If you tasked to find the public IP for all your ICA clients you will be surprised to know the Citrix monitoring/ODATA in virtual apps and desktops do not have this data. If you have Citrix ADM/MAS in place and your ADC/Netscaler is on Premium/Platinum license, you are in luck and this could be your […]
Author Archives: Siva
Citrix Monitoring ODATA API
Citrix provides access to Monitoring Data via ODATA API, I find it useful to extract session info to a very granular level [eg: by mintue]. This is the same data Citrix Director uses to present the fancy usage graphs but as you expand to longer time series it averages it and you might not get […]
DUO ADMIN API Functions through PowerShell
https://github.com/Siva-Github/Duo-PSModule Forked from Duo-PSModule by mbegan, added new Administrator Activation Link functions. this automates the provisioning process to the duo admin console and lets you create the account with just corp email whereas GUI forces you to enter temp password and require to key in the user’s phone #.
Extract MFA/StrongAuth information from all Azure/O365 users
MSOnline PowerShell module is required to run this, the new AzureAD commandlets do not appear to have the strong authentication properties yet. Run the following PowerShell lines to load and connect to your Azure/o365 tenant. Powershell snippet below gets all user from the tenant and expands StrongAuthenticationUserDetails property to retrieve the enrolled MFA info and […]
Netscaler Login Screen – Clear Cache Objects
Useful for the testing rewrites for /vpn/js/gateway_login_form_view.js [e.g. hiding the second password box when the radius is enabled]. Without clearing the cache you wouldn’t see your changes immediately. SSH to netscaler and execute the following line, even though Integrated Caching is not enabled Gateway component of netscaler by default uses this feature. flush cache contentGroup […]
Update windows root ca list – offline
Download the latest version of root ca list [SST] from windows update on a device that has network connection certutil.exe -generateSSTFromWU roots.sst copy the sst file to the offline machine and use powershell to import the root ca list. $sst = ( Get-ChildItem -Path C:\certs\roots.sst ) $sst | Import-Certificate -CertStoreLocation Cert:\LocalMachine\Root
A quick way to generate self-signed certs through PowerShell
code snippet to generate a 10-year SSL self-signed cert, notice the NotAfter argument. Once successfully run, cert can be exported through local machine certificate MMC. New-SelfSignedCertificate command-let is available in windows 8.1 and above.
Force specific IP traffic through a network interface [Windows 8+]
In a case where you have two network interfaces, eg: 4G data card and local ethernet card connect to your device and you would like traffic to a specific destination to go via a preferred network interface, PS code below could guide you through it. E.g ps code below shows the route to 200.200.200.200 to […]
Troubleshoot Slow VDI/XenApp logins with UberAgent [free community license]
UserAgent mentioned in few blog posts in the past, checked it out last week and I fell it a good tool to have especially since they announced free community licenses – 100 users at the time of this writing.It offers some of useful metrics [few listed below] break down of session login and logout durations application […]
Handle Netscaler AAA > "Target URL not found for redirection" after login
Citrix published a solution for this [CTX224908]; saying hit the LB first and have it populate “NSC_TASS” cookie. That might not work for all audiences. Users tend to bookmark the login page. Which happens to be AAA page. When they go back to their bookmark they hit the AAA page directly with out the “NSC_TASS” […]