How to use PowerShell to create new MCS and PVS devices in Citrix Virtual Apps and Desktops along with cmdlets typically used for making changes and troubleshooting.
Delivered, with demos, to Central XL CUGC 14th April 2021
(once automated) Save time & increase reliability of bulk/repeated operations Repeatability Eliminate human error (once you've tested scripts thoroughly) Scheduled tasks Easy to import/export to csv/xml/json and send emails & other methods of notification Large number of scripts and learning resources out there But check/test all scripts before running them as admin on production systems! @guyrleech
new end-points Reboot schedules Updates Backups Problem identification/mitigation Daily Health Checks NetScaler builds & configuration … whatever is tedious, time consuming, error prone, boring, not fun, etc But only if it's worthwhile/time efficient @guyrleech
Citrix won't do it for you – use ActiveDirectory module or ADSI to find unused machine Also check PVS, Hypervisor & CVAD for orphans/remnants Create new machine New-VM via VMware PowerCLI (-template) Add to PVS New-PvsDevice with MAC address via Get-NetworkAdapter Add-PvsDiskLocatorToDevice Add-PvsDeviceToDomain Add to Machine Catalog New-BrokerMachine (must specify -HypervisorConnectionUid & -HostedMachineId) Add to Delivery Group Add-BrokerMachinesToDesktopGroup Using PowerShell to Create new Citrix PVS Machines | ScriptRunner @guyrleech
Set-PVSConnection (once) -MaxRecordCount & -ReturnTotalRecordCount Cloud – create credential profile via downloaded secrets csv file But then most things are the same as on-premises, with a few restrictions PowerShell view in Citrix Studio – helps you figure out the "how" (Legacy) Snapins versus Modules (latter from 1912 LTSR onwards) But still not real modules – won't work with Pwsh 7.x Account used to run – least privileged @guyrleech
as a batch job" privilege) Test command line via (legacy) cmd.exe running as account set to run task Write a log file (Start-Transcript/Stop-Transcript) Use a single management machine ("jump box") – install all cmdlets, SDKs, etc Create separate task folders Notifications on success/failure - email Gotchas Single quotes Nested quotes (if all else fails, base64 encode the command line) Array flattening (resurrect with –split) $true/$false treated as string literals (use [switch] or [bool]::Parse() ) Easy to copy with PowerShell @guyrleech
(but don't use a Delivery Controller) PowerShell MSI files from CVAD ISO Remote PowerShell SDK (for Cloud ONLY) PVS (7.8 onwards) uses console dlls for modules Not available on PowerShell Gallery, etc @guyrleech
Boundary conditions – too big/small? Bad input – users do the stupidest things Scale – works ok with 2 but what about 2222 ? What if ("no sane person should ever do this but …") Document – are comments in the code really enough? No Clear Text Passwords Least Privilege Annotate Error Handling & Reporting Change & Version Control Use a Jump Box, not production servers Backup Systems before changing Scripts, config files, command lines, scheduled tasks Audit trail (Write-EventLog) @guyrleech
guyrleech
soudai
nokonoko1203
macloud
sashimimochi
rainerhahnekamp
akkie76
kenjikondobai
kkamegawa
mokocm
akagire
naokiuc
oracle4engineer
carmenintech
lynnandtonic
smashingmag
holman
chrislema
cassininazir
samanthasiow
bkeepers
gr2m
moore
tanoku
marcduiker
