CloudPortal Services Manager 11 Jun 05, 2015 Known issues System requirements for server roles Firewall requirements for Services Manager Verify deployment readiness and create system databases To install server roles using the graphical interface To install server roles from the command line To configure server roles using the graphical interface Configure locations using the graphical interface Configure server roles and locations from the command line Services Manager Terminology and Concepts Plan for deploying the Services Manager platform Plan for deploying services Upgrade system databases Upgrade platform server roles Upgrade web components Upgrade deprecated services Upgrade the reporting service and data warehouse AD Sync BlackBerry 5 Citrix CRM 2011 1999-2017 Citrix Systems, Inc. All rights reserved. p.1
DNS File Sharing Hosted Apps and Desktops Hosted Exchange Lync Enterprise 2010 and Lync Hosted 2010 Lync Enterprise 2013 and Lync Hosted 2013 Mail Archiving Microsoft SQL Server Hosting MySQL Office Communication Server 2007 ShareFile SharePoint 2010 SharePoint 2013 Virtual Machines Windows Web Hosting Export and import service packages Create and provision additional user and customer plans View and filter provisioning requests Provision services and customers in bulk To migrate users to different user plans in bulk with the Package Migration Wizard Create and manage customers Create and manage users Manage security roles Manage provisioning changes Manage reports 1999-2017 Citrix Systems, Inc. All rights reserved. p.2
Jun 05, 2015 Updated: 2014-01-06 Citrix CloudPortal Services Manager transforms cloud infrastructures into profitable cloud businesses with a comprehensive platform to manage business and operations support services, customers, and cloud offerings. Services Manager is an easyto-use web portal that helps service providers manage the delivery of cloud services and offerings to their customers. It provides out-of-the-box support for Desktop-as-a-Service and Windows apps (powered by Citrix XenApp), as well as popular business applications like Exchange, Office, SharePoint, Lync, web hosting and more. Without any IT expertise, customers can add or change services, view reports and manage users. Workf low approval Workflow Approval helps you manage provisioning changes that impact service consumption and billing. New security roles allow users to self-provision services and monitor their own provisioning requests. Approval chains route provisioning requests based on your organizational structure or approval process. Customizable templates allow you to send timely notifications at each step in the approval process for every service. AD Sync enhancement s The AD Sync service includes support for synchronizing Exchange contacts and distribution groups. Host ed Exchange enhancement s The Hosted Exchange service includes support for Exchange 2010 and Exchange 2013, and supports the native mail archiving feature in these versions. Dat a warehouse and Report ing enhancement s Services Manager includes the following Reporting enhancements: Include reports when importing or exporting services Run and view Distributor Summary reports from the control panel Define billing units for services and associate them with plan types Include Prepay criteria when generating reports Include aggregate and non-aggregate properties and counters in reporting views for customers and resellers Improved inst allat ion experience Services Manager simplifies web service deployment with wizard driven installation and configuration. The Setup and Configuration Tools detect service prerequisites, perform post-install configuration, and automate tasks such as Group Policy and PowerShell remoting configuration. After deploying a service, use the control panel to create user and customer plans, define server resources, and provision customers. Improved upgrading experience Upgrading from CloudPortal Services Manager 10 is simplified with support for in-place upgrades for system databases, platform server roles, web services, and the Reporting service. Migration of the data warehouse is also included in the upgrade process. The Configuration Tool backs up required files and sites, stops and starts services as required, upgrades components, and applies updates as appropriate. For an overview of the upgrade process, see Upgrade from CloudPortal Services Manager 10. Server plat f orm support Services Manager platform components can be deployed on servers running Windows Server 2012. For more information 1999-2017 Citrix Systems, Inc. All rights reserved. p.3
about system requirements and support, see System Requirements for CloudPortal Services Manager. 1999-2017 Citrix Systems, Inc. All rights reserved. p.4
Jun 05, 2015 Updated: 2013-08-21 Installation issues Configuration issues Provisioning issues When configuring the Office Communication Server 2007 (OCS) web service, the RTCUniversalUserAdmins group is not added automatically to the CortexAdmins group. To resolve this issue, using Active Directory Users and Computers, add the RTCUniversalUserAdmins group as a member of the CortexAdmins group after the service configuration finishes. [#334857] If you install Services Manager platform server roles on servers running Windows Server 2003, installation of the platform server roles might fail. This issue occurs because Windows Server 2003 is not a supported server operating system for this release. To avoid this issue, create your Services Manager deployment using servers running a supported operating system as described in System Requirements for Server Roles. [#359307] If you install a Windows Server role or feature that requires the server to be restarted, but do not restart the server prior to installing a Services Manager platform server role, the platform server role installation fails. To resolve this issue, restart the server after adding these Windows Server roles or features. [#361210] Installing the OCS web service on a server that is not part of an OCS 2007 deployment appears to install successfully, even though OCS 2007 is required for deploying the service. However, configuring the service through the control panel fails as a connection to the server cannot be established. Additionally, provisioning the service to customers fails because the service is not configured correctly. To ensure the OCS service can be configured and provisioned successfully, install and configure the OCS web service only on servers that are part of an OCS 2007 deployment. [#382012] If multiple UPN suffixes are entered when the primary location is configured, only the first UPN suffix is added to the Domain Management section of the service provider's Customer Details page. To work around this issue, manually enter the additional UPN suffixes. [#363812] When configuring a customer plan for the SharePoint 2010 service, Services Manager allows you to enter a port number greater than 65536, which is the highest value in the range of ports SharePoint 2010 allows. When you enter an invalid port number (greater than 65536), no error appears when you save the customer plan. However, provisioning the service to the customer fails. To ensure customers can be provisioned successfully with the SharePoint 2010 service, enter the correct port for each customer plan you configure. [#380636] If the Citrix service is deployed in multiple locations, and the Location Filter is set to a specific location, the server collections created for all locations are displayed. For example, on the Applications page (Services > Citrix > Configuration > Applications), when the Location is set to the primary location, the server collections for the primary and secondary locations can be selected. If the server collection for the secondary location is selected, the apps in that server collection are listed on the Applications page. This issue allows resellers to view Citrix server collections that are not included in their own location. However, customers in a given location are not able to see Citrix server collections from other locations. They are able to view only the server collection provisioned to them, in their own location. 1999-2017 Citrix Systems, Inc. All rights reserved. p.5
To work around this issue, ensure the server collections that you create are assigned to the correct location. Additionally, when reselling the Citrix service, ensure that the server collection being resold matches the location in which the Citrix service is provisioned. [#389410] When provisioning a customer with the CRM 2011 service, and the customer's code (or {CustomerShortName}) starts with a number (for example 1GreatCorp), the error "Failed to update organization status" might appear. This error occurs for the following reasons: CRM 2011 does not permit the names of customer site databases to start with numbers. When a site is created with the CRM Deployment Manager console, and the site starts with a number, CRM 2011 automatically replaces the number with an underscore character (_). Therefore, a site named "1GreatCorp" becomes "_GreatCorp." By default, Services Manager uses the pattern {CustomerShortName}{ServiceInstance} to create unique customer database names for CRM 2011. If the customer's code starts with a number, the resulting database name will be invalid for CRM 2011. For example, if the customer's code is "1GreatCorp" and the CRM instance name is "Site01," Services Manager creates the database name "1GreatCorpSite01," which does not comply with CRM 2011 naming requirements. To resolve this issue, change the naming pattern so the customer's database name starts with an underscore character when a service instance is provisioned. To do this, perform the following actions: 1. In the control panel, from the Customer Services page, expand the CRM 2011 service and then click Service Settings. 2. Locate the Organizational Unique Name property and prepend an underscore character to the pattern (for example, _{CustomerShortName}{ServiceInstance}) 3. Click Apply Changes. [#254925] When moving a customer to a reseller in a different location, the provisioning request fails. This issue occurs because moving a customer from a reseller in one location to a different reseller in a different location is not supported. [#354945] Restarting the Citrix Queue Monitor Service results in two instances of the CitrixQueueMonitor.exe process running on the server. This occurs because the older instance of CitrixQueueMonitor.exe does not exit immediately after the service has been stopped. To prevent this issue from occurring, stop the Citrix Queue Monitor service and wait for CitrixQueueMonitor.exe to exit. Afterward, start the service. [#355832] When a user is provisioned with an instance of the Microsoft SQL Server Hosting service that uses SQL Authentication, and the user's password for the service instance is changed, the user cannot log on to the service instance with the new password. Instead, the original password remains valid. To resolve this issue, perform one of the following tasks: Using the SQL Server Management Studio console for the SQL Server deployment hosting the service instance, change the user's password to match the new password in the control panel. Deprovision the Microsoft SQL Server Hosting service from the user and then reprovision the service. [#362882] Services Manager allows you to delete DNS zones that are marked as "in use" by the DNS service. Deleting a zone using the control panel removes it from the customer's domain list, but does not remove it from the DNS server. Even though the zone still exists on the DNS server, the zone is not available when provisioning the DNS service. To remove the zone completely, delete the zone from the DNS server. [#362884] When provisioning the Lync 2010 for Hosting service, provisioning to multiple users in one operation fails. This issue occurs because multi-user provisioning is not supported for the Lync 2010 for Hosting service. To work around this issue, provision the Lync 2010 for Hosting service to individual users. [#363394] When selecting a customer plan for the Virtual Machine service to provision to a customer, the control panel might not immediately display the resource limits of the selected plan if it differs from the default plan. For example, if Plan A is 1999-2017 Citrix Systems, Inc. All rights reserved. p.6
selected by default and you select Plan B, the resource limits for Plan B do not display in the control panel. Instead, the resource limits for Plan A remain displayed. To work around this issue, select another plan and verify the correct resource limits are displayed. Then, select the plan you intend to provision to the customer. [#376251] Creating a customer through the control panel might fail if the complete customer name exceeds the Active Directory limit of 64 characters. In Services Manager, by default, the customer's complete name follows the pattern {CustomerFullName}({CustomerShortName}). If the combined number of characters in this pattern exceeds 64 characters, the customer OU cannot be created in Active Directory and the provisioning request in Services Manager fails with the error "A constraint violation occurred." To avoid this issue when creating a new customer through the control panel, ensure the entries in the Full Name and Code fields (under Customer Details) do not exceed 64 characters. [#378307] If the application pool for a web service has been renamed, upgrading the web service fails. This issue occurs because the renamed application pool is not recognized by the Configuration Tool when upgrading the service. To work around this issue, prior to upgrading, rename the application pool with the default name and then upgrade the service. After upgrading is complete, you can rename the application pool using the non-default name. The following table lists the web services and the default names of their corresponding application pools in CloudPortal Services Manager 11: CloudPort al Services Manager 11 Web service name Citrix Def ault name of applicat ion pool Citrix Csm Citrix WS Hosted Exchange Citrix Csm Exchange WS Lync Enterprise Citrix Csm Lync WS Lync 2010 for Hosting Citrix Csm LyncHosted WS MySQL Citrix Csm MySQL WS SharePoint 2010 Citrix Csm SharePoint 2010 WS Virtual Machines Citrix Csm Hyper-V WS Windows Web Hosting Citrix Csm Web Hosting WS For reference, the following table lists the web services and default names of their corresponding application pools in CloudPortal Services Manager 10 that can be upgraded to Version 11: 1999-2017 Citrix Systems, Inc. All rights reserved. p.7
CloudPort al Services Manager 10 Web service name Def ault name of applicat ion pool Citrix CortexCitrixWSAppPool Directory Web Service DirectoryWSAppPool Hosted Exchange CortexExchangeWSAppPool MySQL CortexMySQLWSAppPool SharePoint 2010 CortexSharePoint2010WCF Virtual Machines CortexVirtualMachineWSAppPool Windows Web Hosting CortexIIsWSAppPool [#388795] 1999-2017 Citrix Systems, Inc. All rights reserved. p.8
Jun 06, 2017 Deploying Services Manager includes installing the platform components (server roles), configuring firewall ports for each component, and installing the web services. For system and firewall requirements for platform components, refer to the following topics: System Requirements for Server Roles Firewall requirements for Services Manager For each requirement, the minimum version required is stated, as well as any later versions that are supported. For requirements for specific services, refer to the topics in the Plan for deploying services section. This section contains topics for each service that Services Manager supports and includes additional planning information such as: Service deployment overviews Changes that occur in Active Directory when the service is deployed Additional configuration details for specific deployment scenarios For system requirements information for resource components such as Exchange servers, SharePoint farms, and so on, refer to the component's product documentation. Important: Before using Services Manager, check for and install any available security updates for the components you want to deploy. 1999-2017 Citrix Systems, Inc. All rights reserved. p.9
Jun 05, 2015 Updated: 2013-05-21 The sections in this topic describe supported platforms, required software, and other information that will be used when you install and configure the core components (server roles) that comprise the Services Manager platform. The Services Manager server role installer (Setup Tool) handles many of the prerequisites, such as installing.net Framework 4.0, enabling Web Server roles, and enabling MSMQ features. (The.NET software is also available in the Support folder of the Services Manager installation media.) See Plan for deploying the Services Manager platform for additional preparation information. Services Manager supports Active Directory Domain Services on the following platforms: Windows Server 2012 Windows Server 2008 R2 Windows Server 2008 At a minimum, the domain functional level must be Windows Server 2008. Before the Services Manager platform can be deployed, the Active Directory schema must be extended to include the standard Exchange attributes and prepare the environment for multi-tenancy. You can extend the schema through one of the following methods: Use the Schema Prep tool from the Microsoft Exchange installation media. This method applies if you do not plan to deploy Exchange 2007 or 2010 and you do not intend to deploy the Exchange web service. In general, to deploy the Schema Prep tool, you enter the following command in a Command Prompt window: setup /p /on:organizationname Deploy Exchange. This method applies if you plan on installing the Exchange web service in your Services Manager deployment. Extending the Active Directory schema is part of the Exchange deployment process. The domain user account used to extend the Active Directory schema or install the Services Manager platform components must belong to the following groups: Group Name Required f or Services Manager plat f orm inst allat ion Required f or ext ending Act ive Direct ory schema Domain Admins Yes Yes Enterprise Admins No Yes Schema Admins No Yes If any server (including DNS) is not in the domain, the same user account should be set up as a local user on that server with the same password, as a member of the local Administrators group. To ensure your deployment is protected from external threats, consider creating an account lockout policy that disables a 1999-2017 Citrix Systems, Inc. All rights reserved. p.10
user's account for a specified period when an incorrect password is entered a specified number of times. When this policy is set each failed logon attempt is recorded on the primary domain controller. Before implementing an account lockout policy, consider carefully the risks and benefits of implementation to your Services Manager deployment. For more information about configuring this policy, see the Microsoft TechNet article, "Account Lockout Policy Technical Overview." Services Manager uses DNS aliases internally for the core components. Create CNAME records for the following roles and components: Plat f orm component Database server Alias CORTEXSQL Provisioning server CORTEXPROVISIONING Web server CORTEXWEB Reporting Services CORTEXREPORTS The database server hosts the system databases that are required for Services Manager to operate. When preparing the database server, ensure the following requirements are met: Hardware configuration Two or more server-class processors, 2.0 GHz or higher. Minimum 4 GB RAM recommended Minimum 10 GB free disk space available for file growth Operating system User Account Control (UAC) Database server Authentication Windows Server 2008 R2 (minimum) Standard, Enterprise, and Datacenter editions, with all recommended updates installed. Disabled. Microsoft SQL Server 2008 R2 or 2012, with all recommended updates installed. Mixed mode enabled (SQL and Windows Authentication). SQL connection types Installation account Local and remote SQL connections enabled. Configure the account to be used during installation with the SysAdmin role. If you cannot do this in SQL, you can use an account with SysAdmin rights. You can remove this account after installation 1999-2017 Citrix Systems, Inc. All rights reserved. p.11
completes. Firewall Windows Firewall must allow connections through the database instance port (default=1433). When you install SQL Server, make note of the instance name (default=default) and port (default=1433). You will need this information when you configure the server for use with Services Manager. During platform installation, the following databases are created: OLM: The core database for customer and user information OLMReports: Stores legacy reporting data and some system settings OLMReporting: Stores reporting data Additionally, the following SQL accounts are created for accessing the databases: CortexProp OLMUser OLMReportsUser OLMReportingUser Two SQL jobs are installed on the database server: Gather Daily Stats Data and Gather Monthly Stats Data. If you are installing the Provisioning server role on a domain controller, give the ProvisioningUsers security group the Allow logon locally permission. However, for security reasons, Citrix recommends installing the Provisioning engine on a server that does not act as a domain controller in your network environment. When preparing a server to host the Provisioning server role, ensure the following requirements are met: Hardware configuration Two or more server-class processors, 2.0 GHz or higher. Minimum 2 GB RAM recommended Minimum 2 GB free disk space available Operating system User Account Control (UAC).NET Version Windows Server 2008 R2 (minimum) Standard, Enterprise, and Datacenter editions, with all recommended updates installed. Disabled..NET Framework 4.0 installed. This software is included in the Support folder of the Services Manager installation media. Firewall Windows Firewall must allow inbound TCP requests on port 80. Windows server features (Setup installs this requirement) Enable the following features: Message Queuing > Message Queuing Services > Message Queuing Server Message Queuing > Message Queuing Services > HTTP Support (only if the server is not in the domain) Telnet client Windows PowerShell 1999-2017 Citrix Systems, Inc. All rights reserved. p.12
SQL Server Management Objects Domain membership and privileges SMTP server Install the 64-bit variant of the Microsoft SQL Server 2008 Shared Management Objects (SMO). This software is included in the Support folder of the Services Manager installation media. The Services Manager Setup Tool can also install this requirement when you install the Provisioning server role. Server must be a member of the domain. Service must have full domain administrator privileges. Required. Depending on the notification, the Provisioning server also needs a temporary directory for assembling the email. The SMTP server can also be used by the Report Mailer server role. When configuring the Provisioning server role, you will need to provide the SMTP server address and port number. In general, the Directory Web Service is installed on the same server that hosts the Provisioning server role. If you are installing the Directory Web Service on a domain controller, give the CortexWSUsers and the Proxy Users groups the Allow logon locally permission. However, for security reasons, Citrix recommends installing this role on a server that does not act as a domain controller in your network environment. When preparing a server to host the Directory Web Service, ensure the following server requirements are met: Hardware configuration Two or more server-class processors, 2.0 GHz or higher. Minimum 2 GB RAM recommended Minimum 2 GB free disk space available Operating system User Account Control (UAC).NET Version Windows Server 2008 R2 (minimum) Standard, Enterprise, and Datacenter editions, with all recommended updates installed. Disabled..NET Framework 4.0 installed. This software is included in the Support folder of the Services Manager installation media. Firewall Windows Firewall must allow inbound TCP requests on port 8095. Windows server features Enable the following features: Web Server > Application Development > ASP.NET Web Server > Security > Basic Authentication Web Server > Security > Windows Authentication Management Tools > IIS Management Console Management Tools > IIS Management Scripts and Tools PowerShell 2.0 1999-2017 Citrix Systems, Inc. All rights reserved. p.13
When preparing a server to host the web server, ensure the following requirements are met: Hardware configuration Two or more server-class processors, 2.0 GHz or higher. Minimum 2 GB RAM recommended Minimum 2 GB free disk space available Operating system User Account Control (UAC).NET Version Windows Server 2008 R2 (minimum) Standard, Enterprise, and Datacenter editions, with all recommended updates installed. Disabled..NET Framework 4.0 installed Firewall Open port 80 from the web server to the SQL Reporting Services server. Report Viewer version Windows server roles Microsoft Report Viewer 2008 SP1. Enable the following roles: Web Server > Application Development > ASP.NET Web Server > Security > Basic Authentication Web Server > Security > Windows Authentication Management Tools > IIS Management Console Management Tools > IIS Management Scripts and Tools SQL Server Management Objects Install the 32-bit variant of the Microsoft SQL Server 2008 Shared Management Objects (SMO). This is available in the Support folder of the Services Manager installation media. During platform configuration, you will need to know the host header required for the web site. This is the URL used to access the Services Manager control panel. The Configuration Tool refers to this as the external address. When you install the web server role, the following items are installed: CortexMgmt Application Pool: Runs the Management Site. Cortex Management Site: Contains the CortexDotNet and CortexAPI web applications. CortexDotNet is the service that runs the control panel. CortexAPI is the XML-based web service that automates management tasks. Accessing the web server is supported on the following web browsers: Internet Explorer 8, 9, and 10 Firefox 17.x and 18.x Chrome 25.x Safari 5.x 1999-2017 Citrix Systems, Inc. All rights reserved. p.14
Note: If you intend to access the web server with Internet Explorer 10, install the hotfix for.net Framework 4.0 available from Microsoft Knowledge Base article 2600088 (http://support.microsoft.com/kb/2600088) on the web server. This hotfix updates the ASP.NET browser definitions which enables the control panel to function as expected with Internet Explorer 10. If you do not want to install this hotfix, use Internet Explorer 8 or 9 or supported Firefox, Chrome, and Safari browsers to access the web server. The Autologin tool supports Windows XP SP3, Windows 7 SP1, and Windows Server 2008. SQL Reporting Services is the engine for providing reporting capabilities in Services Manager. The Reporting service and data warehouse are installed on the server hosting SQL Reporting Services. When preparing a server to for installing and configuring the Reporting service and data warehouse, ensure the following requirements are met: Hardware configuration Two or more server-class processors, 2.0 GHz or higher. Minimum 4 GB RAM recommended Minimum 10 GB free disk space available for file growth Operating system Firewall.NET version Database server Database Authentication SSRS Service account SQL connection types SSRS Administrator account SQL Server Management Objects (SMO) Report Server configuration file Windows Server 2008 R2 (minimum) Standard, Enterprise, and Datacenter editions, with all recommended updates installed. Open port 1433 between the Reporting server and the database server. Allow connections through the reporting port (default=80)..net Framework 4.0 installed. This software is included in the Support folder on the Services Manager installation media. Microsoft SQL Server 2008 R2 or 2012, with all recommended updates installed. Windows Authentication enabled. Set the SQL Server Reporting Services service account to Network Service. Local and remote SQL connections enabled. In SQL Server Reporting Services, create a dedicated user with the System Administrator role; domain administrator rights are not required. Use this account when deploying the Reporting server role. Services Manager setup installs Microsoft SQL Server Shared Management Objects automatically when the Reporting server role is deployed. SMO is also available in the Support folder of the Services Manager installation media. Verify that the Report Server configuration file (C:Program FilesMicrosoft SQL ServerMSRS10.MSSQLSERVERReporting ServicesReportServerrsreportserver.config) contains the entry "<AuthenticationTypes><RSWindowsNTLM/> <RSWindowsNegotiate/> 1999-2017 Citrix Systems, Inc. All rights reserved. p.15
modifications SMTP server OCS Monitoring </AuthenticationTypes>". Required for the data warehouse. You can specify the SMTP server used with the Provisioning server; however, it must allow relays from the data warehouse server. If you intend to use the OCS Monitoring service in your Services Manager environment, install and enable this service on the OCS 2007 server. 1999-2017 Citrix Systems, Inc. All rights reserved. p.16
Jun 05, 2015 Services Manager requires specific firewall ports be open to support communication between platform components. The following diagram illustrates the required ports and the platform components that use each port in an environment that includes a primary location and a remote location. The following table lists the default connectivity configuration between the Services Manager roles. Configure these before installing the roles. T raf f ic/port From T o Purpose TCP 8095 Web Server Provisioning Engine Authenticate users and read-time Active Directory lookups MSMQ*, HTTP, or HTTPS Web Server Provisioning Engine Provisioning request TCP 1433** Provisioning SQL Server Access to provisioning rules, write statistics Engine TCP 1433** Web Server SQL Server Access to customer and user information TCP 80 Web Server SQL Reporting Services server Access to SQL Reporting Services * MSMQ comprises several ports, as specified by Microsoft. ** The supported SQL versions use TCP 1433 only for the default instance; other named instances use a dynamically assigned port. If your installation is not the default instance and a firewall separates the SQL server from the other Services Manager roles, you must override the dynamic behavior by allocating a specific port. 1999-2017 Citrix Systems, Inc. All rights reserved. p.17
Jun 05, 2015 Updated: 2013-02-04 Deploying Services Manager first comprises installing and configuring core components (server roles) and locations. The Setup Tool manages prerequisites and installs server roles. The Configuration Tool configures server roles and locations. Both tools offer a graphical wizard-driven interface and a command-line interface. After you install the server roles, and configure the roles and locations, you install and configure the web services. See Deploy services for details. For the graphical interface, refer to the following topics: To install server roles using the graphical interface To configure server roles using the graphical interface Configure locations using the graphical interface For the command-line interface, refer to the following topics: To install server roles from the command line Configure server roles and locations from the command line. 1999-2017 Citrix Systems, Inc. All rights reserved. p.18
Jun 05, 2015 Updated: 2013-03-05 In general, the configuration process is similar for each server role you install. However, some server roles include additional configuration options. Only the roles you install on the server are available for configuration. This topic assumes you have installed the server roles you want to configure, the Services Manager Setup Tool is running and displaying the Deploy Server Roles & Primary Location page. 1. From the Deploy Server Roles & Primary Location page of the Setup Tool, select Configure Server Roles. 2. On the Load Deployment Configuration File page, browse to location where you created the XML configuration file and select the file. Click Next. 3. On the Select Configuration Task page, select one or more roles to configure and then click Next. 4. Use the following table to configure the settings for each server role: Role Page Descript ion Directory Web Service Configure Directory Web Service Configure the following options as required: Auto-generate credentials: Select this option to create the Directory Web Service account with auto-generated credentials. Leave this option cleared to specify your own credentials for this account. User name: Enter the user name of a domain administrator for the service account. The default user name is cortex_dirws_svc. This field is not available if you elect to auto-generate credentials. Password: Enter a password for this account that conforms to your domain's password policy. This field is not available if you elect to auto-generate credentials. Create if doesn't exist: Leave this option selected to create the service account if it does not already exist. If you elect to create this account manually prior to configuring the server role, clear this option. This option is not available if you elect to auto-generate credentials. Service port: Specify the port that the Directory Web Service will use. By default, the Directory Web Service uses port 8095. Provisioning Configure Queue Monitor Service Configure Directory Monitoring Services The Queue Monitor service processes administrative requests from the Web Server and automates other internal services. The Provisioning Engine hosts scheduled tasks that monitor Active Directory, keeping user account information current, and sending email notifications for events such as password expiry. Configure the following options as required: Auto-generate credentials: Select this option to create the monitoring service account with auto-generated credentials. Leave this option cleared to specify your own credentials for this account. User name: Enter the user name of a domain administrator for the service account. For the Queue Monitor service, the default user name is cortex_qmon_svc. For the Directory Monitor service, the default user name is cortex_dirmon_svc. This 1999-2017 Citrix Systems, Inc. All rights reserved. p.19
Role Page field is not available if you elect to auto-generate credentials. Descript ion Password: Enter a password for this account that conforms to your domain's password policy. This field is not available if you elect to auto-generate credentials. Create if doesn't exist: Leave this option selected to create the service account if it does not already exist. If you elect to create this account manually prior to configuring the server role, clear this option. This option is not available if you elect to auto-generate credentials. Configure Provisioning Mail Server Specify the SMTP server address and port number the Provisioning server will use to send email messages, such as system updates to administrators, account notifications to end users, and usage reporting to Citrix. Click Test Connectivity to ensure the Configuration Tool can communicate with the SMTP server. Report Mailer Configure License Reporting Configuring the Report Mailer is required. Licensing data is reported to Citrix through emailed reports. Configure the following settings: Customer ID: Enter your Citrix customer ID. Auto-generate credentials: Select this option to create the service account with auto-generated credentials. Leave this option cleared to specify your own credentials for this account. User name: Enter a unique user name for the service account. The default user name is cortex_rm_svc. This field is not available if you elect to auto-generate credentials. Password: Enter a password for this account that conforms to your domain's password policy. This field is not available if you elect to auto-generate credentials. Create if doesn't exist: Leave this option selected to create the service account if it does not already exist. If you elect to create this account manually prior to configuring the server role, clear this option. This option is not available if you elect to auto-generate credentials. Configure Mail Server for Report Mailer Specify the address and port number of the SMTP server that the Report Mailer server will use to send email messages to administrators, end users and Citrix. If you have previously configured SMTP settings for the Provisioning server, the Use shared mail settings check box is selected by default. Additionally, specify the From Address that will be used to send email messages. The default address is ReportMailer@domain.com. Reporting Reporting Database Credentials Configure the following settings: Auto-generate credentials: Select this option to create the Reporting service account with auto-generated credentials. Leave this option cleared to specify your own credentials for this account. User name: Enter a unique user name for the service account. The default user name is OLMReportingUser. 1999-2017 Citrix Systems, Inc. All rights reserved. p.20
Role Page Password: Enter a password for this account that conforms to your domain's Descript ion password policy. This field is not available if you elect to auto-generate credentials. Configure Mail Server Specify the address and port number of the SMTP server that the Reporting service will use to send email messages to administrators, end users, and Citrix. Preview Service Package Import Review the selected service components that will be imported when the Reporting service is configured. Unselected service components, such as packages, roles, and assemblies, are imported when other server roles are configured. Configure Reporting Database Configure the following settings: Use primary database settings: Leave this option cleared if you want to configure a secondary database server to handle system reporting and billing. Select this option if you want to use the server hosting the main database for these functions. Server address: Enter the FQDN, IP address, or DNS alias of the database server you want to use. Use specific port: Select this option to configure the port number for the database server. The default port number is 1433. Authentication mode: Select the database authentication you want to use. By default, Windows (Integrated) is selected. A SQL Server login for the reporting database ensures cross-domain accessibility. Connection credentials: Enter the user name and password for the database administrator user. These fields are not available if SQL authentication is not selected. Click Test Connection to ensure the Configuration Tool can communicate with the database server. Configure Data Transfer Service The Data Transfer Service is a scheduled task of the Data Warehouse feature that migrates and adapts data from the primary database to facilitate building reports with Microsoft SQL Server Reporting Services. Configure the following settings: Auto-generate credentials: Select this option to create the service account with auto-generated credentials. Leave this option cleared to specify your own credentials for this account. User name: Enter a unique user name for the service account. The default user name is csm_datatransfer_svc. Password: Enter a password for this account that conforms to your domain's password policy. This field is not available if you elect to auto-generate credentials. Create if doesn't exist: Leave this option selected to create the service account if it does not already exist. If you elect to create this account manually prior to configuring the server role, clear this option. This option is not available if you elect 1999-2017 Citrix Systems, Inc. All rights reserved. p.21
Role Page Data Transfer Notifications to auto-generate credentials. Descript ion The Data Transfer task sends email notifications with the results of Data Warehouse operations. This enables administrators to respond quickly to interruptions in reporting functionality. Specify the source and destination email addresses for sending success and failure notifications. Specify Reporting Services Details Configure the following settings: Report server URL: Enter the URL of the reporting server instance as it appears in the Microsoft SQL Server Reporting Services Configuration Manager. User name and password: Enter the credentials of the report server administrator user. The password for this user account should never expire, in order to avoid potential service interruption. Click Test Connection to verify the Configuration Tool can communicate with the reporting server. Data Warehouse Service Auto-generate credentials: Select this option to create the service account with auto-generated credentials. Leave this option cleared to specify your own credentials for this account. User name: Enter a unique user name for the service account. The default user name is csm_dataw_svc. Password: Enter a password for this account that conforms to your domain's password policy. This field is not available if you elect to auto-generate credentials. Create if doesn't exist: Leave this option selected to create the service account if it does not already exist. If you elect to create this account manually prior to configuring the server role, clear this option. This option is not available if you elect to auto-generate credentials. Service port: Specify the port that the service will use. The default port is 80. Data purge window (months): Select Configure and then specify the number of months after which older historical data is deleted. For example, specify 84 to delete data that is older than seven years. Web Preview Service Package Import Review the selected service components that will be imported when the Web server role is configured. Unselected service components, such as reports, are imported when other server roles are configured. Configure Web Server External address: Enter an externally resolvable host name or address by which the server can be reached. The default address is cortexweb. Binding IP: By default, all IP addresses are included. Use SSL: Leave this option selected if you are deploying Services Manager in a production environment. You can clear this option if you are deploying Services Manager in a test environment. SSL certificate: Specify the SSL certificate you want to use for the server. This item is not available if you do not elect to use SSL. 1999-2017 Citrix Systems, Inc. All rights reserved. p.22
Role Page Descript ion 5. On the Summary page, review the configuration information for the server role. If you want to change anything, return to the appropriate configuration page. When the summary contains the settings you want, click Commit. The Applying Configuration page displays the configuration progress. 6. After the configuration is completed, click Finish to return to the Deploy Server Roles & Primary Location page. After you configure the server roles on each server in the deployment, you can configure the primary location. 1999-2017 Citrix Systems, Inc. All rights reserved. p.23
Jun 05, 2015 Updated: 2013-04-18 Before installing Services Manager platform server roles, you perform the following tasks: 1. Check environment prerequisites 2. Create system databases Before installing any server roles, verify the following items: Your Active Directory schema has been extended to accommodate Services Manager. This is performed using the Microsoft Exchange installation tools. The required DNS aliases have been configured. Services Manager uses DNS aliases to locate the servers where the platform components will be deployed. Use the Services Manager Setup Tool to verify these items. The tool queries your environment and, if successful, displays a green check mark next to each verified item. If the queries cannot be completed, the Setup Tool displays a Verify button so you can perform the checks again. For more information about Active Directory and DNS requirements for Services Manager, review the topic System Requirements for Server Roles. 1. From the installation media, double-click Setup.exe. 2. From the CloudPortal Services Manager splash page, click Get Started. 3. On the Select Deployment Task page, select Install CloudPortal Services Manager. 4. On the Install CloudPortal Services Manager page, select Check Environment Prerequisites. The Prepare Environment page displays the status of the verified items. Successfully verified items are displayed with green check marks. 5. Click Back to return to the Install CloudPortal Services Manager page. Perform this task after you have deployed SQL Server and SQL Server Reporting Services. The system databases are created using the Services Manager Configuration Tool, which is installed as a part of this process. 1. From the installation media, double-click Setup.exe. 2. From the CloudPortal Services Manager splash page, click Get Started. 3. On the Select Deployment Task page, select Install CloudPortal Services Manager. 4. On the Install CloudPortal Services Manager page, select Deploy Server Roles & Primary Location. 5. On the Deploy Server Roles & Primary Location page, select Create System Databases. 6. Install the Services Manager Configuration Tool: 1. When prompted, click Install to install the Configuration Tool. 2. On the License Agreement page, accept the license agreement and then click Next. 3. On the Ready to Install page, click Install. The Setup Tool installs the Configuration Tool and any prerequisites that are not present. 1999-2017 Citrix Systems, Inc. All rights reserved. p.24
4. Click Finish to continue creating the system databases. 7. On the Create Deployment Configuration File page, browse to the directory where you want to store the XML deployment configuration file and then enter a file name. Click Next. 8. On the Create Primary Databases page, perform the following actions and then click Next: 1. Configure the following information about the SQL Server that will store system configuration information: In Server address, specify the database server using the DNS alias, the IP address, or the FQDN. In Server port, specify the port number used by SQL Server. The port for a default instance of SQL Server is 1433. In Authentication mode, select whether to use Integrated (Windows and SQL) or SQL authentication. By default, Integrated is selected. In Connect as, specify the username and password of the SQL administrator user. These fields are available when you select the SQL authentication mode for your deployment. Select the Auto-create SQL logins check box if you want the required SQL Server user accounts to be created automatically. If you do not select this check box, you can enter the login details manually on the Configure Database Logins page. 2. Click Test Connection to ensure the Configuration Tool can contact the SQL Server and then click Next. 9. On the Configure Database Logins page, leave Generate credentials selected if you want passwords created automatically for the CortexProp, OLM, and OLMReports database accounts. Clear this option if you want to enter the passwords for these accounts. The CortexProp, OLM, and OLMReports accounts are created to ensure cross-domain access to the system databases. 10. On the Summary page, review the database configuration information. If you want to change anything, click Back to return to the appropriate configuration page. 11. Click Commit. The Applying Configuration page displays progress. 12. After the system databases are successfully created, click Finish. The Deploy Service Roles & Primary Location page appears. After the system databases are created, you can install the Provisioning, Directory Web Service, and Web platform server roles on the other servers in your deployment. 1999-2017 Citrix Systems, Inc. All rights reserved. p.25
Jun 05, 2015 Updated: 2013-03-05 Configuring the primary location initializes the control panel, specifies service provider details, and provisions the first administrator. Configure the primary location once per deployment. When configuring the primary location, consider the following items: Run all configuration steps as a domain administrator. Ensure user account settings conform to any domain policies, such as minimum password complexity, and are valid. Ensure the required firewall ports are configured for each server in the deployment. This task assumes the Services Manager installer is running and the Deploy Server Roles & Primary Location page is displayed. 1. On the Deploy Server Roles & Primary Location page, select Configure Primary Location.. 2. On the Load Deployment Configuration File page, browse to the XML file you created when creating the system databases. Click Next. 3. On the Specify Location Details page, enter the following information and then click Next: Under Location Settings, enter the name and description for the primary location. Under Customers' Organizational Unit, enter the OU name and the display name for the top level customer OU. The default OU name is Customers and the default display name is Customers OU. 4. On the Enter Service Provider Details page, enter the following information and then click Next: In Display Name, enter the service provider's name. The default name is Service Provider. In Short Name, enter an abbreviation of the display name. By default, a three-letter abbreviation is supplied automatically when you enter the display name. In UPN Suffixes, enter one or more UPN suffixes to associate with your organization in Active Directory. This enables you to assign customer or user-specific UPN logons. The default UPN suffix is csp.local. In Contact name and Contact email, enter the name and email address of the primary contact for the location. 5. On the Create First Administrator page, enter the full name and logon credentials for the top-level administrator user for the location. Click Next. 6. On the Summary page, review the location settings and administrator information you specified. If you want to change anything, return to the appropriate page. When the summary contains the settings you want, click Commit. Perform this task to associate a new, separate location with an existing Services Manager instance. For more information about remote locations, see Plan for deploying the Services Manager platform. 1. From the installation media, double-click Setup.exe and then click Get Started. 2. On the Select Deployment Task page, select Add Services & Locations. 3. On the Add Services & Locations page, select Add Remote Location.. 4. On the Configure Remote Location page, select Configure Location. 5. On the Load Deployment Configuration File page, browse to the XML file you created when creating the system databases for the primary location. Click Next. 6. On the Specify Location Name Details page, enter the following information and then click Next: 1999-2017 Citrix Systems, Inc. All rights reserved. p.26