Tag Archives: Tomcat Clustering

XenMobile Device Manger 8.7

Leave a Reply

The following content is a brief and unofficial prerequisites guide to setup, configure and test XenMobile Device Manager 8.7 prior to deploying in a PoC, Pilot or Production environment by the author of this entry. The views, opinions and concepts expressed are those by the author of this entry only and do not necessary conform to industry descriptions or best practises.

Shortened Names
XENMOBILE DEVICE MANAGER – xdm
CERTIFICATE SIGNING REQUEST – csr
APPLE PUSH NOTIFICATION SERVICE – apns
FULLY QUALIFIED DOMAIN NAME – fqdn
GoToMeeting – gtm
GoToAssist – gta
VOLUME PURCHASE PROGRAM – vpp

APNS CSR Submission to Citrix
1: The APNS submission process has been updated in XenMobile 8.7 please find the updated submission process at – http://support.citrix.com/proddocs/topic/xenmobile-87/xmob-dm-connect-submit-csr-citrix-signing-tsk.html.
2: To learn how-to generate and create a APNS certificate navigate to – http://support.citrix.com/proddocs/topic/xenmobile-87/xmob-dm-config-requesting-apns-con.html.

Installing XDM 8.7 (DRAFT & MAY CONTAIN ERROR(S))
1: Review the system requirements at – http://support.citrix.com/proddocs/topic/xenmobile-87/xmob-deploy-device-manager-sys-reqs-con.html also and decide what type(s) of OSes and or devices that you would like to support within your organisation e.g iOS (iPhone), Android (Samsung) or Windows (Surface). The current supported device list is available at – http://support.citrix.com/proddocs/topic/xenmobile-87/xmob-understand-device-platforms.html.
2: Once your have reviewed the system requirements complete the ports – http://support.citrix.com/proddocs/topic/xenmobile-87/xmob-deploy-component-port-reqs-n-con.htmland pre-requisites – http://support.citrix.com/proddocs/topic/xenmobile-87/xmob-prepare-xenmobile-checklist-con.html. Start with the XDM installation and decide what components to install take a look at – http://support.citrix.com/proddocs/topic/xenmobile-87/xmob-dm-install-select-components-con.htmlthen proceed to begin with the XDM installation – http://support.citrix.com/proddocs/topic/xenmobile-87/xmob-deploy-device-manager-install-steps-tsk.html.
3: Post the XDM installation you can setup and configure your (s)LDAP / AD binding by following this eDocs article at – http://support.citrix.com/proddocs/topic/xenmobile-87/xmob-deploy-authentication-device-mgr-con.html. NOTE: Remember post successful configuring the binding remember to select it and click “ENABLE” then click Save to close the options window and to save the configuration.
4: Configure your XDM by following the eDocs articles located under – http://support.citrix.com/proddocs/topic/xenmobile-87/xmob-manage-server-admin-wrapper-con.html.
5: If you are going to setup and configure a XDM cluster I would suggest reading through the XDM cluster piece I have written below and also read through – http://support.citrix.com/proddocs/topic/xenmobile-87/xmob-dm-manage-ha-wrapper-con.html prior to installing your XDM 8.7 cluster.
6: You can now also watch this video below re how-to install the XDM from http://www.citrix.com/tv:

Creating a XDM Cluster & Load Balancing
1: I would suggest reading through How-to setup and configure a XDM cluster – http://support.citrix.com/proddocs/topic/xenmobile-87/xmob-dm-manage-ha-wrapper-con.html thereafter prior to you setting up and configuring a XDM cluster prepare by creating a script that can handle and manage the process of preparing e,g backing up the original files and then committing the required files to the secondary, third XDM servers. I created a prepare and a commit script to easily achieve creating my own XDM cluster when setting a PoC or a training lab for a XenMobile PoC workshop. The first time you use or test your scripts you will need to manually create your modified files to enable XDM clustering. I would also suggest checking eDocs between different XenMobile versions if anything has changed in the cfg files for the XDM re Clustering.
2: You should have two script files the 1st script is used to copy the files from the primary XDM server to a dest folder. The 2nd script is used to commit the files from the primary XDM server to the secondary XDM at the point prior to configuring the database connection (You must complete the database connection exactly the same as the primary XDM server) during the XDM installation on the secondary XDM server you will only need to enter in a password during the CA stage and many steps thereafter will be different as well as you have already copied over cfgs files.
3: Please differ to the eDoc’s link above for full details and instructions.
4: Learn how-to load balancing your XDM cluster check – http://support.citrix.com/proddocs/topic/xenmobile-87/xmob-dm-manage-ha-wrapper-con.html or watch this video re how-to configure load-balancing from http://www.citrix.com/tv:

Configuring an External Certificate Authority by Using an SSL *.p12. *.pfx Certificate
1: Modify the follow server.xml, pki.xml files accordingly as mentioned in eDocs – http://support.citrix.com/proddocs/topic/xenmobile-87/xmob-dm-manage-securityid-configcert-ssl-tsk.html. Alternatively you can also follow this CTX article entitled “How to Configure an External SSL Certificate for Device Manager” at – http://support.citrix.com/article/CTX136952.
2: I would suggest review the above documentation and create a script that can create a folder for your external SSL cert, backup and then replace the server.xml and pki.xml files and finally restart the XDM services in order for the External SSL cert to be bound to the https FQDN of the XDM.

XenMobile Device Manager SSL Offload using Netscaler Configuration Step by Step
http://blogs.citrix.com/2014/03/20/xenmobile-device-manager-ssl-offload-netscler-configuration-step-by-step/.

Shared Devices
1: If you are looking to enable and allow the Shared Devices feature of XenMobile take a look at – http://support.citrix.com/proddocs/topic/xenmobile-87/xmob-dm-connect-shared-devices.html. It’s only supported with the XDM.

Enable & Configure Shared Devices for the XDM
1: http://support.citrix.com/proddocs/topic/xenmobile-87/xmob-dm-connect-shared-devices.html.

XenMobile Enterprise 8.7

Leave a Reply

The following content is a brief and unofficial prerequisites guide to setup, configure and test XenMobile Enterprise 8.7 prior to deploying in a PoC, Pilot or Production environment by the author of this entry. The views, opinions and concepts expressed are those by the author of this entry only and do not necessary conform to industry descriptions or best practises.

Shortened Names
XENMOBILE DEVICE MANAGER – xdm
CERTIFICATE SIGNING REQUEST – csr
APPLE PUSH NOTIFICATION SERVICE – apns
FULLY QUALIFIED DOMAIN NAME – fqdn
SECURE LIGHTWEIGHT DIRECTORY ACCESS PROTOCOL – (s)ldap
SHAREFILE STORAGEZONE CONNECTOR – szc
XENMOBILE APPCONTROLLER – xac
RECEIVER FOR WEB – RfW
OUT OF OFFICE – ooo
GoToMeeting – gtm
GoToAssist – gta
VOLUME PURCHASE PROGRAM – vpp

What’s New The Highlights
0: XenMobile Datasheet by edition – http://www.citrix.com/content/dam/citrix/en_us/documents/products-solutions/citrix-xenmobile-the-revolutionary-way-to-mobilize-your-business.pdf.
1: Enrol and manage Windows 8.1 including support for Windows 8.1 RT devices – http://support.citrix.com/proddocs/topic/xenmobile-87/xmob-understand-device-platforms.html.
2: Worx Home supports pin history & pin cycle checking.
3: Configure and deploy VPN cfgs to Amazon devices.
4: Shared Device Management support allows for multiple individuals to leverage MDM capabilities once the device has been enrolled.
5: ShareFile Single Sign-On (SSO) support from Worx apps to ShareFile.
6: Samsung SAFE devices support with the ability to now install Worx Home on Samsung SAFE devices running Android 4.3 and later from Google Play Store.
7: Support for Android 4.4.
8: Battery retention has improved by approximately 15% please see point 11 below for further details re the Tests performed.
9: IBM notes support for iOS in WorxMail.
10: Geo-fencing on Android.
11: A full and complete list of what’s new check out – http://support.citrix.com/proddocs/topic/xenmobile/xmob-understand-whats-new.html.
12: For a list of the new features in NetScaler Gateway 10.1 and NetScaler Gateway 10.1, Build 120.1316.e check out – http://support.citrix.com/proddocs/topic/netscaler-gateway-101/ng-whats-new-con.html.

XenMobile Compatibility Matrix
1: http://support.citrix.com/proddocs/topic/xenmobile-87/xmob-understand-compatibilitymatrix-con.html

Supported Device Platforms
1: http://support.citrix.com/proddocs/topic/xenmobile-87/xmob-understand-device-platforms.html

Pre-requisites, Understanding & Installing The XenMobile 8.7 Components End-2-End for a PoC or a Demo Environment (DRAFT & MAY CONTAIN ERROR(S))
1: I would suggest starting with this really good XenMobile Architectural XenMobile Diagram to help you understand where the individual components are placed between the DMZ and TRUSTED network, so check out – http://www.citrix.com/content/dam/citrix/en_us/images/info-graphics/xenmobile_architecture_86.png.
2: Understanding how-to deploy the components of XenMobile Enterprise – http://support.citrix.com/proddocs/topic/xenmobile-87/xmob-understand-deploy-architecture-wrapper-n-con.html and I would also recommend reading and understanding what ports are required to be enabled at – http://support.citrix.com/proddocs/topic/xenmobile-87/xmob-deploy-component-port-reqs-n-con.html and the review the XenMobile and NetScaler Gateway checklists which are available at – http://support.citrix.com/proddocs/topic/xenmobile-87/xmob-prepare-xenmobile-checklist-con.html & http://support.citrix.com/proddocs/topic/netscaler-gateway-101/ng-checklist-10-1-con.html#ng-checklist-10-1-con followed understanding the Server & SAML certificate types/ requirements of XenMobile at – http://support.citrix.com/proddocs/topic/xenmobile-87/xmob-deploy-certificates-con.html.
3: Sizing & System requirements for XenMobile 8.7 – http://support.citrix.com/proddocs/topic/xenmobile-87/xmob-deploy-netscaler-gateway-reqs-con.html.
4: How-to Install XenMobile 8.7 – . If your looking to install XDM at – http://support.citrix.com/proddocs/topic/xenmobile-87/xmob-deploy-device-manager-install-steps-tsk.html for a basic visual overview and instructions. To deploy the XAC use the following to pre-configure the XenMobile AppControllers IP addr, DNS e.t.c at – http://support.citrix.com/proddocs/topic/xenmobile-87/xmob-appc-change-ipaddress-tsk.html followed by configuring the XAC using the initial web UI wizard at – http://support.citrix.com/proddocs/topic/xenmobile-87/xmob-appc-setup-wizard-tsk.html. To configure your NetScaler Gateway for the first time use – http://support.citrix.com/proddocs/topic/access-gateway-hig-appliances/ag-vpx-configure-basic-settings-wrapper-con.html, http://support.citrix.com/proddocs/topic/netscaler-gateway-101/ng-config-ng-with-wizards-con.html followed by the initial NSG wizard accessible via the Web UI upon your initial login – http://support.citrix.com/proddocs/topic/netscaler-gateway-101/ng-config-first-time-new-install-con.html thereafter you can use the built-in NSG wizard to setup and configure remote access to the XAC for XenMobile Enterprise 8.7 at – http://support.citrix.com/proddocs/topic/netscaler-gateway-101/ng-install-simplified-config-tsk.html.

Enrolling by OS Platform
0: Prior to enrolling any devices you may want to consider configuring enrolment options – http://support.citrix.com/proddocs/topic/xenmobile-87/xmob-dm-connect-config-enroll-mode-con.html.
1: iOS – http://support.citrix.com/proddocs/topic/xenmobile-87/xmob-ios-user-enroll-device-tsk.html.
2: Android – http://support.citrix.com/proddocs/topic/xenmobile-87/xmob-android-user-enroll-device-tsk.html.
3: Windows – http://support.citrix.com/proddocs/topic/xenmobile-87/xmob-dm-enroll-users-devices-wrapper-con.html.
4: Symbian – http://support.citrix.com/proddocs/topic/xenmobile-87/xmob-symbian-user-enroll-device-tsk.html.

Performing In-place Upgrades from XenMobile 8.6 to 8.7
I performed in-place upgrade within my XenMobile Enterprise demo environment running Hyper-v on Microsoft Windows Server 2012 from 8.6 to 8.7 without any issues or errors.
2: Note: As I focus on PoC’s and Training the upgrade methods used below will be different for production environments and you should follow – http://support.citrix.com/article/CTX140444 for steps and guidance.
3: My current setup consisted of a XDM cluster on 8.6 l/b by NetScaler using a MS SQL database. I first performed a snapshot of both XDM servers and the SQL database then proceeded to shutdown the second XDM server and executed the XDM 8.7 software package on the primary XDM server which detected a XDM installation and performed a in-place upgrade following the onscreen steps. Once the software update completed I rebooted the VM and then proceeded to connect to XDM mgmt. Web UI locally via https://localhost/zdm on the primary XDM server desktop (Note: SSL error is normal as the FQDN your connected to is not for localhost but your organisations FQDN) and then logged in as a XDM admin then as domain user to verify that the SHP works as expected. Next shutdown the primary XDM server and boot the secondary XDM server and repeat the process above and once verified shutdown the secondary XDM server and boot the primary XDM server wait a few minute then boot the secondary XDM server and what a few minutes and then login to https://XDM-FQDN/Instance/helper.jsp e.g https://mdm.citrix.lab/zdm/helper.jsp and verify that the XDM cluster is active and working, next login to https://XDM-FQDN/Instance/ as a domain user and then a XDM admin to verify that everything works as expected e.g send a notification to an iOS device or enrol a new device using a custom deployment policies to verify your XDM is functioning as expected.

Security
1: XenMobile FIPS 140-2 Compliance – http://support.citrix.com/proddocs/topic/xenmobile-87/clg-appwrap-fips-con.html.
2: XDM supports internal and external PKI’s – http://support.citrix.com/proddocs/topic/xenmobile-87/xmob-dm-manage-security-pki-overview-con.html; SAML – http://support.citrix.com/proddocs/topic/xenmobile-87/xmob-dm-manage-securityid-saml-con.html.
3: Network Access Control (NAC) – http://support.citrix.com/proddocs/topic/xenmobile-87/xmob-dm-manage-securityid-configurenac-con.html.
4: Client certificate based authentication using Configuring Device Manager with Microsoft Active Directory Certificate Services – http://support.citrix.com/proddocs/topic/xenmobile-87/xmob-dm-manage-securityid-configdm-mscertificatesvs-con.html.

Synergy SYN308: Citrix Mobility & Desktop Integration