Recently I ran into a fun little issue while integrating a Citrix environment into a brand new Workspace ONE Access tenant. This one was interesting because a third-party IdP was immediately in use, so no Password (Cloud) was ever configured, as it was assumed (hint, hint) not to be needed. There are two primary components […]
Monitor Unified Access Gateway with PowerShell
As you probably know, you can monitor the favicon.ico on your UAG with a load balancer to determine if a UAG is up or down (or in quiesce mode). You can also utilize PowerShell’s Invoke-WebRequest commandlet to not only monitor for the UAG health, but also send an email alert via a SMTP server if […]
VMware Integrated Printing Behavior Change for Nested Horizon Sessions
Another fun post regarding nested Horizon apps (see my previous one here with high client CPU), but this one is for VMware Integrated Printing. This one is not a bug, but actually some changed behavior that could bite you if you’re not aware of it. Starting with Horizon Client 2012, by default we do NOT […]
High CPU Utilization in Nested Published / RDSH Horizon Apps
I recently came across an issue where high CPU utilization of the vmware-remotemks.exe process was seen with nested Horizon apps. Nested, meaning a Horizon published application is running within a Horizon desktop session. This issue began happening during the move to Horizon 8, and seemed to specifically begin happening when the desktop agent was at […]
Workspace ONE Access Horizon Syncs Fail After 7.x to 8.x / 2111 Updates
Recently I came across an issue where Workspace ONE Access syncs suddenly began failing after performing Horizon upgrades, specifically from 7.13 to 2111. Of course, this did not happen when upgrading the test environment. When looking at the Access Admin Console, you see a generic error when pulling up the failed sync information: “Error occurred […]
Imprivata Lacking “Persistent App” for Horizon/RDSH
For folks in healthcare using Imprivata and migrating from Citrix to Horizon, it is immediately apparent that there are a few features that Imprivata has only available for Citrix. A couple examples I’m aware of offhand include: Persistent app (the feature of this post) Epic Only Mode for ProveID Embedded (allows for Epic Fast User […]
Reconnect Issues with Horizon RDSH + Imprivata
I recently came across a bug that impacted apps accessed via Horizon RDSH from a Type 2 kiosk where Fast User Switching was enabled, so the “Type 3” Imprivata agent was installed on the RDSH side as well. If the application allowed disconnects/reconnects (no immediate logoff on disconnect) and the RDSH session was disconnected from […]
The Journey to Workspace ONE Access 21.08 Connectors – Tips, Tricks, and Gotchas
Workspace ONE Access 21.08 is here, and we finally get Connectors that support Virtual Apps (with some exceptions, see “caution” section here)! One of the best things about this version is that we no longer have the need for Integration Brokers, making Citrix integrations far easier. Each Connector now has this built-in, so no more […]
Integrating Workspace ONE Access and UAG with JWT
If you’re leveraging Workspace ONE Access with Horizon and allowing external access, you are likely leveraging multifactor authentication for additional security from the outside. When combined with UAG, a common scenario is to separate out Connection Servers and place them in Workspace ONE mode and setting SAML to required, like this: When pointing the UAG […]
Logoff Sessions Pending Image in Horizon
I recently received a request from a follower, asking if it is possible to script logoffs for any Instant Clone desktops that are pending an image update. Currently they have to manually go through the admin portal and log them all off, not a quick task when dealing with thousands of sessions. We can certainly […]