The scheduled update (ADV190023), regarding LDAP Signing and Channel Binding for new and existing domain controllers, scheduled for March 10, 2020, has been postponed to the second half of calendar year 2020. The March 2020 update will only provide additional auditing capabilities to identify and configure LDAP systems before they become inaccessible with the later update.
The later update results in no more connections to the domain controller, via unsigned / Clear Text LDAP on port 389. Then it is only possible to use either LDAPS via port 636 or Signed LDAP (StartTLS) on port 389.
Continue reading “ADV190023 – Enable LDAPS in Windows DC and Citrix ADC”
In the past months, I have had to deploy Microsoft Teams and OneDrive from the Office365 portfolio in Citrix environments, in addition to the standard office applications in numerous projects.
The standard installation, that the user can perform through the Office365 portal, is a user-based installation. In a Citrix environment, this is only recommended for desktop operating systems (pooled or personal desktop).
A user-based installation can be detected very quickly in the User Profile, since data is then located under AppData\Local\Microsoft\Teams.
This type of installation in a worker with server operating system has many disadvantages:
Continue reading “Install Teams & OneDrive in Citrix (Machine-Based)”
- No control over the installed version
- Several different versions possible on the same worker
- Complete data (~1 GB) is stored in the user profile
Citrix has released a critical vulnerability warning (CVE-2019-19781) in all Citrix ADC & Gateway systems one week before Christmas. Several working exploits have been released since Jan. 10, 2020 and are available to everyone.
Important ! The fix from Citrix with the Responder Policy does not work on systems with version 22.214.171.124/51.19, 50.31 and older. If this version is in use, please update to the latest 12.1 version.
The exploits allow remote code to be executed anonymously, allowing unauthenticated attackers to take over the various machines with root privileges.
Continue reading “Checklist for Citrix ADC CVE-2019-19781”
On December 18, Citrix Virtual Apps and Desktops (CVAD) version 1912 was released. Following a little guide to the update to the latest version.
Link to Citrix Virtual Apps and Desktops Documentation
Continue reading “Upgrade to Virtual Apps and Desktops Version 1912 LTSR”
A few days ago, Workspace Environment Management (WEM) Version 1912 was published. Below an introduction to WEM and a guide to upgrade to version 1912.
Link to Citrix Documents Site
Workspace Environment Management is a Performance Management and UEM (User Environment Management) tool from Citrix. It is licensed to all customers with Virtual Apps/Virtual Desktop Advanced and Premium (formerly XenApp/XenDesktop Enterprise and Platinum) Versions, as well as an active customer success services.
Continue reading “Upgrade to Workspace Environment Management Version 1912”