Creating multiyear certificates for use with Citrix

The architecture of a XenDesktop 7.x environment is based upon the use of internal certificates. For internal use, for example for the connection of the StoreFront Server with the Desktop Delivery Controller, one would prefer not be forced to use certificates that need to be changed every year. The standard setting of Microsoft CA for web server certificates is exactly one year. Additionally we will show that a Microsoft CA can be installed using PowerShell.
The Microsoft CA can be attached to every Windows server system via Windows rolls. Certificates can be very easily created with the CA that are valid for one year, for example. In accordance with new requirements almost all data paths in terminal server environments today are being encrypted. Thus even communication with the Citrix STA should occur with encryption. Currently the Microsoft CA offers certificates for two years as standard. It is possible however to create one's own template in order to generate longer multiyear certificates. Here we will describe how to achieve this. First the installation of Microsoft CA with PowerShell. A few settings must absolutely be confirmed. This configuration is good for the creation of a quick certificate. This can also be done in a test environment and thereafter the certificates can be imported into the production environment onto only those servers where they are needed. However no CA should be installed for the entire infrastructure of a company in such a manner. A CA for email encryption requires careful planning. The root certificate of the installation will be replicated automatically in Active Directory. It is thus available after some time on all domain members (server/client). It is recommended to keep the validity period of the root shorter, in the event of critical security problems.

Continue reading
  8989 Hits

A new IT Blog

Andreas NickMy name is Andreas Nick and this is my new blog with information and tools related to my occupation. I am an IT visionary with a strong focus on the use of an optimal IT workplace, and I have been working for approximately 15 years in Germany in the Citrix and VMWare VDI field. I've realized these goals for several years now through the work of my company in Germany, Nick Informationstechnik, and our numerous satisfied customers. Particularly through the use of automation we are able to find solutions that other service providers are able only with difficulty to offer.

In this capacity I've particularly specialized in providing software for terminal servers and desktops through software virtualization with App-V. The areas of server- and storage virtualization are also interesting to me. I believe in the community and in the support that we as colleagues employed throughout various firms in our profession can give to each other and would like to use this blog to give something back to the community.
Our German blog www.software-virtualisierung.de will be supplemented by this blog and the information from it and our experiences in Germany will be edited for the international Microsoft, Citrix, VMWare and VDI community. I would especially like to protect customers from errors, to

Continue reading
  18918 Hits

@nickinformation Tweets

My german Blog: 

http://www.software-virtualisierung.de

in