How to easily read the username instead of SID on a TS/Citrix server


I found this little trick in my RSS feeds and I must say this is really a KISS (keep it simple stupid) solution that everybody in a TS / Citrix environment can use.

I wanted to walk through the registry of a specific terminal server user. So I logged onto that terminal server too (using my own credentials) and opened up regedit… And then it hit me (again). I need to know the SID of the user to open his part of the registry.

To prevent having to get a SID ever again I implemented the earlier mentioned trick. I launched the RES PowerFuse console, went to Powerlaunch; User Registry and added a new String Value directly under HKEY_CURRENT_USER. I named the String "Username" and entered "%username%" as the value.

In the original blog post this will be done with PowerFuse. If you don’t use PowerFuse you can set this registry setting via your logon script.

If you’re running a logon script via Kix, you can add the following line:


Or if you’re running a batch script, you can add the following line:

REG ADD "HKCU" /v "UserID"  /d "%Username%" /t REG_SZ /f 

When the user runs the logon script, the registry setting will be imported and you can browse through the registry without knowing the SID of al your users.




Citrix: Antivirus Strategy for Symantec Antivirus

De volgende processen kun je het beste uit de HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\Run verwijderen.  Zodra dit is gedaan worden deze processen niet meer in elke user sessie gestart en dat scheelt weer in het resource verbruik.

Process Info
ccApp Symantec Common Client User Session Process. ccApp calls the different program features in the Symantec products and makes sure that those programs are running, such as the Auto-Protect and E-mail Scanning mechanisms.
vptray Symantec Gold Shield Tray Icon. This is the Taskbar Icon and User Interface.

De poster op geeft nog de volgende tips mee

Tip Description
1 Scan local drives only. DO NOT scan network drives.
2 Only scan "Incoming" files (ie. write events).
3 Exclude the pagefile(s) from being scanned.
4 Exclude the "%ProgramFiles%\Citrix" folder from being scanned (the heavily accessed local host cache and Resource Manager local database are contained inside this folder).
5 We would recommend excluding the Profiles ("%SystemDrive%\Documents and Settings") folder, as well as the Print Spooler (%SystemRoot%\System32\spool\PRINTERS) folder.
6 If you do not exclude the Profiles, then exclude the user‘s Presentation Server Client bitmap cache ("%UserProfile%\Application Data\ICAClient\Cache" or "%AppData%\ICAClient\Cache") used for ICA pass-through connections by the locally installed PNClassic and PNAgent.

De bovenstaande tips kun je het beste instellen op een los staande antivirus group in Symantec System Center


Daarna kun je bij Exclusions de verschillende folders excluden.


Mocht je de Citrix Edgesite Agent op de Citrix server draaien, dan kun je het beste het volgende document nog even na te lopen: CTX111062