership (corporate vs. BYOD),

615: Improve the Resilience of Your XenMobile ...docs.citrixvirtualclassroom.com/events/SYNLA2014/... · • Citrix XenMobile App Controller (called XAC from here on) –version 2.10

Citrix StoreFront 2 - WordPress.com€¦ · Citrix StoreFront provides users an enterprise app store that aggregates resources from XenDesktop, XenApp, XenMobile App Controller, and

Citrix XenMobile - MDS · XenMobile Key Features Secure, business grade productivity apps –better than native workflow Mobile device management - configure, secure, and provision

Citrix XenMobile technology overview - Insight · Citrix XenMobile Technology Overview | White Paper Citrix XenMobile is a comprehensive enterprise mobility management solution that

Citrix - Road To The Cloud - magellan netzwerke · PDF fileCitrix Road To The Cloud ... Citrix XenApp Citrix XenDesktop Citrix XenMobile Other Apps ... Unified Gateway User Logon 2

Citrix XenMobile Enterprise Edition - Amazon Web Services ·  · 2015-12-12Claudio Mascaro Senior Systems Engineer BCD-Sintrag AG Citrix XenMobile Enterprise Edition Daniel Kuenzli

Citrix XenMobile Service Security hite Paper Citrix XenMobile Service Security 4 Introduction Enterprises are moving to Citrix Workspace to support their digital transformation efforts

Citrix XenMobile - Mobilize Your Business with Secure … with Citrix XenMobile. Deliver mobile device app and data management for Apple iOS devices, including iPhone, iPad and iPod

Monitoring the Citrix XenMobile MDM · Monitoring the XenMobile MDM Server 3 Monitoring the XenMobile MDM Server XenMobile MDM (also known as the XenMobile Device Manager (XDM)) is

Citrix TechEdge 2014 - Citrix Group Policy Troubleshooting for XenApp and XenDesktop

NetScaler and XenMobile Solution for Enterprise Mobility ... · 3 Introduction Welcome to the NetScaler and XenMobile solution for enterprise mobility deployment guide. Citrix XenMobile

Citrix TechEdge 2014 - How to Protect Against the Top 10 Web Security Issues with NetScaler

XenMobile Server - Citrix · 1 XenMobile Server Third Party Notices XenMobile Server 10.8 may include third party software components licensed under the following terms. This list

XenMobile Integration with Microsoft EMS/ Intune the planned integration of Citrix XenMobile and Microsoft EMS/ Intune has now become a reality. This whitepaper will detail these many

Citrix XenMobile Enterprise Edition - Amazon Web Servicesdigiblog.s3-eu-central-1.amazonaws.com/app/.../citrix-day-2014... · Claudio Mascaro Senior Systems Engineer BCD-Sintrag AG

Application Delivery Control Customer Overview - …licensing.arrowecs.at/wp-uploads/2017/11/7-Citrix-NetScaler...Citrix XenMobile Client Citrix ShareFile ... • The quality of every

Citrix XenMobile Technical Whitepaper

Citrix XenMobile and the Mobile Solutions Bundle: Lessons Learned from the Field

Cliente de pantalla inteligente de 23 con Citrix XenMobile · los multimedios. El cliente de pantalla inteligente SD-A235 con XenMobile ofrece la seguridad y el control necesarios

Citrix XenMobile - Ingram Micro · Citrix XenMobile Mobile freedom—with enterprise-grade security Citrix XenMobile is a comprehensive solution to manage mobile devices, apps, and

Citrix XenMobile Mobile Application Management Advantages · PDF fileCitrix XenMobile Mobile Application Management Advantages. White Paper ... (EMM) has shifted from managing the

Contents XenMobile... · the latest 9.8 sp1 can integrate with CITRIX XENMOBILE and IBM MAAS360 • CITRIX XENMOBILE is a Mobile Device Management (MDM) software for manage devices,

Citrix TechEdge 2014 - Advanced Tools and Techniques for Troubleshooting NetScaler Appliances