// This is the script to give summary on the main page.
Think IPM

Wednesday, May 28, 2014

Have you seen this behavior before?

At two different clients now I’ve come across the following strange IE behavior on Windows 7 (I think IE9, but I don’t know that it’s limited to that version):

You know when you access an https: URL and, because of some certificate issue, get the warning page?  Well, in both environments, the warning page did *not* offer the usual “Continue to this website (not recommended)” option – it was the end of the line, no way to go forward.  I played with all the security options imaginable, made the site Trusted, made it part of the Intranet zone, no go! … until I accidentally discovered that this *only* happens when Internet Explorer was originally launched from a Taskbar pinned item.  If IE is launched from the Start menu, from Run, from a CMD prompt, etc., the warning page does let you continue on to the site.

I can’t recall if this only happens with a redirected AppData (in which case the pinned shortcut is actually in the home directory), but I’m pretty sure that’s not the case – any pinned IE ought to display this behavior.


Jacques Bensimon 

Click Here to Continue Reading >>

Tuesday, May 20, 2014

Caution When Upgrading your SSL Certificate(s)

Post by Sam Jacobs:

clip_image002I received a call from a client recently. They renewed the SSL certificate on their NetScaler, and while their iOS Receiver users could still authenticate and enumerate applications, they could no longer launch applications and desktops. All intermediate certificates were properly installed and linked. The issue turned out to be the encryption method - SHA2 - used to hash the digital signature.


While SHA2 certificates have been around for a while, SHA1 certs had been the standard – until now. Microsoft has announced a new policy for CAs (Certification Authorities) who are members of the Windows Root Certificate Program (who issue publicly trusted certificates). The policy dictates that SHA1 certificates will be deprecated on January 1, 2016. After that date, only SHA2 certificates will be allowed to be issued. Unfortunately, the latest iOS (5.8) and Android (3.4) Citrix Receivers (among others) do not support SHA2 certificates when proxied through the NetScaler. See the full Receiver product matrix. While Citrix has promised a NetScaler upgrade in 2004 Q2 to remedy the issue, if you are supporting remote iOS or Android users through NetScaler and you need to upgrade your SSL certificate, make sure that you purchase a SHA1 cert and not a SHA2 cert.

Note: I do find it curious, however, that Microsoft is still using a SHA1 certificate on their site. ;-)


Click Here to Continue Reading >>

Friday, May 16, 2014

Synergy 2014 – Migrating WI Customizations to StoreFront

Hot off the Press!

Sam Jacobs has made his session material available via our corporate sharefile and also SlideShare.  Be sure to check it out!

Didn’t make it to Citrix Synergy this year? Not to worry! While this year’s session was not videotaped for SynergyTV, you can still download all presentation materials and source code:

image·        Session PowerPoint presentation (includes speaker notes) 

·        Complete session source code:

o   Demo 1 – The Power of jQuery

o   Demo 2 – New StoreFront Skin

o   Demo 3 – Adding Help Desk information

o   Demo 4 – Alternate Application Views

o   Demo 5 – StoreFront Store Customization SDK

You can also view the presentation on SlideShare!
If you have any questions on the above, please email the team at
To learn more about the value IPM can bring to your business, download our company overview.
Click Here to Continue Reading >>

Wednesday, May 14, 2014

Memory Leak in XenDesktop 7.5 Desktop Studio MMC

Chris Hahn sent over this handy warning to be aware of if you are a XenDesktop Admin. 

If you are running XenDesktop 7.5, be sure not to leave the Desktop Studio running or it will eventually consume all the memory on your server.

The following discussion notes the error as BUG0455848.

There is no patch available yet but Citrix is aware of the issue.  So be sure to only open those admin consoles when you are actually viewing them. :)

Click Here to Continue Reading >>

Wednesday, May 7, 2014

Not at a Tech conference this week? Bring the conference to you!

So you aren’t in sunny Los Angeles at Citrix Synergy or sinful Vegas attending EMC World 2014.  No need to worry, there are PLENTY of ways to keep up on the events!  Both vendors are doing a great job streaming their respective keynotes and recaps (since there is a bunch of time overlap unfortunately) online for all to watch.

You can also follow along with the live unbiased commentary on twitter for both conferences.  There are plenty of influential people wandering the halls and broadcasting/tweeting/blogging breaking news and announcements. 
Follow #CitrixSynergy and #EMCWORLD2014 to get started.

Of course, if you ARE at Citrix Synergy, be sure to drop in on IPM’s own Sam Jacobs standing room only (if last year was an indication) session called ‘Best Practices for migrating Web Interface customizations to StoreFront’!

May 7th & May 8th – SYN247


Unfortunately, Sam’s session will not be live streamed so once he get’s back and the slides go public, I’ll publish a wrap up post to the video and source material.

Knock ‘em Dead Sam!

Everyone else, have a great conference week whether in Vegas, LA or the trenches.

Click Here to Continue Reading >>

Tuesday, May 6, 2014

Citrix NetScaler Security Hotfix Update

Since Citrix doesn’t put out a ton of NetScaler Firmware updates, Marcos Velez sent over this heads up on one that addresses a few security vulnerabilities in the appliance’s management console.  This affects all versions of Citrix NetScaler ADC and NetScaler Gateway prior to 10.1-122.17 and 9.3-66.5.


To check on your firmware version, Jason Samuel of jasonsamuel.com has a very handy step by step guide available for verifying the NetScaler’s firmware versions. (Step #9)


Click Here to Continue Reading >>

Monday, May 5, 2014

No video or audio with some media files on XenApp 6.5

image If H.264-encoded video (e.g. security camera recordings) or AAC-encoded audio (frequently found in MPEG4/MP4 videos) don’t play right (no video or no audio) on Windows 2008 R2 / XA 6.x, then you probably need this update to the “Desktop Experience” feature (which you installed to get Media Player, among other things).  Works like a charm, adds the missing decoders, no reboot required (it’s adding stuff, not replacing anything).


FIX: You cannot play back an H.264 video file or an AAC audio file on a computer that is running Windows Server 2008 R2 with the Desktop Experience feature enabled

Strangely enough (or is it?), without this hotfix, the affected media files won’t play right even if they play correctly on your client machine and the XA 6.x Windows Media Redirection feature is enabled and functioning, i.e. XA appears to need the decoder even though it’s in theory only streaming the raw media to the client where the actual decoding is supposedly performed.

Thanks Jacques Bensimon for the tip!

Click Here to Continue Reading >>