Issue After logging into netscaler gateway, we received “Http/1.1 Internal Server Error 43531” error. Upon looking at the configuration, STA server in the netscaler gateway is marked as down. DDC and storefront are installed on same server. Under traffic management/lb vip was also marked as down and the storefront service group in that lb vip was down. All the probes sent to that STA/storefront server were not successful. TCP-default monitor was attached to the storerfront service group.
Issue:
upgraded netscalers to 13.1 49.13nc version. Post upgrade, when netscaler gateway vip is accessed from browser, it showed “Http/1.1 Internal Server Error 43549” error.
Solution:
If you are using AAA auth profile, you should have authentication vserver, and advanced authentication policies in it. Check if all the required advanced authentication polices (LDAP, RADIUS etc) are present in authentication vserver.
In our troubleshooting, we found that advanced authentication policy was missing in the authentication vserver.
NetScaler Application Delivery Controller (ADC) Global Server Load Balancing (GSLB) is a DNS-based solution which describes a range of technologies to distribute resources around multi-site data center locations. This document describes the deployment topology and configuration architecture needed to set up GSLB between multi-sites where Citrix Virtual Apps and Desktops StoreFront servers are load-balanced by NetScaler Gateway and NetScaler ADC.
Fundamental Design Factors The following includes fundamental design factors during an assessment and design phase that affects the formation of the design to cater for requirements.
When users login to Citrix Gateway portal or storefront load balanced vip, they endup in the error, “There Are No Apps or Desktops Assigned to You at This Time”. There are multiple solutions to this error. Verify which solution works for you.
User does not have access to any apps When user does not have access to any applications or desktops, user will endup in same message when he logs into the Citrix gateway portal.
You’ve configured SAML authentication on your netscalers for your Citrix gateway or configured FAS in your environment. After you login to the gateway and logoff from the gateway or storefront url, when you try to login again on the same browser or same tab, you might end up in the error, “You cannot login using smartcard. Please close this browser to protect your account”.
There are multiple solutions to this issue.
The commands (ctxxmlss) to unregister the XML port and to reregister the XML port have not changed and can still be used as described in the Instructions. In addition, you must set the new XML service port policy in the Citrix GPO settings as shown in the screen shots. Note: The XML service port policy is a Computer policy and must also be set, even if the ctxxmlss command is successfully completed and states that the XML port is changed.
XML port in XenApp and XenDesktop 7.x version Open command prompt and navigate to cd “c:\Program Files\Citrix\Broker\Service” Type BrokerService.exe /show and press Enter to show the current ports.
Based on your CVAD or XenDesktop version, you will find “WI port” or “Storefront port” in the output which is your xml port number.
XML port in XenApp 4.5, 5, 6.0 and 6.5 versions Open registry and navigate to HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\services\CtxHttp path. Check the value for key “TcpPort”.
Change Time manually on NetScaler To change time and date on NetScaler, run the below command on NetScaler putty shell.
1 date +val YYMMDDHHMM where:
YY = Year
MM = Month
DD = Day
HH = Hour
MM = Minutes
Example" date +val 2208011111. This will set time as august 1st 2022.
Issue On newer netscaler machines, if you run above command, post reboot, time will change automatically. This is tested on NetScaler 13.
When configuring citrix gateway page, after entering credentials, it redirects back to login page. This happens continously.
To resolve this issue,
Open storefront console, and click manage receiver for websites. Check session policy timeout value.
use that same value in Gateway – Virtual server – Session policy – Edit session profile – Client experience – Session timeout option.
Also check in Citrix Gateway – Global Settings – Change Gloabl Settings – Client Experience – Session TIme-out (mins).
Issue When users connecting to applications from XenApp 6.5 (or less) version, randomly few users might get the error, The task you are trying to do can’t be completed because Remote Desktop Services is currently busy. Please try again in a few minutes. Other users should still be able to log on. No matter how many times that user connects to the application, they will still get same error. When Citrix admins try to logoff that session, it will not logoff.
