Скачать презентацию CUG Tech Autumn 2004 Citrix Meta Frame Presentation Скачать презентацию CUG Tech Autumn 2004 Citrix Meta Frame Presentation

95ddfd25ff3555893b50e668346666f2.ppt

  • Количество слайдов: 29

CUG Tech Autumn 2004 Citrix Meta. Frame Presentation Server Printing Subsystem CUG Tech Autumn 2004 Citrix Meta. Frame Presentation Server Printing Subsystem

RSA Security RSA Security

Agenda o o o o Print Process Citrix Print Process Printer Auto-creation Flow (client Agenda o o o o Print Process Citrix Print Process Printer Auto-creation Flow (client side) Printer Auto-creation Flow (server side) Universal Printer Driver Best Practices Debug / Troubleshooting RSA Security

How Windows Printing Works Users Clicks Print Button o o o Application outputs generation How Windows Printing Works Users Clicks Print Button o o o Application outputs generation for Printing n Formatting pages n Adding page Numbering Graphic Device Interface (GDI) Enhanced metafile (EMF) n NOT printer-specific n Middleman RSA Security

How Windows Printing Works Print Spooler function o o o Receive EMF from GDI How Windows Printing Works Print Spooler function o o o Receive EMF from GDI Translate EMF file to. SPL (Spooler File) Print Spool file n Detailed specific instructions in printer native language n o Resolution, paper tray, form feed and the rasterized image Quality insurance n Print spooler transfers to Printer and verifies job RSA Security

Print Spooling Process RSA Security Print Spooling Process RSA Security

How Windows Printing Works o Print Monitor n n Communicates directly with the print How Windows Printing Works o Print Monitor n n Communicates directly with the print device Spooler chooses the appropriate print monitor based on the port assigned to the print device o Responsible for flow control, error handling and port communications CDMPROV. DLL – Network CPMMON. DLL – Client o WIN 32 SPL. DLL - Microsoft o o RSA Security

ICA Printing Virtual Channel ICA Display Client Drive Mapping Transport Protocol ICA Client Printer ICA Printing Virtual Channel ICA Display Client Drive Mapping Transport Protocol ICA Client Printer Mapping Client LPT Port Mapping Downstream Audio ICA Protocol can support for up to 32 virtual channels Printing over ICA uses a unique virtual channel Note: You can use the SMC Console to monitor the Printer VC’s activity in real time RSA Security

Client-Defined Printer: Autocreation Process RSA Security Client-Defined Printer: Autocreation Process RSA Security

Printer Definitions o Auto-created (Requires the client network) n Locally Attached o n Locally Printer Definitions o Auto-created (Requires the client network) n Locally Attached o n Locally Defined o o Info stored in the user’s profile Autoconnected n Imported print queues assigned to users o o Info stored in HKLM Retained in the data store Manually Mapped n Mapped from inside the session o o Retained in the users’ profile HKCU/Printers/Connections RSA Security

Printer Autocreation • Server Requests the printer information • Wfica indexes and enumerates the Printer Autocreation • Server Requests the printer information • Wfica indexes and enumerates the client’s printer information. • The ICA virtual channels are used to communicate with the server. (CTXCTL) RSA Security

Printer Autocreation: Client Side o The basic questions MPS needs to be answered…… n Printer Autocreation: Client Side o The basic questions MPS needs to be answered…… n n n o What port? Printer name? Which print driver? Answered by Wfica(ICA client engine) RSA Security

Printer Autocreation: Client Side o Printer User Interface (on local client) n Locally Attached Printer Autocreation: Client Side o Printer User Interface (on local client) n Locally Attached o o o n Black Ice PDF Writer Canon Bubble-Jet Panasonic KX-P 6500 Locally Defined o HP Laser. Jet 4000 on Print Server: jwest-ftp RSA Security

Printer Autocreation: Client Side o Auto-created n (Requires the client network) Locally Attached o Printer Autocreation: Client Side o Auto-created n (Requires the client network) Locally Attached o o Info stored in HKLMCCSCntrlPrinters RSA Security

Printer Autocreation: Client Side o Auto-created n (Requires the client network) Locally Defined o Printer Autocreation: Client Side o Auto-created n (Requires the client network) Locally Defined o Info stored in the user’s profile n HKCUPrintersConnections RSA Security

Printer Autocreation: Server Side Complete Auto-creation process! o FR 2 n o A driver Printer Autocreation: Server Side Complete Auto-creation process! o FR 2 n o A driver can only be mapped OR restricted. FR 3 & MPS 3 n n RSA Security A print driver can be restricted AND Mapped Silent install can be disabled.

Printer Autocreation: Server Side o Client informs the server what virtual channels it supports. Printer Autocreation: Server Side o Client informs the server what virtual channels it supports. o Wfshell: IMA flags are checked n n o Ctxlogon: n o Per server or per farm restrictions Check for Feature Release license Asynchronous or Synchronous Wfshell: n n n RSA Security List the client side printers Get the user’s SID Check user’s profile for printer info

Printer Autocreation: Server Side o Wfshell: n n o Checks to see if the Printer Autocreation: Server Side o Wfshell: n n o Checks to see if the printer is allowed Determines if printer info resides in Profile Checks for the printer in HKLMCCSCntrlPrinters Calls are made to build the printer Cdmprov. dll: Calls into Spoolsv. exe n Locates the server driver o o Checks for mapping Checks for native driver RSA Security

Printer Autocreation: Server Side o Cdmprov. dll: Calls into Spoolsv. exe n Locates the Printer Autocreation: Server Side o Cdmprov. dll: Calls into Spoolsv. exe n Locates the server driver o n Registry HKLMCCSCNTRLPrintEnvironmentsWindows NT x 86DriversVersion-3printer model name Silent Install o o o Print. UIEntry /ia /m “printer model name” /q Queries winntinf ntprint. inf to build the printer MF XP FR 3 can disable this feature via the CMC RSA Security

Printer Autocreation: Server Side • With FR 3 & MPS 3. 0 you can Printer Autocreation: Server Side • With FR 3 & MPS 3. 0 you can disable the silent install process • Allows the administrator to control the drivers used. RSA Security

Best Practices on Keeping a Stable Spooler o o o Try avoiding version-2 kernel Best Practices on Keeping a Stable Spooler o o o Try avoiding version-2 kernel mode drivers Give users write access to %systemroot%systemspool to handle third-party printer drivers that are not 100% TS aware NEVER install untested printer drivers on a production server/farm Do not install ALL native printer drivers on the server (unneeded growth of the datastore, and will slow down logon performance) Use mappings when available Use UPD when at all possible Scheduled spooler restart and spool dir cleanup during server reboot is fighting problem symptoms, not the problem source RSA Security

Debug / Troubleshooting The golden rules for successful auto creation: o o o Make Debug / Troubleshooting The golden rules for successful auto creation: o o o Make sure everybody logs in with his/her own username in the Citrix session Try staying away from PCL 6 drivers and user PCL 4 or Post. Script drivers instead ICA Client 7. 1 has known printing issues downgrade to 7. 0 or upgrade to 8. 0 client When using third party drivers on the server: o o Make sure users have write access on the server to %systemroot%system 32spool Make sure to use MS WHQL drivers, or drivers that are 100% TS aware RSA Security

Debug / Troubleshooting o Suggestions for Troubleshooting UPD Printer creation o o Verify that Debug / Troubleshooting o Suggestions for Troubleshooting UPD Printer creation o o Verify that the client is 6. 20. 985 or higher for 300 DPI and 7. 0 for 600 DPI. Verify that the relevant server has an FR 1 license installed or for UP 2 Fr 3 or above Verify printer/driver selections in Printer Properties Dialog of the CMC will allow UPD printers to be created Make sure the printing virtual channel is enabled in the connection settings RSA Security

Debug / Troubleshooting o o If the problem occurs with Win 2 K, try Debug / Troubleshooting o o If the problem occurs with Win 2 K, try the UPD on an Win 2 K 3 server, and vice-versa. Capture the actual PCL 4 and or PCL 5 data stream from the UPD by setting Print To File when printing from a server based application. See if it can be printed correctly [ COPY /B OUTPUT. PRN LPT 1: ] Ultimate workaround: Obtain and install the printer’s native printer driver. RSA Security

Questions: o Can LPT port redirection be disabled but the client still autocreate printers? Questions: o Can LPT port redirection be disabled but the client still autocreate printers? ? ? n o Can USB printers be autocreated? ? ? n o YES. Although USB redirection is not supported the printer attached to the USB port can be autocreated as long as the client OS returns the printer info as a printer port. Can the Universal Print Driver be used when printing directly to the print server? ? ? n o YES. LPT port redirection utilizes the CTXLPT 1 or CTXLPT 2 virtual channels but windows printing uses the CTXCPM channel. NO. The client side PCL 4 RAST. dll is required to accept the print job to then hand it off to the local client spooler. Can UPD II be disabled so only UPD I will be used? ? ? n Yes. Removing PCL 5 c from the REG_SZ value located at HKLMSWCitrixUniversal. Print. Drivers>>>Driver List. By default PCL 4, PCL 5 c, PS. CTX 089874 RSA Security

Commonly Asked Questions • • • Can LPT port redirection be disabled but the Commonly Asked Questions • • • Can LPT port redirection be disabled but the users still autocreate their printers? ? ? Can USB printers be autocreated? ? ? If the client side printer has duplex printing set, will that feature be set when autocreated the first time? RSA Security

Utilities • • • RSA Security Print Migrator 3. 1 SMC console Advanced Printing Utilities • • • RSA Security Print Migrator 3. 1 SMC console Advanced Printing Manager 4. 0

Utilities Microsoft Print Migrator 3. 1 • • RSA Security Allows all the print Utilities Microsoft Print Migrator 3. 1 • • RSA Security Allows all the print driver info to be saved to a cab file Allows a print server to be replicated in a test environment

Utilities Citrix SDK SMC Console • • RSA Security Allows a live session’s bandwidth Utilities Citrix SDK SMC Console • • RSA Security Allows a live session’s bandwidth to be temporarily limited to test the impact of BW restrictions for Printing. Provides real time insight on the Virtual channel usage.