The customer wanted to use an Windows 8.1 tablet with an Direct Access connection and they wanted single sign on access to an published Desktop through their web interface web or services site.
Well the only receiver that worked stable on Windows 8.1 was Citrix receiver 4.1.
After instaling reciever 4.1 and adding the .adm templates to the local group policy and configuring this policy and adding the web interface website URL to the local intranet zone I still was unable to connect through SSON when using the services site on the web interface server.
Connecting to the storefront services site did work but not through the direct access connection. There was no netscaler in the organisation that I could use.
I ended up in creating an web site on the webinterface server, set this site up for single sign on access.Configured Secure Access with Gateway direct settings, or else you could not start published applications through an Direct Access connection.
Then Added the website url to the local intranet zone on the Windows 8.1 tablet and enabling Automatic log-on with current username and password in the local intranet custom level settings. The users get an icon on their desktop through a GPO pointing to the URL of the webinterface website.
This works, it's not exactly what you want, you want to use receiver 4.1, single sign on to a storefront server.
Configure .adm template and Add website to local intranet zone
Right click Administrative templates, choose add remove templates
Click on add
The .adm template can be found on the following location:
C:\Program Files (x86)\Citrix\ICA Client\Configuration\icaclient.adm
Configure the following settings:
How to add the url of your webinterface website to the local intranet zone in internet explorer
Add the following key to your client workstation by policy or script:
[HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\server1]
"*"=dword:00000001
if the url to your webinterface site is https://server1.domain.local then use the following:
[HKEY_USERS\S-1-5-21-894708121-507573567-1431495262-25276\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\Domains\domain.local\server1]
"*"=dword:00000001
Geen opmerkingen:
Een reactie posten