Last Updated on December 25, 2020
Citrix Director 1912 LTSR Installation and Configuration is the fifth article in Citrix Virtual Apps and Desktop 7 1912 LTSR Installation and Configuration Series.
Citrix Virtual Apps and Desktops 7 1912 LTSR Installation and Configuration
- Citrix License Server installation for Citrix virtual Apps and Desktops 7 1912 LTSR
- Citrix Delivery Controller 1912 LTSR Installation and Configuration
- Citrix Storefront 1912 LTSR Installation and Configuration
- Citrix Virtual Delivery Agent (VDA) 1912 LTSR Installation and Configuration
- Citrix Desktop Director 1912 LTSR Installation and Configuration
Following Topics are covered in this article
- SCOM Management Packs
- SSL Certificate
- Citrix Director 1912 LTSR Installation
- Disable “You are not using a secure Connection“
- Bind SSL Certificate to HTTPS in IIS
- Citrix Director HTTP Redirect
- Google Analytics
SCOM Management Packs
Citrix SCOM Management Packs for XenApp and XenDesktop, Provisioning Services, and StoreFront have been phased out in 1912 LTSR. It means that after June 2020, you must remove any SCOM Management Pack from your Citrix Virtual Apps and Desktops 7 1912 LTSR site to keep your LTSR support and benefits. Read more about the deprecated features at Removed Features.
Citrix SCOM Management Pack | Notice of Change | EOM | EOL |
Citrix SCOM Management Pack for XenApp and XenDesktop | Dec 14 2019 | March 2020 | June 2020 |
Citrix SCOM Management pack for Provisioning services | Dec 14 2019 | March 2020 | June 2020 |
Citrix SCOM Management pack for Store Front | Dec 14 2019 | March 2020 | March 2020 |
The alternative is to use Citrix Director 1912 LTSR for monitoring and managing your deployment. Remember! SCOM Management Packs are available to be downloaded for Premium customers that is why Director is an alternative of SCOM for premium customers only. CVAD premium license (platinum) provides following extra features. Visit Citrix Director Version Matrix for the full list.
- Desktop probing
- Hypervisor Alerts Monitoring
- Application probing
- Key RTOP Data display
- Application probing
- Smart alert policies
- Custom Reporting
- Alerting extended for CPU, memory and ICA RTT conditions
- Integration with Citrix ADM
- Proactive monitoring and alerting
- SCOM integration
- Single-session and Multi-session OS Usage
- Session recording integration
SSL Certificate for Citrix Director 1912 LTSR
Since Director is in internal network, I am going to use internal authority to issue the SSL certificate. Please understand that the SSL certificate issued to the hostname of the Director Server will only secure the communication between director and the endpoint.
- If you want to secure communications between Director and Citrix Virtual Apps and Desktops servers (for monitoring and reports) then refer to Data Access Security.
- If you want to secure communications between Director and Citrix ADC (for Citrix Insight) then refer to Configure network analysis.
- If you want to secure communications between Director and License server then refer to secure the License Administration Console.
- Open Run / Certlm.msc
- Right click on Personal Certificate store. Select All Tasks and click on Request New Certificate
- Click on Next in Before you Begin window
- Select the Enrollment Policy. Expand Details and click on Properties. I am using a Web Server Template with Application Policies set to Server Authentication, Key type as RSA, Key size as 2048 Bits and Private Key is not exportable
- Give a Friendly Name in General Tab.
- Switch to Subject tab. Select Common name in Type drop down under Subject name. Type the FQDN of the Director Server and click on Add>. Click on Apply and then OK
- Click on Enroll
- Notice that enrollment was successful, enrollment request was auto-approved and the certificate has been installed in Personal Certificate Store of the local computer
Citrix Director 1912 LTSR Installation
- Mount the ISO and go the mounted drive
- Right click on Autoselect.exe and select Run as Administrator
- CVAD Meta Installer will open up. Click on Citrix Director
- Select I have read, understand, and accept the terms of the license agreement. Click on Next
- Add Delivery Controller(s). If you configured multiple Citrix sites then you can add one Controller for each site. Citrix Director 1912 LTSR or any Director can auto detect other Delivery Controllers within a Site.
- Select Automatically under Configure firewall rules. Click on Next
- Click on Install in Summary
- Installation will prompt for the reboot. Click on Close
- Once the server is up, installer will prompt you to locate the media so the installation can resume from where it left at the time of reboot. Mount the media again and select the mount drive within the installer window.
- Installation will resume and once it is completed, click on Finish. Leave Launch Director checked
- Notice in the address that the URL is HTTP. Using http is not a problem unless there is some security guideline from the customer that requires Director to be on HTTPS. In one of the next topic of this article, we will bind the SSL certificate to HTTPS (443) in IIS. Further, in this article we will set up a HTTP Redirect to HTTPS.
Warning – You are not using a secure connection
If you are fine with http then you can remove the warning that says You are not using a secure connection (see above screenshot)
- Open RUN / INETMGR
- Go to Sites / Default Web Site / Director in the left hand pane
- Open Application Settings on the right
- Double click on UI.EnableSslCheck. Change the value to false and click on OK.
Bind SSL Certificate to HTTPS in IIS
- Open RUN / INETMGR
- Go to Sites / Default Web Site
- Click on Bindings in the right pane
- Click on Add in Site Bindings window
- Select https in Type and Select the certificate (certificate’s Friendly name) in SSL Certificate we installed previously. Click on OK
- Click on Close.
Citrix Director 1912 LTSR HTTP Redirect
For HTTP Redirect to HTTPS to work, you need to download and install IIS URL Rewrite module 2. Although IIS in-built module HTTP Redirect can do the job but it is not robust enough for all use cases. Check out Redirect HTTP to HTTPS with IIS
- Download IIS URL Rewrite Module 2 from https://www.iis.net/downloads/microsoft/url-rewrite#additionalDownloads
- Install it as an Administrator
- Open RUN / INETMGR
- Go to Sites / Director
- Open URL Rewrite
- Click on Add Rules in the right pane
- Select Blank rule and click on OK
- Give the rule some Name
- In Match URL section, select Wildcards in Using from the drop down and type * in the Pattern field
- Under Conditions section, click on Add
- Type {HTTPS} in Condition Input. Leave Matches the pattern in Check if input string. Type Off in Pattern. Click on OK
- Nothing to be done in Server Variables section
- In Actions section, ensure Redirect is select in Action type. Type https://{HTTP_HOST}/Director/LogOn.aspx in Redirect URL
- Click on Apply in the right pane.
Google Analytics Data Collection
From Citrix Director Documentation – The Director Service starts using Google Analytics to collect usage data anonymously after Director is installed. Statistics regarding the usage of the Trends pages and OData API call analytics are collected. Analytics collection complies with the Citrix Privacy Policy. Data collection is enabled by default when you install Director.
To disable Google Analytics Data Connection:
- Open RUN / Regedit
- Go to HKEY_LOCAL_MACHINE\Software\Citrix\Director
- Set the value of DisableGoogleAnalytics to 1. 1 is Disabled and 0 is Enabled
- If the key doesn’t exist then create it (DWORD).
Hello Gupta, this is absolutely incredible information. We need to setup our Director. I’ll be using your step by step process. I have used your other articles. They were spot on. I don’t have words of appreciation.