Category Archives: Citrix

Citrix XenMobile, Cloud Gateway, ShareFile, XenApp, XenDesktop

Citrix Synergy 2015 Highlights

Keynotes
You can now watch both the Citrix Synergy 2015 Keynote (Day 1) and General Session (Day 2) on-demand at – http://live.citrixsynergy.com/2015/presentations.php.

My Top 5 of Citrix Synergy TV 2015 On-Demand
I am still busy watching all the on-demand content so some of the below may change over time.

You can watch these and many more at http://live.citrixsynergy.com/2015/presentations.php.

1: SYN324: HDX Refresh your Basic and Advanced Knowledge
2: SYN329: Deploying StoreFront
3: SYN322: Workspace Pod Technology
4: SYN208: CloudBridge: What’s new and What’s Hot
5: SYN319 – Tech update for XenApp and XenDesktop

Citrix Blogs
1: http://blogs.citrix.com/2015/05/12/the-citrix-workspace-cloud-experience-and-what-it-means-for-your-business/
2: More coming…

HDX 3D Pro Master Class from July 2014

XenDesktop Master Class July 2014 – HDX 3D Pro with NVIDIA GRID
Although this was recorded in July 2014 there is a lot of useful knowledge and fundamentals in relation to HDX 3D Pro.

XenMobile 10.0 PoC Considerations

The following content is a brief and unofficial prerequisites guide to setup, configure and test XenMobile 10.0 prior to deploying in a PoC which will eventually mature to a Pilot, UAT then finally into an Production environment by the author of this entry. The views, opinions and concepts expressed are those by the author of this entry only and do not necessary conform to industry descriptions or best practises.

Shortened Names
XENMOBILE – xm
XENMOBILE SERVER – xms
VIRTUAL APPLIANCE – v/a
FEDERAL INFORMATION PROCESSING STANDARDs – fips
NETSCALER GATEWAY – nsg
MICROVPN – mVPN
FIREWALL – f/w
CERTIFICATE – cert
ACTIVE DIRECTORY – ad
INFRASTRUCTURE-AS-A-SERVICE – iaas
ENTERPRISE MOBILITY MANAGEMENT – emm
MOBILE CONTENT/INFORMATION MANAGEMENT – mc/im
MOBILE DEVICE MANAGEMENT – mdm
MOBILE APPLICATION MANAGEMENT – mam

Preparation & Pre-requisites (DRAFT & MAY CONTAIN ERROR(S))
1: XenMobile 10 is completely different from XenMobile 9 as it is now a single harden Linux V/A and the communication paths between the NSG and the XMS V/A are also now differently likewise setting and configuring XM 10 is different from XM 9 and its substantially more quicker and easier.
2: Never use a production NSG for a customer PoC why? When you upload the trial licenses it will require the NSG V/A to reboot which cannot be completed in a production environment without a scheduled and carefully planned maintenance window.
3: You may want to use the latest NS(G) firmware for the XM PoC to achieve the best possible outcome, result and of course to have the best optimal performance.
4: XenMobile has the ability to integration of a number of the Citrix products to form an end-2-end EMM solution that encompasses MDM, MAM, MC/IM.
5: Identify and visually understand where potentially all the components/products sit within the whole overall mobility solution. Here is a great visual reference that is clean and clear to understand – http://support.citrix.com/proddocs/topic/xenmobile-10/xmob-arch-overview-con.html for XenMobile 10.
6: Review the pre-requites and checklists if available for each product that you wish to deploy within XenMobile. I have listed a few here for you starting with all the required ports:

Architecture – http://support.citrix.com/proddocs/topic/xenmobile-10/xmob-arch-overview-con.html
System Requirements – http://support.citrix.com/proddocs/topic/xenmobile-10/xmob-system-requirements.html
Ports – http://support.citrix.com/proddocs/topic/xenmobile-10/xmob-deploy-component-port-reqs-con.html
Pre-Installation Checklist – http://support.citrix.com/proddocs/topic/xenmobile-10/xmob-xenmobile-install-checklist.html

7: Now that you have an understanding of the requirements I would strongly advise that you also read through the XenMobile security whitepaper available at – http://www.citrix.com/content/dam/citrix/en_us/documents/products-solutions/xenmobile-security.pdf. Although you may not actually want to read through this whitepaper even just a brief glance at the MDX technology sections will provide you with a greater understanding of mVPN’s and the MDX framework that powers all of Citrix’s Worx App’s – http://www.citrix.com/products/xenmobile/tech-info/worx-mobile-apps.html.

Pre & Post Discovery Meetings (DRAFT & MAY CONTAIN ERROR(S))
1: Ensure that you educate the organisation as to what XenMobile is and it’s capabilities surrounding enterprise mobility management commonly referred to EMM. I often find that individuals still today don’t have a very clear and defined understanding of what is MDM and MAM are so its worth educating your customer.
2: I would suggest that you setup 2-3 GoToMeeting sessions a minimum. This is to ensure and allow the organisation to ask any questions surrounding the pre-requites and system requirements of XenMobile including supporting any and all external dependencies e.g iOS Enterprise Developer Account for signing Worx’s apps. The second reason is to ensure that all the pre-requites have been completed successfully prior to you arriving onsite to complete a PoC implementation and to answer any further Q&A the organisation has. If the organisation has not completed the pre-requites then proceed with the third GoToMeeting and if the pre-requites have still not being completed successfully I would strongly advise escalating to managers on both organisations and rescheduling your PoC deployment date to an alternative date as the chances of your PoC being successfully will be less likely and as for example the required ports may not be opened correctly, certificates for securing communication are completed etc. If you do choose to proceed you’ll more than likely spend a great deal of time troubleshooting in order to successfully complete your XenMobile 10 PoC deployment.
3: Decide on a database platform note that Postgres SQL is built-in to the XMS V/A and it is recommended PoC deployments only, where as a remote MS SQL database is best utilised for production deployments.
4: Decide upon the MDM management addr for mobile devices which should be a FQDN e.g mdm.axendatacentre.com. If you intend to manage devices both in and outside of your organisation I would recommended implementing SplitDNS ref – http://en.wikipedia.org/wiki/Split-horizon_DNS.

Example of SplitDNS
///////////////////
Internal 10.10.1.1 resolves to mdm.axendatacentre.com over the corporate trusted Wi-Fi or wired ethernet
External 8.8.8.100 resolves to mdm.axendatacentre.com over 3/4G

5: Login to your Citrix My Account at – http://www.citrix.com/ locate and click Partner Central (Opens a new tab) then once the web page loads click Sales in the navigation menu bar and click on SalesIQ (Opens a new tab) then once loaded click on PoC Central scroll down and download the XenMobile PoC kit. Note only valid Citrix Partners may download content from Citrix SalesIQ.

How-to resolve – Profile Installation Failed The server certificate for “https://XM-FQDN:8443” is invalid when enrolling a device against XenMobile
1: The following error message Profile Installation Failed The server certificate for ‘https://XM-FQDN:8443″ is invalid is received when enrolling iOS 7.x.n + with XenMobile 10.
2: The issues is related to the private key within the exported *.p12/pfx certificate when exported from a Windows machine with either Certificate Manager or IIS Manager on Windows Server.
3: I would suggest that you download and run DigiCert Certificate Utility for Windows from – https://www.digicert.com/util/ on the server that originated the CSR that was used to generate a wildcard certificate. Once the tool is open find your wildcard cert and follow the steps at – https://www.digicert.com/util/pfx-certificate-management-utility-import-export-instructions.htm to export the certificate BUT before you proceed with the export please highlight the intended wildcard certificate and select “Test Key” once its completed successfully select “Export Certificate” option.
4: Upload the exported DigiCert p12/pfx cert to the XMS V/A for both the server and the SSL listener and restart the XMS V/A.
5: Once the XMS V/A is online login to both the SFP and the Admin WebUI to validate that the XMS V/A is active and responding as normal/expected.
6: Begin enrolling your iOS device and the following error message Profile Installation FailedThe server certificate for “https://” is invalid should no longer appear and you should be able to successfully enroll your iOS device.

PoC Notes & Tips
1: Deploy your first few XenMobile 10.0 PoC as single entities without the complexity of clustering, load-balancing e.t.c
2: Stick with 2 devices during a PoC to maximise your success and remember a PoC is designed to prove a concept or that a technology works as described.
3: If your deploying ShareFile On-Prem SZ remember to backup the SZKeys.txt in the root of your ShareFile Data CIFS share.
4: Support NetScaler Gateway (Builds + Versions) for XM 10.0 currently include – 10.5.55.8 MR5, 10.5.54.9 MR4, 10.5.53.9 MR3, 10.1.130 MR and 10.1.129 MR ref – http://support.citrix.com/proddocs/topic/worx-mobile-apps/xmob-10-understand-compatibilitymatrix-con.html. Please review the following CTX article entitled “FAQ: XenMobile 10 and NetScaler 10.5 Integration” available at – http://support.citrix.com/article/CTX200430 which is a great and resourceful CTX article.
5: Although this is typically not considered during a PoC Citrix provides detailed overview of scaling XenMobile 10.0 from 1000 up to 100,000 devices fronted by both VPX and MPX NS appliances – http://support.citrix.com/proddocs/topic/xenmobile-10/xmob-scaling-xm.html.

XenMobile 10.0

The following content is a brief and unofficial prerequisites guide to setup, configure and test XenMobile 10.0 prior to deploying in a PoC, Pilot or Production environment by the author of this entry. The views, opinions and concepts expressed are those by the author of this entry only and do not necessary conform to industry descriptions or best practises.

Shortened Names
XENMOBILE – xm
XENMOBILE SERVER – xms
VIRTUAL APPLIANCE – v/a
FEDERAL INFORMATION PROCESSING STANDARDs – fips
NETSCALER GATEWAY – nsg
VIRTUAL IP ADDRESS – vip
MOBILE APPLICATION MANAGEMENT – mam
MOBILE DEVICE MANAGEMENT -mdm

What’s New
1: XenMobile is now a single unified hardened Linux virtual appliance.
2: Complete overhaul of the Web UI which dramatically simplifies policy setup & configuration of MDM + MAM policies and it allows for the management of multiple platforms within a single policy.
3: Built-in V6 Citrix Licensing server provides a 30 day trial/evaluation and also support for remote V6 CTX licensing server.
4: Built-in PostgreSQL database recommended for PoC’s and there’s also support for remote MS SQL database which is recommended for production deployments.
4: XMS V/A includes IPtables which is a Linux firewall – http://en.wikipedia.org/wiki/Iptables.
5: XMS placement is in the DMZ. The V/A is hardened and is FIPS 140-2 compliant and remember you data is actually stored in a MS SQL database unless your utilising PostgreSQL database within the XMS V/A.
6: Traffic flow and ports between NetScaler Gateway and the XenMobile Server (XMS) have changed please refer to eDocs for an architecture overview of the changes at – http://support.citrix.com/proddocs/topic/xenmobile-10/xmob-arch-overview-con.html.
7: The Admin Web UI is now on https://XMS-FQDN:4443/. This port is not configured as part of the XenMobile 10 wizard on NetScaler Gateway build 10.5-55.8 which means that you will not be able to access the mgmt. Admin Web UI from the internet it will only be accessible from the DMZ and the TRU network dependant upon your firewall(s) ACL list.
8: New WorxHome build 10.0.3.83 which is also backwards compatible from XenMobile 10.x.n
9: The XenMobile NetScaler Connector (XNC) currently is still a separate Windows Server.
9: You can find our more by watching the following Mobility Master Class: What’s New in XenMobile 10 available from Citrix TV.

Mobility Master Class: What’s New in XenMobile 10

Mobility Master Class: Citrix XenMobile 10 Clustering & MDM Migrations

Deploying XenMobile 10
1: Review the system requirements for XMS at – http://support.citrix.com/proddocs/topic/xenmobile-10/xmob-system-requirements.html to understand the supported hypervisors, computing requirements. You should also make sure that you review the latest XM architecture as it has changed between XenMobile 9.0 vs. 10.0 and it can be viewed at – http://support.citrix.com/proddocs/topic/xenmobile-10/xmob-arch-overview-con.html. You’ll notice that the traffic between NSG and the XMS V/A has changed however all traffic externally still occurs on there traditional ports (443, 8443, 2195, 2196, 5223).
2: Review and understand the NetScaler Gateway compatible requirements at – http://support.citrix.com/proddocs/topic/worx-mobile-apps/xmob-10-understand-compatibilitymatrix-con.html.
3: Make sure that you print out and fill-in all the pre-requitses for the XMS V/A ref – http://support.citrix.com/proddocs/topic/xenmobile-10/xmob-xenmobile-install-checklist.html prior to deploying your XMS V/A on your chosen hypervisor.
4: Once you have uploaded the V/A to the hypervisor and booted it complete the onscreen instructions ref – http://support.citrix.com/proddocs/topic/xenmobile-10/xmob-install.html. Once you are finished login into the Admin WebUI replacing the IP Addr with your XMS V/A ip addr from this example https://XMS-IPADDR:4443/ and login with Administrator account your specified during the deployment and NOT admin which is used to access the XMS V/A CLI from your hypervisor only.
5: Once you’ve logged in you’ll need to have the following listed below available to successfully complete the second part of the initial XenMobile 10 deployment. There is also a pre-requites check list available at – http://support.citrix.com/proddocs/topic/xenmobile-10/xmob-xenmobile-install-checklist.html.

– Citrix v6 licensing file for either local or remote. Remote is recommended for H/A purposes.*
– Microsoft Active Directory (AD) ip addr or FQDN, base DN, domain, search service account with read-only permissions.
– Certificate in *.p12 or *.pfx format for the SSL_Listener which is used for two way secure HTTPS communication to the XMS V/A.
– APNS certificate.
– Separate MDM and MAM+ FQDN’s correctly setup in DNS with fwd and reserve lookup’s configured and each configured with its own static IP addr for external resolution.
– 3x VIP for configuring XenMobile 10 with NetScaler Gateway 10.5.55.8 +. You can find a compatible NSG V/A version and builds at – http://support.citrix.com/proddocs/topic/xenmobile-10/xmob-10-understand-compatibilitymatrix-con.html.
– MS SQL Database server configured to accept traffic and with write/read privileges to create and manage the remote XMS database.
– Mail server configuration which enables and provides workflow email messages, notifications to users e.t.c

6: Follow the onscreen prompts and once completed the web UI deployment wizard then you have successfully deployed a XMS V/A. Please not reboot the XMS V/A so that the existing SSL certificates for HTTPS can be unbound and the newly uploaded SSL cert(s) can be bound to HTTPS.
7: You may now setup a XMS cluster and configure H/A with a NSG and thereafter begin configuring your XenMobile 10.0 environment. See the H/A section for a how-to.
8: Logon to one of the XMS v/a direct IP addr e.g https://XMS:4443/ if in H/A fronted by the NSG as the XenMobile 10 wizard will not configure 4443 which means that you cannot access the mgmt interface via the VIP owned by the NSG. This means that the mgmt interface is not accessible either internally or externally on the FQDN that resolves the VIP owned by the NSG.
9: Scaling XenMobile 10.0 from 1000 up to 100,000 devices – http://support.citrix.com/proddocs/topic/xenmobile-10/xmob-scaling-xm.html.

XMS V/A High-Availability (H/A)
1: Prior to understanding how-to setup a XMS H/A or clustering you need to understand that the minimum requirements are for a remote CTX v6 licensing server and MS SQL database as the XMS V/A do not hold any user/cfg information this is all held in the remote database.
2: Once your have setup XMS follow the prompts in the CLI to enable clustering and configure the IPtables firewall ACL and then finally shut it down and clone it.
3: Rename the cloned XMS V/S to your required naming convention and then boot up the cloned XMS V/A login to the CLI and changed the IP addr and ensure that the IPtables firewall ACL ports are correctly enabled then shutdown the V/A.
4: Boot the first XMS V/A and then 60 seconds later boot the cloned XMS V/A and login to the CLI to very the cluster is enabled and then login into the XMS admin WebUI to verify that the cluster is up and functioning as expected. The original XMS V/A will be the oldest in the cluster.
5: You can now proceed to setting up the load-balancing for the XMS V/A’s with NSG to service MDM + MAM requests.

Supported NetScaler Gateway (Builds & Versions) for XM 10
1: 10.5.55.8 MR5; 10.5.54.9 MR4; 10.5.53.9 MR3; 10.1.130 MR & 10.1.129 MR ref – http://support.citrix.com/proddocs/topic/worx-mobile-apps/xmob-10-understand-compatibilitymatrix-con.html.

Deploying XM 10 with NetScaler Gateway 10.5.x.n (Draft)
1: Before beginning its worth mentioning that the way I will be describing how-to deploy XenMobile 10 in this blog article will be to utilise to external static IP addr’s + FQDN’s that are NATed to DMZ IP addr’s and I will utilising SplitDNS for device mgmt. in/outside of my TRU network. I will also be implementing the described XenMobile 10 environment below utilising an SSL Bridge although offloading includes a few more minor steps the intention of this section is aimed at helping you front your XenMobile 10.0 deployment with a NSG 10.5.x.n V/A.
2: Please review the following CTX article entitled “FAQ: XenMobile 10 and NetScaler 10.5 Integration” – http://support.citrix.com/article/CTX200430 which will aid you in been able to setup and configure load-balancing for XMS V/A’s, mVPN for Worx’s apps for XenMobile 10 with NetScaler Gateway 10.5.x.n.
3: You’ll require the following prior to be beginning:

– Correct NetScaler (Gateway) build +_ version the NSG version + build I’ll be discussing here is NetScaler Gateway 10.5.55.8 MR5 but you can check the latest supported version + builds at – http://support.citrix.com/proddocs/topic/worx-mobile-apps/xmob-10-understand-compatibilitymatrix-con.html
– 1x FQDN for MDM e.g. mdm.axendatacentre.com * that resolves to both external internet routable static IP addr and your internal assigned static IP. Please note that this should match exactly the FQDN entered in at the time of the deployment of your XMS V/A during the first phase in the CLI the text your looking for is/was “XenMobile Server FQDN:” and its highlighted in yellow. It is also worth/noting that if you have utilised an internal domain e.g xms.abc.local as the FQDN this will only manage devices internally as that FQDN is not routable on the internet so you’ll only be able to manage devices INSIDE of the trusted network to its recommended to a FQDN that is internet routable and you can utilise SplitDNS to manage traffic requests to the NSG VIP’s for XenMobile.
– 1x FQDN for MAM (Worx’s Apps) e.g. mobileapps.axendatacentre.com * that resolves to both external internet routable static IP addr and your internal assigned static IP
– 2x External routable internet IP addr’s * e.g 8.8.8.8 which most IT Pro’s utilise to ping to check internet connectivity
– 3x Internal IP addr’s owned by the NSG as VIP
|- 1x for MDM
|- 1x for MAM Gateway
|- 1x for Load-balancing IP
– Wildcard certificate for your domain e.g *.domain.com
– If your implementing SSL Offloading (HTTP) of your XenMobile traffic for MAM then you’ll require the devices cert from the XMS V/A which can be downloaded from the XMS Web AdminUI at https://xms:4443/

4: Setup the NetScaler Gateway configuration within the Admin WebUI of the XMS V/A following the process outlined at – http://support.citrix.com/proddocs/topic/xenmobile-10/xmob-netscaler-gateway.html its fairly straight forward and simple.
5: Login into the NSG Admin WebUI interface and click the XenMobile Wizard in the bottom left-hand corner and then you’ll be prompted to setup either XenMobile 9.0 or XenMobile 10.0 please selected XenMobile 10.0 and click “Get Started” to continue.
6: Ensure that “Access through NetScaler Gateway” which is for MAM, “Load Balance XenMobile Servers” which is for MAM are checked they should be by default, however you know have the opportunity to deselect either if one depending upon your deployment scenario/use case and obviously your acquired license. The current XenMobile 10 datasheet is available at –
https://www.citrix.com/content/dam/citrix/en_us/documents/products-solutions/citrix-xenmobile-the-revolutionary-way-to-mobilize-your-business.pdf.
7: Enter in your first VIP for the MAM Gateway then port should be 443 and provide a suitable name.
8: Select your previously uploaded SSL certificate (I am utilising a wildcard cert for my domain *.axendatacentre.com) or upload your SSL cert.
9: Create your (s)LDAP binding you will need to provide the following:

– LDAP IP addr
– LDAP Port default is 389
– Base DN e.g Cn=Users,dc=axendatacentre,dc=com
– Service account username & password
– Timeout default is 3 seconds
– Server Login sAMAccountName or UserPrincipalName (SuGgEsTeD)

10: Now enter in your MDM FQDN and then the Load-balancing IP addr beneath and accept the default port of 8443. You can now also choose to select HTTPS (SSL Bridge) vs. HTTP (SSL Offload) and you can choose your DNS mode including split tunnelling.
11: Select your previously uploaded SSL certificate (I am utilising a wildcard cert for my domain *.axendatacentre.com) or upload your SSL cert.
12: Enter in your MDM VIP and you’ll notice the default ports are 443, 8443 for communication to the XMS V/A(s). You’ll notice that you cannot change the SSL traffic configuration as I specified to not to perform any SSL offloading in set 10 above or its under section “Load Balancing IP address for MAM” within the NSG XenMobile 10 wizard.
13: Next add in the XMS ip addr’s of each V/A in your XMS cluster and provide an appropriate name and ports are automated defaulted to 443, 8443.
14: Click continue to finish and then click done and you have now setup and configured all your traffic for XenMobile to route through your NSG V/A and we are performing SSL Bridging in the above scenario.

Worx Features by Platform
1:The following eDocs web page lists the features by Worx app which includes WorxHome, WorxMail, WorxWeb, WorxEdit, WorxNotes, WorxTasks & WorxDesktop ref – http://support.citrix.com/proddocs/topic/worx-mobile-apps/xmob-worx-feature-platform-matrix.html.
2: Be sure to also checkout the known issues list at – http://support.citrix.com/proddocs/topic/worx-mobile-apps/xmob-worx-knownissues-con.html and it is also worth noting that as of writing this blogging entry WorxTask’s is in Tech Preview (TP) ref – http://support.citrix.com/proddocs/topic/worx-mobile-apps/xmob-worx-tasks.html.

Twitter
You should follow the XenMobile team on twitter at – https://twitter.com/xenmobile for the very latest on Worx’s apps, updates, upgrades and so much more.

Security
1: The XenMobile security web page is available at – http://www.citrix.com/products/xenmobile/tech-info/mobile-security.html.
2: The XenMobile Security whitepaper is available at – https://www.citrix.com/content/dam/citrix/en_us/documents/products-solutions/xenmobile-security.pdf and I would strongly advise that you read/review it to get a better understanding of how XenMobile can help and assist any organisations EMM (Mobility) requirements.
3: The Mobile Application Management with XenMobile and the Worx App SDK –
https://www.citrix.com/content/dam/citrix/en_us/documents/products-solutions/mobile-containers-with-citrix-mdx.pdf, this is well worth reading.

vGPU for XenApp and XenDesktop 7.6 powered by nVidia GRID K1, K2 Cards on XenServer 6.2 SP1, 6.5

“The following content is a brief and unofficial prerequisites guide to setup, configure and test vGPU technology using XenServer 6.2 SP2+ or XenServer 6.5, XenDesktop 7.6, nVidia GRID K1 or K2 cards and a supported server from either the Citrix or nVidia HCL prior to deploying in a PoC, Pilot or Production environment by the author of this entry. The views expressed here are my own and do not necessarily reflect the views of Citrix.

Shortened Names
XENAPP – xa
XENDESKTOP – xd
XENAPP/XENDESKTOP – xad
VIRTUAL DELIVERY AGENT – vda
VIRTUAL GRAPHICS PROCESSING UNIT – vgpu
GRAPHICS PROCESSING UNIT – gpu
STOREFRONT SERVICES – sfs
VIRTUAL MACHINE – vm
HIGH DEFINITION EXPERIENCE – hdx
XENSERVER – xs

What’s New
1. vGPU for XenApp is now supported ref the following blog article published entitled “Citrix supports NVIDIA GRID™ vGPU™ for XenApp!” – http://blogs.citrix.com/2014/11/25/citrix-supports-nvidia-grid-vgpu-for-xenapp/.
2. XenServer 6.5 can now support up to 3x nVidia GRID cards scaling up to 96 VM’s with a vGPU assigned in a GRID enabled/compatible supported server hardware.
3. nVidia have certified new GRID profiles all of which are Q certified check them out at – http://www.nvidia.co.uk/object/grid-virtual-gpus-uk.html.
4. The latest GRID card datasheet is avaiable at – http://images.nvidia.com/content/grid/pdf/188270-NVIDIA-Grid-Datasheet-A4-fnl-Web.pdf.

What is vGPU?
It is a logical portion of a physical GPU assigned to a VM to deliver rich graphical applications from either a multi-user or desktop OSes. It is currently only supported with either nVidia GRID K1/K2 cards, compatible HCL server running either XenServer 6.2 SP+ or XenServer 6.5+ with XenApp or XenDesktop 7.6. The GPU resources (Frame buffer) + access time that is allocated to a vGPU assigned to the VM is managed with the help of a vGPU profile e.g K120Q which manages the GPU resources + time in conjunction with the vGPU manager which is installed within Dom0 of the XenServer 6.2 SP1+ or 6.5 host which intern allows for any VM assigned a vGPU to handle and delivery graphical intensive applications e.g AutoCAD Map 3D or Adobe Photoshop CS. For more technical information and an alternative description and overview including a diagram checkout – http://www.nvidia.com/object/virtual-gpus.html on the nVidia website.

GRID Card History
The first generation of GRID cards were called K1, K2 Cards and made use of the “Kepler” architecture, technical details can be found on the datasheet here – http://www.nvidia.co.uk/content/cloud-computing/pdf/nvidia-grid-datasheet-k1-k2.pdf.

The second generation of nVidia GRID cards are called TESLA which make use of the “Maxwell” architecture which includes 3x offerings TESLA M10 (Rack Servers), TESLA M6 (MXM Blade Servers) and TESLA M60 (Rack Servers)

Overview of Citrix HDX vs. HDX 3D Pro
HDX stands of High Definition eXperience and is built upon the ICA protocol which is developed, owned and maintained by Citrix. HDX automatically and dynamically adapts to any changes within the users ICA session end-2-end to ensure that the users experience always comes first and foremost. HDX inspects the computing resources within the data centre e.g. the VM or physical server that the desktop or server VDA is install on, the network and the end-point device to see what computing resources can be leveraged to offload onto to further enhance the users experience. For a technical overview to Citrix’s HDX technologies and policies in XAD 7.6 check out – http://support.citrix.com/proddocs/topic/xenapp-xendesktop-76/xad-hdx-landing.html. Citrix has published document entitled “What is HDX? / Citrix HDX technologies for optimizing the virtualization experience” available at – http://www.citrix.com/content/dam/citrix/en_us/documents/products-solutions/citrix-hdx-technologies.pdf which provides a great introduction into HDX technologies.

vGPU Pre-requites & System Requirements
1. Start by reviewing http://www.citrix.com/go/vgpu.
2. Hardware requirements can be found at – https://www.citrix.com/content/dam/citrix/en_us/documents/go/vgpu-tech-preview-hardware-requirements.pdf and to purchase a GRID enabled server please visit – http://www.nvidia.co.uk/object/buy-nvidia-grid-uk.html.
3. I would suggest downloading and reviewing the guide entitled “Part 1: XenServer GPU Pass-through” available at – https://www.citrix.com/content/dam/citrix/en_us/documents/go/reviewers-guide-remote-3d-graphics-apps-part-1-xenserver-gpu-passthrough.pdf prior to starting as this will cover off the installation of a GRID card into a Dell R720 Server which will be useful to review if your about to embark on deploying your first GRID K1/2 card in a compatible supported server.
4. The following guide entitled “Part 3: XenServer GPU Virtualization (vGPU)” covers off the full deployment from installing and configuring XenServer 6.2 SP1+ to preparing the VM and assigning a vGPU through to the installation and configuration of the nVidia GRID drivers, XenTools and the Desktop OS VDA. The guide is available at – *https://www.citrix.com/content/dam/citrix/en_us/documents/go/reviewers-guide-remote-3d-graphics-apps-part-3-xenserver-vgpu.pdf.
5. Encoding method suggested is H.264 although you do need more power server h/w as this protocol type does require more computing power but uses less bandwidth and you’ll also require an end point capable of decoding the H.264 stream.

Installation & Configuration
1. http://support.citrix.com/article/CTX140603 or refer to point 4 in the above “vGPU Pre-requites & System Requirements” section.
2. NVIDIA GRID Configuration Checks by Jason Southern at nVidia

HDX 3D Pro Policy or Policies
1. I would strongly recommend when you begin your testing of a vGPU VM(s) that you create a new custom policy in Studio and perhaps title it “vGPU HDX 3D Pro” and apply the following sUgGeStEd vGPU HDX 3D Pro policy as described in this nVidia GRID forum article available at – https://gridforums.nvidia.com/default/topic/254/xendesktop-with-nvidia-grid/hdx-policy-for-grid-accelerated-applications/. Why not use my current HDX policy? Firstly this policy is a sUgGeStEd and should be considered as an initial base line to begin testing from and its based off real world field experience from an EMEA nVidia GRID Architecture based in the UK.
2. The following XenDesktop master class from July 2014 will provide you with a great insight into HDX 3D Pro with nVidia GRID cards. This master class is a must if your looking at deploying an HDX 3D Pro with a customers environment to enable the deliver of HDX Rich Graphics to users within LAN and WAN scenarios.

HDX or HDX 3D Pro Thin Clients
1. If your looking for HDX or HDX 3D Pro verified thin clients then please check out the Citrix Ready website at – http://www.citrix.com/ready/en/.
2. HDX Search results –
https://citrixready.citrix.com/category-results.html?category=c1-endpoints/c2-thin-clients&lang=en_us&filter=c1-endpoints/c2-thin-clients/g-hdx-levels/f-hdx-ready&sortby=product-asc and for HDX Ready Chrome Device – https://citrixready.citrix.com/category-results.html?category=c1-endpoints/c2-chrome-devices&lang=en_us&filter=c1-endpoints/c2-chrome-devices/g-hdx-levels/f-hdx-ready&sortby=product-asc.
3. HDX Premium search results – https://citrixready.citrix.com/category-results.html?category=c1-endpoints/c2-thin-clients&lang=en_us&filter=c1-endpoints/c2-thin-clients/g-hdx-levels/f-hdx-premium&sortby=product-asc
4. HDX 3D Pro search results – https://citrixready.citrix.com/category-results.html?category=c1-endpoints/c2-thin-clients&lang=en_us&filter=c1-endpoints/c2-thin-clients/g-hdx-levels/f-hdx-3d-pro&sortby=product-asc.

Customer Stories
1. Story | – https://blogs.nvidia.com/blog/2016/11/02/ngca-perspective-how-nvidia-empowers-education-through-grid/.
2. Case Study | Daewoo Shipbuilding & Marine Engineering Co. Ltd – http://www.nvidia.co.uk/content/grid/resources/case-study-daewooshipbuilding.pdf.
3. Success Story | Bell Helicopter Elevating The Design and Manufacturing of World-Class Helicopters – http://www.nvidia.com/object/enterprise-virtualization-case-study-bell-helicopter.html
4. Success Story | PSA Peugeot Citroen Accelerating Automotive Design with NVIDIA GRID – http://www.nvidia.com/object/enterprise-virtualization-case-study-peugeot.html.

nVidia GRID Forums
1. Drivers – https://gridforums.nvidia.com/default/board/128/nvidia-grid-drivers/.
2. GRID cards – https://gridforums.nvidia.com/default/board/129/grid-boards/.
3. XenApp – https://gridforums.nvidia.com/default/board/127/xenapp-with-nvidia-grid/.
4. XenDesktop – https://gridforums.nvidia.com/default/board/126/xendesktop-with-nvidia-grid/.
5. Announcements – https://gridforums.nvidia.com/default/board/120/announcements/.

Citrix Summit 2015 Highlights

1: Citrix Summit – Las Vegas – 2015 Off to a Good Start! – http://blogs.citrix.com/2015/02/12/0citrix-summit-las-vegas-2015-off-to-a-good-start/.
2: Summit Kicks Off the New Year with Innovation and Training – http://blogs.citrix.com/2015/02/03/summit-kicks-off-the-new-year-with-innovation-and-training/.
3: Citrix Specialists Stand Out from the Generalist Crowd – http://blogs.citrix.com/2015/02/09/citrix-specialists-stand-out-from-the-generalist-crowd/.
4: Citrix Workspace Cloud – http://blogs.citrix.com/2015/01/14/citrix-workspace-cloud-revolutionizing-workspace-delivery-in-2015/ and also check out – http://blogs.citrix.com/2015/01/14/summit-2015-a-look-at-citrix-workspace-cloud/.
5: Ten Benefits XenMobile 10 Offers To Channel Partners – http://blogs.citrix.com/2015/01/13/ten-benefits-xenmobile-10-offers-to-channel-partners/.

Citrix XenServer 6.5

The following content is a brief and unofficial prerequisites guide to setup, configure and test XenServer 6.5 with XAD 7.6 including HDX 3D Pro with a supported server from either the Citrix or nVidia HCL prior to deploying in a PoC, Pilot or Production environment by the author of this entry. The views, opinions and concepts expressed are those by the author of this entry only and do not necessary conform to industry descriptions or best practises.

Shortened Names
XENAPP – xa
XENDESKTOP – xd
XENAPP/XENDESKTOP – xad
VIRTUAL DELIVERY AGENT – vda
VIRTUAL GRAPHICS PROCESSING UNIT – vgpu
GRAPHICS PROCESSING UNIT – vgpu
STOREFRONT SERVICES – sfs
VIRTUAL MACHINE – vm
HIGH DEFINITION EXPERIENCE – hdx
XENSERVER – xs

What’s New
1: Dom0 is now x64
2: vGPU scalability from 64 to 96 vGPU’s sessions per host with the correctly supported HCL server h/w which can support up to 3x nVidia GRID cards.
3: In-memory read-caching enables XS to take advantage of storing a golden image build in the hosts RAM which means guest VM’s boot 3x faster hello faster XAD 7.6 workloads and use cases.
4: Storage improvements include LiVE LUN expansion, tapdisk3 support, device mapper multi-path (updated).
5: Workload Balancing (WLB) is back take a look at – http://blogs.citrix.com/2015/01/29/workload-balancing-wlb-xendesktop-and-xenapp-use-cases/ and http://blogs.citrix.com/2015/01/22/citrix-xenserver-workload-balancing-wlb-why-xendesktop-and-xenapp-customers-really-should-take-note/.
6: For a complete overview checkout – http://blogs.citrix.com/2015/01/13/xenserver-v6-5-whats-new-and-why-you-should-check-it-out/, http://blogs.citrix.com/2015/01/13/xenserver-6-5/.
7: Don’t forget to read through the release notes which is available at – http://support.citrix.com/servlet/KbServlet/download/38334-102-714582/XenServer-6.5.0-releasenotes.pdf.

Pre-requites & System Requirements
Coming soon…

Installation & Configuration
Coming soon…

What is Infrastructure-as-a-Service (IaaS)?

The views, opinions and concepts expressed are those by the author of this entry only and do not necessary conform to industry descriptions or best practises.

Shortened Names
INFRASTRUCTURE-AS-A-SERVICE – iaas
ACCESS CONTROL LIST – acl
VIRTUAL NETWORKS – vlan
VIRTUAL MACHINE – vm
DEMILITARIZED ZONE – dmz

Infrastructure as a Service (IaaS) enables a tenant i.e you the reader of this blog post to purchase an allocated amount of computing, storage and networking resources from a (Managed) ISP. You then have the capability to assign or carve up these IaaS resources to create your own virtual datacentre (VDC) through a safe, secure web-based management console.

The IaaS management consoles typically will offer and allow the tenant the ability to create there own ACL, VLANs, placement of virtual machines (VM) within your VDC, building VMs from generic templates maintained by the (Managed) ISP and so much more.

The IaaS resources provided by the (Managed) ISP should be fully managed e.g border routers, core switches, hosts and mgmt. infrastructure of the IaaS platform and hosted within a highly-available N+1 data centre so that in the unlikely event of a logical or hardware failure your VDC environment will not be compromised or should automatically failover to onto alternative infrastructure and be rebooted and return to an online and active status within a few minutes.

What is the benefit of IaaS? You don’t have to secure any capital investment to acquire the nesscary hardware to support your existing organisations growth demands or if your a start-up it eases your cash flow requirements as you only pay for the computing, storage and networking resources that you need effectively require month by month.

Today IaaS is also referred to by some as a Software-Defined Data Centre.

Examples of IaaS Platforms
http://www.citrix.com/products/cloudplatform/overview.html.
http://cloudstack.apache.org/.
http://www.vmware.com/uk/products/vcloud-director.

Citrix Summit 2015

Register for Citrix Summit 2015 at The Venetian, Las Vegas today
http://www.citrixsummit.com/

A preview of Citrix Summit 2015

Certifications, Sessions & Labs
1: Breakout Sessions – http://www.citrixsummit.com/sessions-labs/sessions.html.
2: Instructor-led Learning Labs – http://www.citrixsummit.com/sessions-labs/instructor-led-labs.html.
3: Self-paced Learning Labs –
http://www.citrixsummit.com/sessions-labs/self-paced-labs.html.
4: Citrix Certification Center – http://www.citrixsummit.com/sessions-labs/certification-center.html.