The following content is a brief and informal pre-requisites guide to setup, configure and test delivering virtual apps from the Microsoft Azure Marketplace by Citrix Cloud XenApp essentials service before de-ploying in a PoC, Pilot or production environment. The content of this blog is based on own personal assessment and do not necessarily conform to industry descriptions or best practices or that of the views of Citrix.
Getting Started, High Level System Requirements & Prerequisites
- Azure subscription is required with a resource group defined with a virtual network.
- Define your preferred Azure region.
- Your AD strategy can be decided with Active Directory situated in the Azure resource location. Use a min A3 Standard VM instance for AD in that case or “Azure Active Directory domain ser-vices, ” and eDocs can be utilized before implementing Azure Active Directory for the XenApp Essentials Services.
- It’s important that you define your preferred OS strategy for the service which currently supports Windows Server 2012 R2 or 2016, and master image strategy is needed to be defined, e.g., BYO image or a Citrix prepared the image for the service! Notes: “(a) BYO with your server OS tem-plate including apps + licenses for those apps or choose Citrix prepared templates with Apps. (b)RDS (Remote Desktop service) CALS w/SA to Azure or purchase RDS SALs.”
- Customer-owned Azure Subscription as is responsible for per monthly IaaS consumption costs, e.g., compute, network, bandwidth & storage
- Only Machine creation services (MCS) based provisioning is support for public (Iaas) clouds and this Service hosted by Microsoft Azure.
- Azure Marketplace offers a subscription to XenApp Essentials Service. You can make a c
- Connection to Azure subscription to Control Plane operated by Citrix Cloud. It controls customer Azure subscription via Citrix Cloud Connectors to provide capabilities to manage, provision and monitor your XenApp servers which will deliver HDX virtual apps
Transition from Microsoft Azure RemoteApp to XenApp essentials
Microsoft Azure RemoteApp (ARA) – which provides the simplistic beauty of Microsoft Azure Remote-App deprecated over time and now is replaced with Citrix XenApp having “Secure by Design” enterprise security methodology, platform scalability with FMA in 7.x and High Definition Experience (HDX) virtual app delivery protocol capabilities. ARA incorporated Remote Desktop Services (RDS) capabilities from a multi private cloud deployment on MS Windows Server to MS Azure with non-persistent RDS/RDP sessions delivered. Again this delivered only from Microsoft Azure cloud. XenApp Essentials Service is only available from Microsoft Azure Marketplace hosted on Azure. It supports the delivery of Windows apps from Windows Server 2012 R2, 2016 prepared templates or customized templates.
How to deploying XenApp Essentials
Based on the image above here is step by step procedure for XenApp essential deployment.
Note that steps can change as the service is delivered from secure SaaS-style Citrix Cloud with the ever-green control plane.
Before you begin, ensure that you have the subscription to XenApp Essentials Service from Azure Marketplace + Server Images + RDS CALS w/SA.
- Create app collection like Azure Resource App and create a name for this app
- Name can be domain Joined (Most Popular) or non-domain Joined
- Link Azure subscription to XenApp Essential and select Resource Group, Virtual Networks & Subnet
- Enter domain name, OU, Srv acct + passed
- Select Citrix provided template image or your customized template
- Select capacity and manage costs by choosing instance type and power settings scheme Enter # concurrent users, and you’ll receive an estimate cost calculator before provisioning which will help you understand the costs based on 40hr usage
- Short access time as CC will provision your instances in your subscription
- Select app collection, click Apps tab then select apps to publish
- Select users tab, search domain by user or group
- Return to Manage home, and you’ll find your app collection is ready with a green tick
- Select app collection, and see the StoreFront URL to send to users
- Users login with domain\user + passed12
- Users will now able to launch their HDX virtual apps secured by their organizations Cloud-hosted
StoreFront FQDN which provides secure remote access via the NetScaler Gateway Service also review caveats re bandwidth throughputs below.
- Authentication using Live.com accounts cannot be used
- Launch an app if an existing RDS session is present on the XenApp VDA is not permitted.
- Machine catalog failures may occur if deploying a VM instance size in a region that does not sup-port that instance type
- No premium storage account is supported see “Prepare Your Azure Subscription.”
- Each end-user is limited to 1-GB outbound data transfer per month, can be increased to 25 GB limit with add-on via the Azure Marketplace.
Deploying XenApp Essentials Service
The XenApp Essentials provides secure access to virtual Windows apps. This service is based on proven XenApp and XenDesktop technology. Citrix Cloud hosts this Service; it includes the workspace experience and the NetScaler Gateway Service along with core management services. Your app workloads run in your company Azure subscription.
Check the image below for the architectural overview of a basic XenApp Essentials Service cloud typical deployment:
Users can connect to your on-premises data center. Connections between the Azure cloud and on-premises data center occur through a secure VPN connection. Users connect through XenApp Essentials to file servers, license servers or Active Directory over a secure VPN connection.
Image Credit by Citrix systems.
Get more than what you think with YASH Cloud Services
Shiv Kishan Suthar -Technical Architect- IMS @ YASH Technologies
Azure Master of the Month | October-2018