Thread Rating:
  • 0 Vote(s) - 0 Average
  • 1
  • 2
  • 3
  • 4
  • 5
Setup of Java for Citrix Xenapp Farms
11-10-2015, 01:35 AM, (This post was last modified: 11-10-2015, 01:37 AM by jardinuk.)
#1
Setup of Java for Citrix Xenapp Farms
Setting Up Java on Citrix Xenapp Farms or Roaming profiles for Secure Java Web-Apps

With Roaming profiles or Citrix farms you may encounter an issue where settings need to be “introduced” to all users as default for particular Web-apps. The standard setup of Java is not good for this. Files are stored in the C:\Users\%username%\appdata\LocalLow\Sun\Java\Deployment directory as standard. This means that settings are lost when users log off as this location does not form part of a Roaming profile or UPM profile. The standard option of hard-coding settings for each user (using the C:\Windows\Sun\Java\Deployment directory) does not cope with multi-user systems such as Citrix and only allows a single user access to Java at a time - as they share an identical cache. There is additionally no manner of encoding Java to use any user-path folder other than LocalLow as Java does not recognise or resolve windows user variables. After much testing, the way we have Java running with our Web-applications in a Citrix environment is detailed below. I hope that this information will prevent others from spending the amount of time researching this that I had to.

______________________________________________________________________

This setup will allow each user to have an individual Javacache directory whilst referencing a standard list of exceptions and certificates to allow access to database or web java systems.

Quote:1. Install the latest version of Java to each Xenapp Server
2. Login as a standard user
3. Access all of your Java applications. This will create all of the Java files required.
4. Go to Start
5. Click All Programs
6. Click on Java
7. Open the “Configure Java” control panel
8. Make any setting changes you require on the Advanced tab (MIXED CODE method, default browsers etc).
9. On the Security tab make any exceptions required (Edit Site List)
10. Apply the changes
11. Immediately navigate to c:\users\%username%\LocalLow\Sun\Java\Deployment
12. Copy the following files from this location:
  • Deployment.config
  • Deployment.properties
  • Security\Exceptions.sites
  • Security\Trusted.certs

Create a new GPO. Call it Roaming Java. Create a startup script applied to user properties. The startup script should reflect the following logic:
Quote:@echo off
USE NET Y: \\servername\sharename$\
USE NET Z: \\servername\sharename$\%username%
Xcopy \\servername\sharename$\deployment.config %userprofile%\appdata\LocalLow\sun\java\deployment\* /y /h /r

Create a startup script applied to computer properties. The startup script should contain the following copy logic:

Quote:Xcopy \\servername\sharename$\deployment.config c:\windows\sun\java\deployment\* /y /h /r

In the Y: Drive, create a folder called Java.

In the Java directory copy the file called deployment.config

Make sure the following lines are amended as below:

Quote:deployment.system.config=file:///Y:/Java/deployment.properties
deployment.system.config.mandatory=true

In the Java directory copy the file called deployment.properties

Make sure that the following lines are amended or added to the file:

Quote:deployment.system.security.trusted.certs=Y\:\\Java\\trusted.certs
deployment.user.security.exception.sites=Y\:\\Java\\exception.sites
deployment.user.cachedir=Z\:\\JavaCache

You can add further lines to the deployment.properties to control a number of features – please see the following web-page for guidance - Guests cannot see links. Registration or Login is required.


In the Java directory copy your pre-prepared exception.sites file in. If you have not prepared one, a blank file can be created and servers can be added to it in the format:

Quote:http://serverfqdnoripaddress:portnumber
https://serverfqdnoripaddress:portnumber

In the Java directory, copy your pre-prepared trusted.certs file. This file is encrypted so will need to be created through Java or copied in.

When Java opens it will first look to the C:\Windows\Sun\Java\Deployment directory. If a .config file is found there, it will use those settings. If the file is corrupt or missing, the system will look to c:\Users\%username%\appdata\LocalLow\Sun\Java\Deploment directory. Both of these files will tell it to look for a deployment.properties at Y:\Java.

This properties file will reference the exceptions and trusted certificates files also on Y:\Java. Java will then create a user cache directory on Z:\JavaCache.
Add Thank You Reply
[-] The following 1 user says Thank You to jardinuk for this post:
grr (11-11-2015)
11-11-2015, 07:32 AM,
#2
RE: Setup of Java for Citrix Xenapp Farms
Thanks, will be useful for those who need it
[Image: att.gif]
Add Thank You Reply
02-18-2016, 03:54 AM,
#3
RE: Setup of Java for Citrix Xenapp Farms
Thanks
Add Thank You Reply




Users browsing this thread: 1 Guest(s)