iApp Citrix XenDesktop without APM (but with ICA proxy)
We have the following situation in our environment:
We are using XenDesktop which is currently being tested in a deployment via F5 including the APM configuration. However, for several reasons we decided that we prefer the 'normal' StoreFront pages above the F5 APM serves to end users. This includes localization, maintenance, customization/branding and most of all the APM licenses.
- 2 virtual servers hosting both the broker service and StoreFront
- XenDesktop 7.6
- StoreFront 3.0
- BigIP 11.5.3
- iApp
So basically we want to configure the setup so we can take advantage of the ICA proxy but not use the APM module for authentication. Is that possible?
I found this thread: https://devcentral.f5.com/questions/f5-iapp-citrix-xenapp-and-xendesktop-with-apm-ica-proxy-no-direct-nat-38984, but when I configure the iApp including APM authentication and remove the 'access policy' afterwards it ends in nothing. The policy is now 'Start > Allow' but in the end no pool is configured for the virtual server. I also fail to see where and how the BigIP would be able to proxy the ICA traffic.
If I configure the iApp so we 'do not proxy ICA traffic and APM authentication' I have a new option at the bottom of the iApp where I can select the 'BigIP system to act as a gateway for ICA traffic'. If configured with these options I do receive the correct StoreFront login page but logging in fails. Citrix logs the following event: "A request was sent to service '[removed]' that was detected as passing through a gateway. However no gateways are configured for this service." So when I configure the XML virtual server as the delivery controller (set in the iApp) it presents the page with the error "Cannot Complete Your Request" without any further details. The logging is empty.
I hope anyone can help me out here because using the iApp including APM is not really our preferred method.