Prerequisites:
VMware workstation
VMware OVFTool Converter Installed (Obtained from http://communities.vmware.com/community/vmtn/vsphere/automationtools/ovf)
Access Gateway VPX Virtual Appliance 5.0.1 for VMware ESX (Requires MyCitrix.com login). Navigate to: Downloads -> Access Gateway -> Access Gateway VPX 5.0.1
Step 1: Using the OVF Tool, convert the downloaded OVF format Virtual Appliance to VMX format:
– Once installed, ovftool.exe can be located in C:Program FilesVMwareVMware OVF Tool. The following command can be used (where Source.ova and Destination.vmx are replaced with the actual paths):
“C:Program FilesVMwareVMware OVF Toolovftool.exe” C:Source.ova C:Destination.vmx
Step 2: Once converted, open VMware Workstation and navigate to File -> Open and browse to the .vmx file created in the procedure above. At this point, you can add the VM to favorites by selecting File -> Add to Favorites. Additionally, you can rename the VM if needed. Modify the VM settings and configure the first Network Adapter (ethernet0) for the outside interface (This step is critical in order to complete the express setup below). Typically, ethernet0 will be configured for the outside interface with ethernet1 as the inside interface.
Step 3: Once the VM has been personalized, power on the virtual machine. The virtual machine will fully boot and you will be prompted with the login screen. Login using admin/admin for the username and password. Select option “0” to perform the express setup.
Step 4: Enter option 1 to assign the external (eth0) and internal (eth1) IP and subnet mask. Enter option 2 to assign the default gateway (Typically the gateway for external adapter eth0 if the CAG will be public facing).
Step 5: Once all initial configuration settings have been entered, use option 6 to Commit Changes. Confirm to save changes and reboot the CAG virtual appliance.
Step 6: In a web browser, navigate to https://0.0.0.0/admin (Where 0.0.0.0 is the internal IP address ethernet1). Login using admin/admin and navigate to the Management tab to continue configuration.
Check back for future blog posts on Configuring Citrix Access Gateway VPX 5.0.1 for XenApp and XenDesktop. Until then, here are a couple key areas within the CAG interface to focus:
– Management -> Networking: Hostname.
– Management -> Networking: Redirect HTTP to HTTPS.
– Management -> Network Service Providers: DNS Suffixes.
– Management -> Password.
– Management -> Date and Time: Use Network Time Protocol servers.
– Management -> Licensing: Upload and change licensing to VPX Express.
– Management -> Authentication Profiles: Setup LDAP authentication to Active Directory domain.
– Management -> Logon Points: Add web interface servers with WI Single Sign on for Pass-through Authentication to WI. Set Web Interface logon point as Default LP.
– Management -> XenApp or XenDesktop: Setup IP access-lists for authenticated access to Session Reliability port only.
– Management -> Secure Ticket Authority: Use FQDN to STA authentication points.
Step-by-step setup instructions to be detailed in a later blog post. To be continued…
It appears that LDAP does not work with Express. Is there another way to test?
Jerry,
LDAP should work with the CAG 5 VPX Express without an issue. I have it stood up and running in my lab environment alongside CAGEE 9.3 and both are authenticated against Active Directory LDAP. What does your configuration look like? If you want, I can do a follow-up blog post on basic configuration for CAG 5 VPX or you can reference the following: http://support.citrix.com/article/CTX128869.
Thanks,
youngtech