How to easily read the username instead of SID on a TS/Citrix server


image

I found this little trick in my RSS feeds and I must say this is really a KISS (keep it simple stupid) solution that everybody in a TS / Citrix environment can use.

I wanted to walk through the registry of a specific terminal server user. So I logged onto that terminal server too (using my own credentials) and opened up regedit… And then it hit me (again). I need to know the SID of the user to open his part of the registry.

To prevent having to get a SID ever again I implemented the earlier mentioned trick. I launched the RES PowerFuse console, went to Powerlaunch; User Registry and added a new String Value directly under HKEY_CURRENT_USER. I named the String "Username" and entered "%username%" as the value.

In the original blog post this will be done with PowerFuse. If you don’t use PowerFuse you can set this registry setting via your logon script.

If you’re running a logon script via Kix, you can add the following line:

WriteValue("HKEY_CURRENT_USER","UserID","@Userid","REG_SZ")   

Or if you’re running a batch script, you can add the following line:

REG ADD "HKCU" /v "UserID"  /d "%Username%" /t REG_SZ /f 

When the user runs the logon script, the registry setting will be imported and you can browse through the registry without knowing the SID of al your users.

image

Source: http://resinside.blogspot.com/2009_05_01_archive.html#6904219593671371315

Citrix: Antivirus Strategy for Symantec Antivirus


De volgende processen kun je het beste uit de HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run verwijderen.  Zodra dit is gedaan worden deze processen niet meer in elke user sessie gestart en dat scheelt weer in het resource verbruik.

Process Info
ccApp Symantec Common Client User Session Process. ccApp calls the different program features in the Symantec products and makes sure that those programs are running, such as the Auto-Protect and E-mail Scanning mechanisms.
vptray Symantec Gold Shield Tray Icon. This is the Taskbar Icon and User Interface.

De poster op http://www.jhouseconsulting.com geeft nog de volgende tips mee

Tip Description
1 Scan local drives only. DO NOT scan network drives.
2 Only scan "Incoming" files (ie. write events).
3 Exclude the pagefile(s) from being scanned.
4 Exclude the "%ProgramFiles%\Citrix" folder from being scanned (the heavily accessed local host cache and Resource Manager local database are contained inside this folder).
5 We would recommend excluding the Profiles ("%SystemDrive%\Documents and Settings") folder, as well as the Print Spooler (%SystemRoot%\System32\spool\PRINTERS) folder.
6 If you do not exclude the Profiles, then exclude the user‘s Presentation Server Client bitmap cache ("%UserProfile%\Application Data\ICAClient\Cache" or "%AppData%\ICAClient\Cache") used for ICA pass-through connections by the locally installed PNClassic and PNAgent.

De bovenstaande tips kun je het beste instellen op een los staande antivirus group in Symantec System Center

image

Daarna kun je bij Exclusions de verschillende folders excluden.

image

Mocht je de Citrix Edgesite Agent op de Citrix server draaien, dan kun je het beste het volgende document nog even na te lopen: CTX111062

 

Bron: http://www.jhouseconsulting.com/articles/antivirus_strategy_for_citrix_servers.html

Disable Windows Server 2003 Startup Sound


Op http://www.trevorprokop.com/ kwam ik de volgende tip tegen:

This is a quick fix to remove the startup sound played when users log into a Citrix Published Application.

  1. Download this file. Windows XP Startup.wav
  2. Replace C:\Windows\Media\Windows XP Startup.wav on your Citrix Presentation Server.

Na het uitvoeren van deze twee stappen ben je van het startup geluid verlost.