https://github.com/Siva-Github/Duo-PSModule Forked from Duo-PSModule by mbegan, added new Administrator Activation Link functions. this automates the provisioning process to the duo admin console and lets you create the account with just corp email whereas GUI forces you to enter temp password and require to key in the user’s phone #.
Author Archives: Siva
Extract MFA/StrongAuth information from all Azure/O365 users
MSOnline PowerShell module is required to run this, the new AzureAD commandlets do not appear to have the strong authentication properties yet. Run the following PowerShell lines to load and connect to your Azure/o365 tenant. Powershell snippet below gets all user from the tenant and expands StrongAuthenticationUserDetails property to retrieve the enrolled MFA info and …
Continue reading “Extract MFA/StrongAuth information from all Azure/O365 users”
Netscaler Login Screen – Clear Cache Objects
Useful for the testing rewrites for /vpn/js/gateway_login_form_view.js [e.g. hiding the second password box when the radius is enabled]. Without clearing the cache you wouldn’t see your changes immediately. Note: Even though Integrated Caching is not enabled, Gateway component of Netscaler/ADC by default uses this feature. CLI GUI
A quick way to generate self-signed certs through PowerShell
code snippet to generate a 10-year SSL self-signed cert, notice the NotAfter argument. Once successfully run, cert can be exported through local machine certificate MMC. New-SelfSignedCertificate command-let is available in windows 8.1 and above.
Force specific IP traffic through a network interface [Windows 8+]
In a case where you have two network interfaces, eg: 4G data card and local ethernet card connect to your device and you would like traffic to a specific destination to go via a preferred network interface, PS code below could guide you through it. E.g ps code below shows the route to 200.200.200.200 to …
Continue reading “Force specific IP traffic through a network interface [Windows 8+]”
Troubleshoot Slow VDI/XenApp logins with UberAgent [free community license]
UserAgent mentioned in few blog posts in the past, checked it out last week and I fell it a good tool to have especially since they announced free community licenses – 100 users at the time of this writing.It offers some of useful metrics [few listed below] break down of session login and logout durations application …
Continue reading “Troubleshoot Slow VDI/XenApp logins with UberAgent [free community license]”
Handle Netscaler AAA > "Target URL not found for redirection" after login
Citrix published a solution for this [CTX224908]; saying hit the LB first and have it populate “NSC_TASS” cookie. That might not work for all audiences. Users tend to bookmark the login page. Which happens to be AAA page. When they go back to their bookmark they hit the AAA page directly with out the “NSC_TASS” …
Continue reading “Handle Netscaler AAA > "Target URL not found for redirection" after login”
Extract HDX/ICA Connection info from Citrix Monitoring Database
Follow OData Connection to Citrix Delivery Controller to create a connection to Citrix monitoring data.for XenDestkop version 7.0 – 7.5 use http://{ddc-host}/Citrix/Monitor/OData/v1/Datafor XenDestkop version 7.6 and 7.7 use http://{ddc-host}/Citrix/Monitor/OData/v2/Datafor XenDestkop 7.8 and above use http://{ddc-host}/Citrix/Monitor/OData/v3/Data Output Use-Cases Usage trends Capacity planning Auditing
Citrix PVS Server Tweaks
Streaming Port re-configured from 6910 to 6968 (default 6910 – 6930). Threads per port set to match the vCPU number. VM level set virtual sockets to vCPU number and the cores per socket to one. Leave the rest advanced options to be unchanged. Ref: https://www.citrix.com/blogs/2016/03/30/updated-guidance-on-pvs-ports-and-threads/ https://blogs.vmware.com/vsphere/2013/10/does-corespersocket-affect-performance.html
Delay VDA registration for XenDestop/Xenapp
Step 1: Disable BrokerAgent Service from services.msc on the worker VM. Step 2: Create schedule task for enabling BrokerAgent and starting the service after 15 mins of system start on the worker VM. Note: Use system account to run this task. Step 3: Increase the RegistrationDelay timeout on the DDC/Brokers to 30 mins (Default: 20 …
Continue reading “Delay VDA registration for XenDestop/Xenapp”