Friday 30 December 2016

SCVMM Installtion,Configuration-I



Hello Professional

Here will go through with SCVMM, what this term means, what is feature and capability and so many questions with how, why, what and if


Lab Setup:
 1 Domain Controller/ 2 HYPER-V/1 2012R2 Member Server/1 Member Server for SQL Database.
Pre-requisite of SCVMM:

1. Pre-Installed and 2012R2 Member Server.
2. 2012R2 ISO
3. MSSQL Installed Server with handy ISO
4. On Domain Controller, create these groups for easy administration
   DOMAIN\scvmmadmin                 Service Account account
    DOMAIN\scvmmadmin            account for managing hosts
    DOMAIN\scvmmadmin                 For SQL Purpose
    DOMAIN\scvmmadmin           SCVMM Administrators group

Add SCVMM Id as Local Administrator to SCVMM Server and SQL Server.

5.Windows Assessment and Deployment kit for windows 8.1from here(this link will give you small 1.4 MB software which will download rest of data from internet approx 2 GB patches and tools) and its time taking job so do this before a day.


Starting setup wizard on 2012R2 member server.
Selected VMM management server and VMM Console
 Basic details
 License Agreement, Just accpet

  right now skipped windows update, because my plan is to update with SCCM
 By default installation directory

  got error for pre-requisite.

i downloaded the ADK tool and run on the lab setup. but this is giving file missing error. So i run this ADK tool on my internet system and downloaded the patch and tools by selecting the option for another computer. Frankly it took 1 hour.





Selected highlighted option but you please dont select SQL Express because this edition is not supported for SCVMM database.
 
and after click install
 Once ADK setup completed, click check pre-requisite again
 recommendation to increase the server memory, sure will do

installed dot net because getting some error which was causing the setup crash every time, and missed the pre-requisite that dot net 3.5 is must

It was 1:30 AM and instead of start from beginning because i may miss or not remember so i pause the vm and power off my desktop. next day again i start but got this error which gave me a thought ohhhh what is this.
to over come from this issue i restarted my desktop but finally removal of suspended file resolve this. 

Selected MSSQLSERVER database. dont select the port until you customized your network communication port. let is be default

 leave the port details as default
 
starting with creating new library, this is first setup. other wise you can select existing share. 
 Installation Summary
 in progress
Setup completed
Login console and used as current session identity
and after login the dashboard.

after that adding Hyper-V to this
 right now will continue with basic options


added manually the HYPER-V servers and didn't skip AD verification.

after some time, it displayed this error
 its showing pending for second HYPER-V, will see exactly what is causing this.
 on Jobs tab, i can see running and history task. so it showing 50% for the pending server
to over come the above issue, i clicked on failed job and retry. basically the addition of HYPER-V to SCVMM server will install agent on both HYPER-V.
there are lots of other task and activity can be performed after that.


Finally both HYPER-V added to SCVMM server. There are lots of other things to do and understand that how it works.

Any query or question, please comment, we are very much available to listen and solve.
Don't let sleep your zeal to learn and earn.


Posted by at No comments:
Labels: ,

Citrix Installation and Configuration-II



Hello Professionals,
In previous blog, have installed Citrix Xen App with basic configuration and were at this stage.
There are different tabs which shows different information about XenApp services and configuration.
 This Hotfix management tab shows information about XenApp patching. A patch details will show here if any latest patch is released recently.




Now will start addition/ creation and advanced configuration from this dashboard.
To start it it need to run and discovery command that helps further for adding and configuring of sites and services.

here will select Active Directory for Single Sign-On environment. 
 After next got this error. To troubleshoot this issue gone through with so  many events and logs.Then finally one thing remind me  pre-requisite step before running this run and discovery command.
These configuration should be done with schema administrator privileges its mandatory to run the schema prep and domain prep command before configuration.This should be done from Citrix server and make sure not to perform from any of your Domain Controller.
this tools can be found on Citrix installtion drive\Suppor\Password_Manager\Tools
Before running schemaprep command, run this command with admin access on command prompt
regsvr32 schmmgmt.dll
then
ServerManagerCmd -i RSAT-ADDS 
D:\Support\Password_Mamager\Tools\CtxSchemaPrep
D:\Support\Password_Manager\Tools\CtxDomainPrep and after it ask to reboot the server.
There are steps which i follow and got jump in to different issue. I run SchemaPrep and DomainPrep command it showing error for FSMO Server and domain controller connectivity issue. I found replication issue because for this Schema and Domain command a user ID should have Schema Admin access to Domain, but Id was not showing to any other controller. It took me 45 minute to replicate all the data forcefully and even Active directory user and computer console was not opening on citrix installed server. so i run the below command to check the replication status and force to replicate. As we run the Schema preparation and domain preparation command on the citrix server its very necessary that replication should be perfect.
 REPADMIN /SHOWREPS 
 REPADMIN /SHOWREPL
 REPADMIN /SYNCALL
once replication done both command run properly. So have learnt another pre-requisite that Active Directory Replication should work fine before you run the SchemaPrep and DomainPrep for XenApp further configuration.


and after that all goes fine.






 Citrix Web interface: is a sharing connctor in farms that provide a centralized access for application which are on different farms. Its recommended to be hosted on dedicated web servers. XenApp support AD FS and recommended and trusted with Citrix web interface when its being used by different organization.Web Interface is configured in Infrastructure setup to user Access gateway.
Now we are moving with creation of XenApp Sites and XenApp Services from XenApp Dashboard.


 
 first configure the web sites, where it start wih adding the server and farm
there are different options available for configuring authentication method
Windows supports two authentication protocols, Kerberos and NTLM, so applications such as Windows Explorer, Internet Explorer, Mozilla Firefox, Apple Safari, Google Chrome, Microsoft Office, and others, can use Windows passthrough authentication to access network resources without explicit user authentication prompts.When Kerberos pass-through authentication is used to start a XenApp session, there are technical limitations that may affect application behaviour. Applications running on XenApp that depend on the NTLM protocol for authentication generate explicit user authentication prompts or fail. Most applications and network services that support Windows pass-through authentication accept both Kerberos and NTLM protocols, but some do not. In addition, Kerberos does not operate across certain types of domain trust links in which case applications automatically use the NTLM protocol. However the NTLM protocol does not operate in a XenApp session that is started using the Kerberos passthrough authentication, preventing applications that cannot use Kerberos from authenticating silently. Kerberos pass-through authentication for applications expires if the XenApp session is left running for a very long time (typically one week) without being disconnected and reconnected. Kerberos is based on security tickets issued by domain controllers, which impose a maximum refresh period (typically one week). When the maximum refresh period has ended, Windows obtains a new Kerberos ticket automatically by using the cached network credentials that are required for the NTLM protocol. However, these network credentials are not available when the XenApp session was started using Kerberos pass-through authentication.
If you configure both smart card and explicit authentication, users are initially prompted to log on using their smart cards and PINs but have the option to select explicit authentication if they experience any issues with their smart cards.
Its recommended to use passthrough authentication for access scenarios of internal users on managed devices. and if windows is not configured with SSO it will automatically shift to Explicit authentication.
Here you can restrict the domain, if you want to allow to any specific domain only and if you limited the access for a specific domain, it can be changed in future(will share you the steps in next article).

Continued with Full Logon Screen.

in this option, its very much clear why are admins moving with on-line option

Will star with site now
 
Added Citrix installed server, i have only one right now.
 

And once done with Site and services, you can some new tabs and option under SSO with Default Policy and Domain Policy.





Will go through with more points in coming blog. Any query or question, please comment, we are very much available to listen and solve.

Dont let sleep your zeal to learn and earn.

                                                   

Citrix Installation and Configuration-1 

Citrix Installation and Configuration-III

Posted by at No comments:
Labels:
Subscribe to: Posts (Atom)