Blog, certificate, Citrix, FIPS, XenMobile
0

XenMobile 10 – Configuration Series Part 1: Installing in FIPS 140-2 Compliance Mode

The latest version of XenMobile includes FIPS 140-2 compliant encryption for mobile apps, ensuring government and enterprise workers can access critical documents and apps securely. XenMobile 10 expands FIPS 140-2 support by encrypting connections from the network to the server and connections to the console. This is in addition to the existing client-side FIPS 140-2 that came with XenMobile 9.

This guide helps you go thru how to install XenMobile 10 in FIPS Compliance Mode.

 

What is FIPS?

The Federal Information Processing Standard (FIPS), issued by the US National Institute of Standards and Technologies (NIST), specifies the security requirements for cryptographic modules used in security systems. FIPS 140-2 is the second version of this standard.

More detailed information about FIPS and NIST see links:

http://csrc.nist.gov/groups/STM/cmvp/documents/140-1/140sp/140sp1747.pdf
http://support.citrix.com/proddocs/topic/xenmobile-10/xmob-10-fips.html
http://en.wikipedia.org/wiki/FIPS_140-2

 

XenMobile 10 – Installation

Pre-requirements:

– Microsoft SQL Server ready for the XenMobile database.
– SSL certificate installed on the MS SQL and encrypted connections enabled on it.
– Root Certificate exported.

Important: You can enable XenMobile FIPS mode only during initial installation.

 

Configuring XenMobile 10 for the First Time Use:

After you have downloaded and imported XenMobile 10 virtual appliance into hypervisor, start the virtual machine and open console view.

1. Enter new password for the Admin (CLI) user.

 

2. Provide Network settings and commit by pressing y and hit Enter.

 

3. Type y to increase security by generating a random passphrase. The passphrase is used as part of the protection of the encryption keys used to secure your sensitive data.

 

4. There we are! Type y and hit Enter to enable FIPS mode configuration.

Important: FIPS mode only supports an SSL encrypted remote database connection.

 

5. Hit Enter to accept the default mi for Microsoft SQL.

6. To enable a secure connection you must copy or import a Root certificate. Hit Enter to accept the default y to upload a root certificate.

7. Type i or c depending can you copy-paste Root Certificate on your console or as in my case it needs to be copied from the IIS server, because I’m using VMWare Fusion and copy-paste won’t work.

8. Enter http URL to import Root Certificate and hit Enter.

 

9. Enter Database server FQDN and hit Enter.

10. Hit Enter to choose default Database TCP port.

11. Enter Database db_creator credentials.

12. Choose new XenMobile Database name and commit all settings pressing y and hit Enter.

 

13. Type y to enable Cluster and hit Enter. (not needed yet, but it’s safe to enable already)

 

13. Type XenMobile FQDN hostname and commit settings pressing y and hit Enter.

 

14. Hit Enter to choose all default communication ports and commit settings pressing y and hit Enter.

 

2015-02-23 12_39_23-2015-02-19_1648-2.png - Windows Photo Viewer

15. Enter y to use same password for the all PKI certificates and commit settings pressing y and hit Enter.

 

16. Hit Enter to choose default username for the Web Console admin account, or change it whatever you want. Enter new password for it can commit settings pressing y and hit Enter.

 

17. Hit Enter not to upgrade from previous release and you’re done!

 

18. Notice XenMobile Web Console access URL.

 

19. Login to the CLI and you’ll see that XenMobile is now configured as in FIPS Compliant Mode.

 

20. After configuration has finished you should be able to login to the XenMobile Web Console via web browser.

 

[facebook_like_button]

 

Views: 2832

Read More
Citrix, News, XenMobile
2

XenMobile 10 – 3 Things you should know

Three things you should know about XenMobile 10

 

  1. Citrix will provide upgrade tools for existing customers to help automate the upgrade process to XenMobile 10 while minimizing the impact to production environments.  Please check with your Citrix Account Representative for the availability and delivery schedule for the various upgrade tools and use cases.
  1.  XenMobile 10 supports V6 licensing only.  Citrix has been providing customers with both V6 and legacy Zenprise licenses since XenMobile 8.7.  If you require an upgrade please check your Citrix account under the “MyLicesning” tab to retrieve the V6 licenses.  Please contact Citrix Support for additional information.
  1.  With XenMobile 10, MDM reporting will initially be supported via CSV file downloads.  The scripts will be available on your Citrix customer download page on citrix.com in early March 2015.  XenMobile 10 will support the same reports as XenMobile 9.  In Q2 2015, XenMobile will deliver new and improved reporting capabilities that are fully integrated and viewable through the XenMobile administrative console.

 

Where can I download the new components?

 

All new component updates will be available for download at www.citrix.com/downloads/xenmobile.  Citrix ID required.  The XenMobile download page has been restructured and flattened to provided easier access to client and server downloads. The XenMobile 10 tab will take you to the server download components.  Worx Apps and MDX Toolkit tab will take you to the Worx client components.

 

[facebook_like_button]

 

 

Views: 973

Read More
Citrix, News, XenMobile
0

XenMobile 10 – Available for Download

Citrix has announced XenMobile 10 to be available on 17th February 2015.

Download link:

Download XenMobile 10

“What’s New” highlights:

Unified Mobile Device Management (MDM) and Mobile Application Management (MAM) with XenMobile Server and the completely redesigned admin console.

– Install and deploy 75% faster
– Manage apps and devices in 50% less time
– Create one policy and apply to all device types and platforms

Role-based Access Control (RBAC) for simplified administration.

End-to-end FIPS 140-2 compliance including network to server and admin console connectivity.

Supportability enhancements including Citrix TaaS (Tools as a Service), Self-Service Portal and improved filtering capabilities.

For a more detailed list of new XenMobile 10 features and capabilities please visit:

XenMobile “What’s New” page on citrix.com or “What’s New” on XenMobile eDocs

As a reminder, XenMobile 10 client side updates were made available in December 2014.  These client updates include Worx Home, WorxMail, WorxWeb, WorxNotes and the MDX Toolkit. XenMobile 10 client and server releases are  independent of one another. Customers can run XenMobile 10 client side apps with XenMobile 9 and XenMobile 8.7 server side deployments.

XenMobile Cloud will be updated to XenMobile 10 in Q2 or Q3 2015.

 

[facebook_like_button]

 

 

Views: 463

Read More
Blog, Citrix, NetScaler
0

NetScaler 10.5 – Cannot login admin GUI after firmware upgrade

Normally before you upgrade NetScaler you should check if you have NetScaler Gateway theme customised and set theme to Default from the NetScaler Gateway Global Settings and Client Experience tab before doing upgrade. If you forgot to do that and already upgraded NetScaler you might find out that admin GUI login won’t work anymore. Here are the steps to fix that.

Go to NetScaler console.

Change to default theme:

>set vpn parameter -UITHEME DEFAULT

Save NetScaler configuration:

>save ns config

Reboot device:

>reboot

After device comes up, you should be able to login via admin GUI again.

 

If you want to apply customised theme back again after firmware upgrade, change NetScaler Gateway UI theme back to Green Bubble from GUI. Make your customisations on it and when you are happy for the results, run the following commands in NetScaler shell:

Backup current configuration:

# cd /nsconfig
# cp ns.conf ns.conf.save

Create custom theme:

# mkdir /var/ns_gui_custom
# cd /netscaler
# tar -cvzf /var/ns_gui_custom/customtheme.tar.gz ns_gui/*

This creates the file customtheme.tar.gz which are used by NetScaler Gateway and also makes sure the NetScaler Gateway customisation is retained after reboot. Now change Custom theme back from the NetScaler Gateway Global Settings and Client Experience tab.

 

[facebook_like_button]

 

 

Views: 2870

Read More
Citrix, News
0

Citrix Acquires Sanbolic

Sanbolic Core Technology to Help Drive Down the Cost and Complexity of Storage for App Delivery and VDI Deployments

Citrix announced today that it has completed its acquisition of Sanbolic, an innovator and leader in workload-oriented storage virtualization technologies. Sanbolic technology enables customers to software-define storage to optimize the delivery of application-specific workloads, from any media type – SSD, Flash and hard drives in NAS, SAN, server-side and cloud deployments – improving storage load balancing, application availability and delivering the highest-performance end-user experience. The acquisition of this robust set of workload-oriented infrastructure technologies, combined with its market-leading XenDesktop, XenApp and XenMobile products, enables Citrix to develop a range of differentiated solutions. These solutions will dramatically improve the economics and reduce the complexity of Windows application delivery and virtual desktop infrastructure (VDI) deployments.

Sanbolic allows customer deployments to be geo-distributed across multiple locations and clouds; to scale in a linear and predictable manner; to have simplified provisioning and management; and to gain overall efficiency. The Sanbolic team will join the Citrix organization immediately. The terms of the acquisition were not disclosed.

More info:

http://www.citrix.com/news/announcements/jan-2015/citrix-acquires-sanbolic.html

 

[facebook_like_button]

 

Views: 210

Read More
1 2 3 4 5 7