Citrix StoreFront sits between the client machines and XenApp/XenDesktop delivery controllers. StoreFront queries the delivery controllers for the desktops and applications that have been published on XenApp/XenDesktop and presents them back to the user. The user can then launch the desktops and applications using the Citrix Receiver or a web browser. This article goes through the steps of configuring StoreFront...
The first step is to create an SSL certificate on StoreFront. An SSL certificate is recommended because by default Citrix Receiver refuses to communicate with StoreFront that uses http. In order to get it to work you have to put in a number of registry hacks, so its easier to start with SSL in the first place. Open up MMC.
Click File > Add/Remove Snap-in...
Select Certificates and click Add.
Select Computer account and click Next.
Leave Local computer selected and click Finish.
Expand Certificates > Personal > Certificates.
Right click on Certificates and click All Tasks > Request New Certificate...
Leave Active Directory Enrollment Policy selected and click Next.
In my case I have a Certificate Template called Server that has been created to request Subject Alternative Names (SAN) certificates. I want to add the FQDN of the server and the FQDN that will be shared between both StoreFront servers. Select Server and click on the down arrow next to Details.
Under Subject name, select Common name in the Type drop-down box, type the FQDN of the StoreFront server in the Value box and click Add.
In Alternative name, in Type select DNS from the list, enter the FQDN of the StoreFront server and click Add.
In Alternative name repeat the step and add the FQDN that will be shared between StoreFront servers.
Optionally click on the General tab and enter a Friendly name for the SSL certificate. Click OK once done.
The certificate should appear in the list and now close MMC.
Open the Internet Information Services (IIS) Manager.
Expand the IIS server > Sites and select Default Web Site.
In Type select https from the drop-down list.
Select your newly created certificate in the SSL certificate drop-down box. If you entered a friendly name this will appear in the list and click OK.
Click OK and close Internet Information Services (IIS) Manager.
Launch Citrix StoreFront management console and click Create a new deployment.
Enter the FQDN that will be shared between the StoreFront servers in Base URL and click Next.
Enter the Store Name and select Set this Receiver for Web site as IIS default to automatically redirect users to this store, if they go to the root of the web site. Click Next.
Enter Display name, leave XenDesktop (7.0 or higher) XenApp (7.5 or higher) selected and click Add...
Enter the FQDN of the delivery controller in Server name. In this case its the load balance address for the XenApp/XenDesktop delivery controllers and click OK.
Deselect Servers are load balanced as we only have a single FQDN in the list. Leave Transport type as HTTPS, alternatively you can set this to HTTP, if you have not configured SSL/TLS on the delivery controllers. Click OK.
Click Add... to enter additional XenApp/XenDesktop farms and sites, once done click Next.
To add NetScaler Gateway select Enable Remote Access and add in the appliance details. In this case we are going to leave it deselected and revisit it in another article. Click Next.
Select Domain pass-through to enable single sign-on on the Store, so the user is not prompted for their credentials instead it uses the same ones they used to log on to their physical desktop. For users that aren't using a corporate desktop they will be prompted for their credentials. If you enabled remote access then you would also enable Pass-through from NetScaler Gateway. Click Next.
The first store should be successfully created.
Click on Stores.
Click on Manage Authentication Methods.
For User name and password in the Settings columnclick on the drop-down box with the cog symbol.