Using PGP Desktop with multiple Citrix Servers
search cancel

Using PGP Desktop with multiple Citrix Servers

book

Article ID: 153254

calendar_today

Updated On:

Products

Symantec Products PGP Command Line PGP Encryption Suite PGP Key Management Server PGP Key Mgmt Client Access and CLI API PGP SDK Desktop Email Encryption Drive Encryption Encryption Management Server Endpoint Encryption File Share Encryption Gateway Email Encryption

Issue/Introduction

This article details additional information when using PGP Desktop to connect to multiple Citrix Servers.
 

Resolution

This document describes solutions for Universal Server managed PGP Desktop clients when connecting to multiple Citrix Servers. After successfully enrolling PGP Desktop, the client may be prompted to enroll with the Universal Server a second time due to connecting to a different Citrix Server.

Please review the solutions below for solutions when connecting to multiple Citrix Servers.

 

Enabling PGP Desktop in a multiple Citrix & Terminal Server Environments

 

Implement Roaming Profiles for user accounts

Roaming Profiles may be implemented utilizing one of the options below.

User profile path:

  • Since the PGP preferences are stored in the user's profile, confirm on the user properties Profile tab that the user's profile in Active Directory has been set to use a Roaming Profile. The user's Roaming Profile will be utilized on the terminal server and local PC.

    For more information on Roaming Profiles, please see the following link on Microsoft document: Configuring Roaming User Profiles.

Terminal Server profile path:

  • If using a Local Profile for users is preferred, you may also assign the user a Terminal Services User Profile path. When only the Profile Path on the Terminal Services Profile is configured, the user will use a Local Profile on all clients and use a Roaming Profile for all terminal server sessions.

    For more information on Terminal Server Profile Paths, please consult Microsoft documentation.
  •  

Group Policy folder exclusions
 

  • If a Group Policy has been created to exclude certain directories from the user's Roaming Profile to save login time, please confirm that the C:\Documents and Settings\%username%\Application Data\PGP Corporation folder is not included with the excluded folders in the Roaming Profile.

  • Citrix has a policy where the C drive mapping can be removed entirely from user sessions. This can cause issues with Citrix Management Services and Fileshare if PGP has to write temp files, causing the login process to hang after a certain threshold of operations has been crossed.

 

Folder Redirection

It is recommended to use the Group Policy feature Folder Redirection on Terminal/Citrix Servers to redirect the users My Documents folder to a central network drive. This setting speeds up the login process and maintains consistency of the users PGP Keyring files.


 

 

 

Powered by Wolken Software