Forum Replies Created
-
AuthorPosts
-
Hi, I know this is an old post but i wonder if you managed to get this working.
I have a self created certificate trusted by our internal domain certificate authority server. This certificate is for for Citrix Single Sign On Account self service.
I have configured the wnos.ini for our Wyse C10LE running WTOS 7.1_122 to load the certificate.The client successfully loads the certificate but when I go to account self service, request a password reset and enter my login credentials and domain I receive an “SSL UNKNOWN CERTIFICATE AUTHORITY” error.
I have confirmed the Password server address matches the certificate. I have also confirmed this certificate works on a PC on our domain.
Does the Certificate Authority need to be a particular trusted CA for WTOS?
Attached is the relevant parts of my wnos.ini
;*************************************************************
;* General 3 *
;*************************************************************NoticeFile=disclaimer.txt Resizable=yes
Autopower=yes
AutoSignoff=yes Reboot=yes
AddCertificate=Citrix_SSO Password=*******
SysMode=Classic;*************************************************************
;* Network *
;*************************************************************SignOn=Yes
DomainList=”AP,IB,CORP,IAM,POIS,PVB,SECURITIES,UK,ZA”
PasswordServer=password.investec.com
AccountSelfService=yesNo problems. I’ll post to Wyse support.
Thought maybe the ForceDirect or ForceLocal could exclude the finger scanner connected directly to server (PC) from being included in the RDP session.
Apologies.
So there is a PC running Bloomberg and the TCX suite. This PC has a Bloomberg finger scanner connected to it.
I have a Wyse C10LE with a Bloomberg finger scanner installed and is configured to RDP to the PC running Bloomberg.
When connecting to the PC via RDP using the Wyse, the Bloomberg finger scanner connected to the Wyse is not being picked up in the RDP session.
However, if I disconnect the Bloomberg finger scanner from the PC then the Bloomberg finger scanner works from the RDP session.
The user scenario is that they work in the office locally connected to the PC 3 days a week.
The other 2 days they work from another office and connect via RDP to the same PC.I have tried to see if starting a new session via the Wyse works as oppossed to reconnecting to the session that was logged in locally but this made no difference.
Thanks.
Fixed. Needed to add unmapusb=yes
;*************************************************************
;* General Session *
;*************************************************************sessionconfig=all mapdisks=yes unmapusb=yes DisksReadOnly=yes
From Wyse:
“If you are using Citrix XenApp and want to map USB disk drives, you will need to add “Sessionconfig=all unmapusb=yes mapdisks=yes” in your INI file. This disables HDX USB (which only XenDesktop supports) and allows the traditional disk drive mapping to be enabled.”Did not have this setting in my wnos.ini for our WTOS devices and the usb drive mapping worked fine. I added it wnos.ini, tested usb drive mapping and it worked so I’ll leave it there.
Thank you. We tested the eval and successfully tested it so purchased a license.
It’s partially working in that the RDP session is recognising the Bloomberg keyboard and all the key functions are working but the fingerprint scanner function is not being recognised.
I believe this is because there is a Bloomberg keyboard connected to the PC that the user is RDPing to and Bloomberg software is registering this fingerprint scanner.
When I RDP to a PC which does not have the bloomberg keyboard plugged into it the finger scanner works fine.
Is there a way to override or disable the PC local Bloomberg finger scanner or force the Wyse local Bloomberg finger scanner?I don’t know if the ForceRedirect would achieve the desired result.
Thanks.
My xen.ini config for usb
;*************************************************************
;* General Session *
;*************************************************************SessionConfig=ALL MapDisks=yes DisksReadOnly=yes
Thanks for the replies. Have not tried RDP but ConfGen does not have it available so I assumed was unavailable.
So it will only use the wnos.ini if the xen.ini is not present?
Using the wnos.ini for Xenith did not allow the passthrough of credentials to the XenApp server and therefore I was prompted with server login screen.
USB disk access does not appear to be working. Works fine on C10LE.
Hi,
ConfGen, I agree you have been immensely helpful with assisting with my Wyse configs so I’ve just made a donation. Small I know but a token of my gratitude.
I have implemented the recommended XenApp 6.5 settings for Flash you published and I think it has made some viewing improvements.
Just wondering if you have heard anything though your channels regarding availability of local flash rendering on the Wyse Xenith 2?
Thanks.
Hello tarasov,
I’m also attempting to get a Bloomberg keyboard with the finger scanner working with an RDP session.
So you are using the TCX suite, specifically USB redirector? Do you need to purchase licenses for the USB redirector?Thanks!
Running 7.1_122 and do not use WDM. Adding the following option in wnos.ini appears to stop client searching for wdm server.
RapportDisable=yes
Logged a call with Wyse support.
When applying an alternate setting in a user.ini to oppose a setting in the wnos.ini the full line needs to be present.
i.e DisksReadOnly
wnos.ini
SessionConfig=ALL Smartcards=yes MapDisks=yes DisksReadOnly=yescustom.ini
SessionConfig=ALL Smartcards=yes MapDisks=yes DisksReadOnly=noI posted that I had the entire line in my custom.ini but I actually only had
DiskReadOnly=noThanks.
Thanks ConfGen
Hi,
Success! The smart card is a GEMSAFE by GEMALCO. I had to install the card reader software on my Citrix XenApp server and then it was able to read the card and subsequently ANZ Transaction was able to read the certificate.
Currently I’m using the command Smartcards=yes in the wnos.ini file. As I have other smartcards I need to setup should I use this option instead of the ForceRedirect command suggested by support? These cards will be used as secure authentication to external sites and not as domain signin cards.
Thank you!
Hi,
I added that entry to my wnos.ini
After restart I receive the following info in system information
6: USB: Found a new device “CCID reader” on port 2
17: Accessing system profile …
18: Checking Software ftp:/wnos/VL10_wnos …
19: Contacting SNTP [10.32.0.1] …
20: This card is not supported
21: ATR: 3b 7d 94 00 00 80 31 80 65 b0 83 11 48 c8 83 00 90 00I contacted support and they suggested the following:
You will need to specify a command in your existing INI file to redirect the device.
During the detection when you plug the USB SC in, under the event log, it will come up as Found new device….” and also will give you a device detail reading, showing the PID, VID etc.
Note this down.
Then add the following command to your existing INI fileDevice=VUSB ForceRedirect=(specify the device details that you have obtain from the above) Type=HDX
Reboot your terminal so that the new commands take effect.
Plug your device in, boot up the terminal and connect to your session.This brought up the same message and with either config I am not able to see the smartcard in my session.
Do I simply need to add this line?
SessionConfig=ALL Smartcards=yes
-
AuthorPosts