Hi There,
What is the recommended deployment method for Citrix XenApp / vApps where multiple users log onto the same server concurrently. (Multiple users sharing same IP)
Deploying the NSclient in multi-user mode will solve this but need more information on your environment. Are these servers AD-joined? Are the users connecting to them AD users?
+12
Hi Ryans, XenApp servers are AD joined and users connecting to them are domain users. These servers do not move and hosted in the datacenter/Corp network. They might be some instances where local admin account is used for management tasks.
Our ideal design is to have multiuser mode NSclient installed in XenApp but only serve identity for GRE tunnel. This approach provides us to quickly fallback in case of any netskope outages.
Unfortunately in this GRE mode, skopeit shows all events under last logged in user. Thoughts/Suggestions?
The Netskope client, by default, will fail open and stand down if a GRE tunnel is detected. This shouldn't be problematic as long as your client configuration is set to continue sending device classification and user alert data to the endpoint. This setting is under Client Configuration > Advanced. Give that a shot.
+12
Unfortunately in this GRE mode, skopeit shows all events under last logged in user.
@Siva - I understand that. Do you have the configuration on the client configuration in place like I posted previously? You need to make sure that your client was installed onto the Citrix XenApp servers with mode=peruserconfig. If you didn't do that, you'll need to remove and reinstall the agent to switch to multi-user mode.
Refer to Netskope Client for Windows for installation parameters.
+12
Hi @ryans, NSClient was installed with peruserconfig on XenApp and Client config has the checkbox checked as per your screencap. Thoughts?
@Siva - if the users are not logging off before another user logs on, then this is a limitation we are working to address. What org are you with? I can add you to the internal enhancement tracker.
Reply
Login to the community
If you haven't already registered, now is a good time to do so. After you register, you can post to the community, receive email notifications, and lots more. It's quick and it's free! Create an account
Login with SSO
Employee Partneror
Enter your E-mail address. We'll send you an e-mail with instructions to reset your password.