Tek-Tips is the largest IT community on the Internet today!

Members share and learn making Tek-Tips Forums the best source of peer-reviewed technical information on the Internet!

Register Log in
  • Congratulations strongm on being selected by the Tek-Tips community for having the most helpful posts in the forums last week. Way to Go!

New AD users cannot login / ICA browser not returning names

Status
Not open for further replies.
dcssmp

dcssmp

MIS
May 22, 2003
2
NZ
Two problems; possibly not related

1. When we make a new user in AD, then try and connect them to an application set, it gives an error of invalid login credentials. Existing users are working fine, but new users we create are giving this error. How does Citrix query the AD? Does it do it only when the IMA service is restarted? Does it query through the datastore?

2. When I try and create a custom connection to a server I can't get the server list to appear by clicking the drop down arrow; however if I add the IP of a particular server into server location then it does owrk; however it only works for two servers - both in different zones - and not the data collector for the main zone.

The farm is XP1.0 FR1 with two zones, one with seven pc's and the other with one.

I would have thought that I would be able to get the server list when choosing the server to connect to without having to enter addresses manually into the address list.

We used to be able to leave it on autolocate on the main site and it would work, however we have never been able to do this from remote sites (on different subnets), what do I have to do to make that work? What might I have changed to make it stop working on the main site?

Thanks
 
Sort by date Sort by votes
dcssmp,

Regarding Question 1:

User's must have permission to access a Citrix server in two separate ways. The first is the right to connect via ICA. I usually create an Domain Global Group called "Citrix Authorized" or "Citrix Users" and add users. I then give this group permission to connect via ICA (done by opening Citrix Connection Configuration and right clicking on ICA protocol and clicking on permissions). Add any users in AD that you want to access the Citrix server's to this group. (By default it may be allowing the Everyone group access).

Then users must also have permission to published applications. This is configured in the CMC by right clicking on the application and going to properties and the "Users" tab. You can then select users or groups from the AD and give them permissions to the applications. When users logon to the farm they will only see the applications listed that they have permissions to.

Regarding your second question.

The remote users will need to be told where to locate the Citrix servers. On the same subnet autolocate works because it is finding the servers via a broadcast.

Configure the remote citrix clients with the TCP addresses of the citrix servers and they will be able to access the farm. This can be done by right clicking on the application set and clicking on Application set settings.
 
Upvote 0 Downvote
Status
Not open for further replies.

Similar threads

vgulielmus
  • Question
Windows 10 Pro - cannot use the start button
Replies
0
Views
150
vgulielmus
vgulielmus
VicM
  • Question
Win7 backup on Win11 Pro box not completing as it had in the past
Replies
2
Views
429
VicM
VicM
DrDebate
  • Locked
  • Question
Mac users cannot connect after AD upgrade
Replies
0
Views
64
DrDebate
DrDebate
jerrynewera
  • Locked
  • Question
Volume VOL2 not mounted 1
Replies
1
Views
103
JockMullin
JockMullin
SpenceWaller
  • Locked
  • Question
Citrix CSG - Allow users to change password
Replies
0
Views
78
SpenceWaller
SpenceWaller

Part and Inventory Search

Sponsor

Back
Top