Citrix StoreFront with Single Sign On

So at my current place of employment we like to be able to launch Citrix Applications from the Start Menu, mainly because this is how it has worked since our Citrix 4.5 environment.

In Citrix XenApp 6.5 you get the option of installing Citrix StoreFront which, unlike the Web Interface, is compatible with Windows 8 and the Citrix Receiver application. Obviously you could run an environment with both WI and StoreFront but ideally I prefer to simplify environments.

Also according to Citrix the Web Interface End-of-Life is 2015.

Installing StoreFront

  1. Run the executable for StoreFront – CitrixStoreFront-x64.exe
  2. Next, once the Citrix StoreFront Tool loads do the following:
    1. Click “Create a new deployment”
    2. Leave the base URL as the servers URL and click next to create the deployment site.
    3. Was created set the Store Name as whatever you like; example being“My Store Front”
    4. Under Delivery controllers add your  XenApp servers.
    5. Change the transport type to http and make the port is 80.
    6. Now press Create

Making Citrix Receiver 4.0 work with StoreFront

The older Citrix enterprise client can be used to connect to the Citrix WI fine using the pnagent config file. However Citrix Enterprise cannot use the StoreFront URL to configure itself as default as it is can only accept the switch server_location and not the store command. However, you can make this work if you enable the StoreFront ‘Legacy’ Setting.

Image

 

Now to enable the client to authenticate automatically with StoreFront!

  1. Within StoreFront Authentication make sure that domain pass-through is enabled.
  2. Image
  3. Navigate to C:\inetpub\wwwroot\Citrix\YOURSITENAME\web.config
    1. Search and change logonMethod=”sson”
  4. Under C:\inetpub\wwwroot\Citrix\YOURSITENAME\Views\PnaConfig\open config.aspx and change the logon section to:

<Logon>

       <LogonMethod>sson</LogonMethod>

        <EnableSavePassword>false</EnableSavePassword>

        <EnableKerberos>false</EnableKerberos>

        <SupportNDS>false</SupportNDS>

        <NDS_Settings>

            <DefaultTree></DefaultTree>

        </NDS_Settings>

    </Logon>

Installing the Receiver

Use the following command line to install the receiver on a workstation:

“CitrixReceiver.exe” /silent /includeSSON STARTMENUDIR=”\Citrix Applications” ALLOWADDSTORE=A ALLOWSAVEPWD=A ENABLE_DYNAMIC_CLIENT_NAME=Yes ENABLE_SSON=yes STORE0=”YOURSITENAME;http://STOREFRONTSERVER/Citrix/YOURSITENAME/discovery;on;YOURSITENAME

Now there are some extra registry changes required on the workstation. I have put these into command lines you can run form a command prompt:

reg add “HKLM\SOFTWARE\Citrix\AuthManager” /v “ConnectionSecurityMode” /d “Any” /f

reg add “HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run” /v “CitrixReceiver” /d “C:\Program Files\Citrix\SelfServicePlugin\SelfService.exe -logon”  /f

This last step took me a day to work out initially; make sure that your store front server is added into your intranet sites!

Now log out and back in again to allow SSON to work and your start menu should fill with any Citrix applications your current user has access to.

 

 

 

Advertisements

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s