tag:blogger.com,1999:blog-45755841835911680202024-03-12T21:27:22.627-04:00Hey, it's Citr!xguy. WTF?Just like it sounds. The occasionally entertaining rantings of some faceless Citrix engineer. Citrix guy is not affiliated with Citrix Systems, Inc. No, not even a little so stop asking dammit. By the way, "Citrite* is not a word. I checked.Citrix Guyhttp://www.blogger.com/profile/17615847499624477002noreply@blogger.comBlogger41125tag:blogger.com,1999:blog-4575584183591168020.post-61442322877386466232009-06-18T10:32:00.005-04:002009-06-18T12:22:51.090-04:00Jack Bauer TimeListen up.<br /><br />Here's a great way for all you script kiddies to do a good deed and still feel all <br />l33t about it and everything. Short story.. the Iranian government is clamping down on free speech protesters by shutting down connectivity to social networking sites. <br /><br />What can you do? Set up a fuckin proxy is what you can do. At least when these people are being shot down in the street like dogs for exercising a basic human right, they will be able to Tweet about it. That sounds trite, but it's true. The worst death is a death without reason. That said...<br /><br />Step 1 - Pick a box you don't care about trashing.<br />Step 2 - Install squid or your proxy of choice<br />Step 3 - set up the following allow rule:<br /><br />These directions pertain to Squid only.<br /><br />Inside the text editor search (Control-W) for the line “http_access deny all” and change it to “http_access allow all”. This will make your proxy open and accessible to the world. If you would like to limit your proxy to Iranian IP blocks, you want to change “http_access deny all” to read “http_access allow TRUSTED” add a line (BEFORE the http_access line to setup an access control list [ACL]). This ACL line that defines TRUSTED should read:<br /><br />I would highly recommend doing this. <br /><br />acl TRUSTED src 62.60.128.0/17 62.193.0.0/19 62.220.96.0/19 77.36.128.0/17 77.77.64.0/18 77.104.64.0/18 77.237.64.0/19 77.237.160.0/19 77.245.224.0/20 78.38.0.0/15 78.109.192.0/20 78.110.112.0/20 78.111.0.0/20 78.154.32.0/19 78.157.32.0/19 78.158.160.0/19 79.127.0.0/17 79.132.192.0/19 79.170.144.0/21 79.175.128.0/18 80.66.176.0/20 80.69.240.0/20 80.71.112.0/20 80.75.0.0/20 80.191.0.0/16 80.242.0.0/20 80.253.128.0/20 80.253.144.0/20 81.12.0.0/17 81.28.32.0/20 81.28.48.0/20 81.31.160.0/20 81.31.176.0/20 81.90.144.0/20 81.91.128.0/20 81.91.144.0/20 82.99.192.0/18 82.115.0.0/19 83.147.192.0/18 84.47.192.0/18 84.241.0.0/18 85.9.64.0/18 85.15.0.0/18 85.133.128.0/17 85.185.0.0/16 85.198.0.0/18 86.109.32.0/19 87.107.0.0/16 87.247.160.0/19 87.248.128.0/19 89.144.128.0/18 89.165.0.0/17 89.221.80.0/20 89.235.64.0/18 91.98.0.0/15 91.184.64.0/19 91.186.192.0/19 91.206.122.0/23 91.208.165.0/24 91.209.242.0/24 91.212.16.0/24 91.212.19.0/24 91.212.252.0/24 92.42.48.0/21 92.50.0.0/18 92.61.176.0/20 92.62.176.0/20 92.242.192.0/19 93.110.0.0/16 93.190.24.0/21 94.74.128.0/18 94.101.128.0/20 94.101.176.0/20 94.101.240.0/20 94.139.160.0/19 94.182.0.0/15 94.184.0.0/17 94.232.168.0/21 94.241.128.0/18 95.38.0.0/16 95.80.128.0/18 95.81.64.0/18 95.82.0.0/18 95.82.64.0/18 95.130.56.0/21 95.130.240.0/21 188.34.0.0/16 188.93.64.0/21 188.121.96.0/19 188.121.128.0/19 188.136.128.0/17 188.158.0.0/15 193.189.122.0/23 194.225.0.0/16 195.146.32.0/19 212.16.64.0/19 212.33.192.0/19 212.50.224.0/19 212.80.0.0/19 212.95.128.0/19 212.120.192.0/19 213.176.0.0/19 213.176.32.0/19 213.176.64.0/18 213.195.0.0/18 213.207.192.0/18 213.217.32.0/19 213.233.160.0/19 217.11.16.0/20 217.24.144.0/20 217.25.48.0/20 217.64.144.0/20 217.66.192.0/20 217.66.208.0/20 217.146.208.0/20 217.172.96.0/19 217.174.16.0/20 217.218.0.0/15<br /><br />Those are the Iranian IP blocks in case you're curious.<br /><br />You should expect this server to be attacked and compromised as the Iranian government realizes it's out there. (Does that sounds bad ass or what?) So implement reasonable counter measures.<br /><br />My basic approach would be to do this with a knoppix machine on a separate vlan from the rest of my network. Knoppix is a live CD so if the box is trashed you just bounce it and reinstall the proxy. The network stuff is easy enough to do with dd-wrt.<br /><br />Once your server is up and running please email me@austinheap.com and let him know! He will distribute the proxy address to the Iranian underground. <br /><br />Now quit scrwing around, grab your Mountain Dew, and get your Jack Bauer on!<br />-CGCitrix Guyhttp://www.blogger.com/profile/17615847499624477002noreply@blogger.com0tag:blogger.com,1999:blog-4575584183591168020.post-45493265097599418612009-05-20T10:41:00.003-04:002009-05-20T10:45:44.979-04:00<a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgJ2ckr7vjDagEVEEEtkckLkvByRnn32djXszkEDkL5Uje97fQ3v5wt4QOCQucItIdjM-xb-hQdUd2T_-7aHzmJ3BPKtvutYRiQLpQXktdcr_PT_CrSXGPixDG42CekRSivcNHNttFNvzA/s1600-h/seroquel.jpg"><img style="display:block; margin:0px auto 10px; text-align:center;cursor:pointer; cursor:hand;width: 320px; height: 252px;" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgJ2ckr7vjDagEVEEEtkckLkvByRnn32djXszkEDkL5Uje97fQ3v5wt4QOCQucItIdjM-xb-hQdUd2T_-7aHzmJ3BPKtvutYRiQLpQXktdcr_PT_CrSXGPixDG42CekRSivcNHNttFNvzA/s320/seroquel.jpg" border="0" alt=""id="BLOGGER_PHOTO_ID_5337917300049050338" /></a><br /><br />Microsoft is now advertising for anti-psychotic medications. Now that's what I call a strategic marketing alliance.Citrix Guyhttp://www.blogger.com/profile/17615847499624477002noreply@blogger.com0tag:blogger.com,1999:blog-4575584183591168020.post-75133032628305461322009-05-19T11:23:00.003-04:002009-05-19T11:43:03.638-04:00When a Speech Impediment is a Viable Alterative for GoToMeetingIn my usual fashion of being behind the times I recently came across a nifty service that is a workable alternative to the WebEx or GoToMeeting type products. Welcome to <a href="http://www.DimDim.com">DimDim</a>. In spite of the fact that the name is reminescent of a Tourette's convenion drunken brawl, they actually have what appears to be a decent offering - and at a killer price point. $19 a month at the time of this writing. Got your attention yet? Thought so.<br /><br />Now I haven't taken the time to conduct a point by point comparison between DimDim and GTM, but to be honest I don't use either one much so I don't give two shits whether one performs better or how the licensing stacks up between the two, yada yada. <br /><br />I'm not in the business of free hand jobs so you get to go do your own homework on this one. All the same, this type of service is becomming a commodity so if DimDim can beat out the big players, then you're only dryhumpng yourself if you don't try them out. <br /><br />-CGCitrix Guyhttp://www.blogger.com/profile/17615847499624477002noreply@blogger.com0tag:blogger.com,1999:blog-4575584183591168020.post-50569818843653033942009-05-15T09:32:00.003-04:002009-05-15T10:15:36.270-04:00The "I Can't Access" ClientIt's become apparent to me that Microsoft and organized religion have much in common. A few examples:<br /><br />1. a Cult-like following for no apparent reason<br /><br />2. They are convinced that they have the absolute *and only* truth despite any claims or evidence to the contrary - effectively lumping Linux and Wicca into the same category (which is not as far fetched as it may sound)<br /><br />3. They both need all your money and will do almost anything to get it.<br /><br />Point three apparently includes kicking your bedpartner off onto the floor in the morning after a great night of high caliber ugly bumping. <br /><br />"CG, what in the mickey mouse fuck are you talking about," you may ask?<br /><br />A fair critique. <br /><br />I give you <a href="http://support.microsoft.com/kb/949914">http://support.microsoft.com/kb/949914</a><br /><br />The jist of it is that Microsoft's money grab is causing issues with older versions of the ICA client. You see they updated the encryption of the TSCal from 512 bytes to 2048 bytes.<br /><br />This plays havoc with older versions of the ICA client because they choke on the new key and consequently take a dump - or actually they write a dump assuming you've got some kind of debugging going on. None the less...<br /><br />You can't tell me that there's a line of people trying to crack the TS license encryption. Defeating the terminal server license model is <a href="http://citrixguy.blogspot.com/2007/10/free-ts-cals-forever.html">trivial</a>. I've never met anyone that honestly cared that much about it. That is of course unless you're using Citrix and in that case you're screwed because upgrading your terminal server build gives your user base the middle finger.<br /><br />This is where I would normally make some cheeky remark about how maybe Citrix should write some function in their XenApp Server code that causes the server to blue screen, but upon reflection I realize that it's hardly necessary. Microsoft seems to be doing quite well in that regard.<br /><br />Just in case you were wondering what a 182 billion dollar douche bag looks like.<br /><br />-CGCitrix Guyhttp://www.blogger.com/profile/17615847499624477002noreply@blogger.com0tag:blogger.com,1999:blog-4575584183591168020.post-8990952742134320462009-04-17T10:36:00.005-04:002009-04-17T11:14:21.469-04:00License and Proof of Registration Please.Ya know, Sometimes it's important to know what the original license key for your version of Windows or MSOffice is. For example, you may find yourself needing to conduct an audit to make sure your company is compliant with their Microsoft EULA. You may find yourself needing to identify invalid installations of Windows in your environment. Conversely, you may endeavor to bolster the economy by starting a pirated software clearinghouse. Our economy rests on the shoulders of the small business man, after all.<br /><br />And if I can provide you with a tool to help make your job easier, then I'm humbled to be of service. The following bit of code will enumerate, decrypt, and provide to you the raw license key for the version of windows or office that you have installed on your server. <br /><br />'------------------------------<br />'Begin license auditing code to be used for only legal and ethical purposes-<br />'Never for nefarious or naughty endeavors. You cheeky monkey.<br />'-----------------------------<br /><br />Dim objFS, objShell<br />Dim strXPKey<br /><br />Set objShell = CreateObject("WScript.Shell")<br /><br />strXPKey = objShell.RegRead("HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\ProductName")<br />If Len(strXPKey) > 0 Then<br /><br />InputBox vbcrlf & "Your Windows Product Key is " & vbcrlf & vbcrlf & vbcrlf & vbcrlf & vbcrlf & "(Use Ctrl + C to copy IP Address to Clipboard)", "Get XP Product Key", GetKey(objShell.RegRead("HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\DigitalProductId"))<br /><br /><br /><br />'// Begin MSOffice Code<br />'// NOTE: Replace the above code block with this one to enumerate MSOffice Keys.<br />'// The script has not been tested with both options enabled.<br />'//<br /><br />InputBox vbcrlf & "Your Office Product Key is " & vbcrlf & vbcrlf & vbcrlf & vbcrlf & vbcrlf & "(Use Ctrl + C to copy IP Address to Clipboard)", "Get XP Product Key", GetKey(objShell.RegRead("HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Office\11.0\Registration\{90110409-6000-11D3-8CFE-0150048383C9}\DigitalProductId"))<br /><br />'//<br />'// End MS Office Code<br /><br />End If<br /><br />'// Here's the money shot.<br /><br />Function GetKey(rpk)<br /> Const rpkOffset=52:i=28<br /> szPossibleChars="BCDFGHJKMPQRTVWXY2346789"<br /> Do<br /> dwAccumulator=0 : j=14<br /> Do<br /> dwAccumulator=dwAccumulator*256<br /> dwAccumulator=rpk(j+rpkOffset)+dwAccumulator<br /> rpk(j+rpkOffset)=(dwAccumulator\24) and 255<br /> dwAccumulator=dwAccumulator Mod 24<br /> j=j-1<br /> Loop While j>=0<br /> i=i-1 : szProductKey=mid(szPossibleChars,dwAccumulator+1,1)&szProductKey<br /> if (((29-i) Mod 6)=0) and (i<>-1) then<br /> i=i-1 : szProductKey="-"&szProductKey<br /> End If<br /> Loop While i>=0<br /> GetKey=szProductKey<br />End FunctionCitrix Guyhttp://www.blogger.com/profile/17615847499624477002noreply@blogger.com0tag:blogger.com,1999:blog-4575584183591168020.post-24121041632046056702009-03-27T13:03:00.002-04:002009-03-27T13:11:39.003-04:00Destroy Your PrinterSorry folks it's been a while since I posted, but in all honesty I haven't had much of anything to talk about so I figure why blither on at the expense of your time right?<br /><br />In any case, this has nothing to do with Citrix, Terminal Services, or SBC, but it it very profound.<br /><br />Talk about this. Call your printer manufacturer and tell them that you don't appreciate the gleeful fashion with which they sold you down the river. This, my friends is no bullshit. Just goes to show that there is something to be said for the old Knight Rider approach of writing out your ransom notes with random magazine clippings.<br /><br /><br /><br /><object width="445" height="284"><param name="movie" value="http://www.youtube.com/v/izMGMsIZK4U&hl=en&fs=1&rel=0&color1=0x5d1719&color2=0xcd311b&border=1"></param><param name="allowFullScreen" value="true"></param><param name="allowscriptaccess" value="always"></param><embed src="http://www.youtube.com/v/izMGMsIZK4U&hl=en&fs=1&rel=0&color1=0x5d1719&color2=0xcd311b&border=1" type="application/x-shockwave-flash" allowscriptaccess="always" allowfullscreen="true" width="445" height="284"></embed></object><br /><br /><br /><object width="445" height="364"><param name="movie" value="http://www.youtube.com/v/j5BDIl7XXFM&hl=en&fs=1&rel=0&color1=0x5d1719&color2=0xcd311b&border=1"></param><param name="allowFullScreen" value="true"></param><param name="allowscriptaccess" value="always"></param><embed src="http://www.youtube.com/v/j5BDIl7XXFM&hl=en&fs=1&rel=0&color1=0x5d1719&color2=0xcd311b&border=1" type="application/x-shockwave-flash" allowscriptaccess="always" allowfullscreen="true" width="445" height="364"></embed></object><br /><br />-CG<br /><br /><a href="http://www.eff.org/pages/list-printers-which-do-or-do-not-display-tracking-dots">Are you your printer's bitch?</a>Citrix Guyhttp://www.blogger.com/profile/17615847499624477002noreply@blogger.com0tag:blogger.com,1999:blog-4575584183591168020.post-68395238502653363832009-02-04T10:07:00.004-05:002009-02-04T11:09:59.127-05:00Citrix Missed Laying off 500 people by "That Much"So it seems that not even the "Big C" is immune to the faltering economy. In various news sources a few days ago, the mothership announced that it will be shit-canning 500 people. Everyone is trimming the fat these days, but I have to say that I'm a little surprised that Citrix is hurting as badly as it seems to be.<br /><br />With the economy resembling a steaming pile of llama squat these days, many shops are trying to downsize and consolidate their access infrastructure. EMC has seized on this and has happily been spoonfeeding VMWare deployments to companies that are suddenly finding it difficult to buy corporate jets. There is a very simple reason for that. The vast majority of CPU cycles in any data center are spent waiting around for some kind of user input. Virtualizing idle hardware saves money. Plain and simple. And it saves it immediately. That's important.<br /><br />So why the woes at Citrix? Could it be that because the up front costs to implement their solutions are so ridiculously high, that they have become prohibitive in a down market? Could it be that the financial pressure is forcing would-be Citrix customers to go to companies like Quest, Ericom, or even (excuse me while I throw up a little in my mouth) plain terminal server?<br /><br />I don't know. And things are happening so fast that no one really does know or know enough to get their head around it - not even that mad money jackass guy. <br /><br />So kids, the employment outlook just got a whole lot shittier for you and me. Citrix has effectively taken an upper-decker on the thin market by flooding it with 500 or so (supposedly) qualified engineers. So we just have to sit back and watch them quickly gobble up any market demand that might be floating about.<br /><br />With a down economy, niche skills get ass-slammed. You need to be able to offer a holistic solution and show a payback on the front end right away in big powerpoint motion-tweened letters. No one wants to hear about ROI when they're just trying to keep the lights on. My advice to any Citrix engineer out there - employed or not - learn VMWare (fuck that Xen stuff), get a development skill (VBScript or preferably powershell and .NET), set yourself up for an alternate source of income with side projects or consulting, update your certs, and downsize your lifestyle.<br /><br />We'll get through this, but grab your altoids cause it's gonna taste shitty for a while.<br /><br />-CGCitrix Guyhttp://www.blogger.com/profile/17615847499624477002noreply@blogger.com2tag:blogger.com,1999:blog-4575584183591168020.post-60946255726764743452009-01-13T16:04:00.002-05:002009-01-13T16:28:33.495-05:00Bad ass needs a jobSo I have this friend.. I mean seriously, not like when someone says I have a friend and they're really talking about themselves. Because let's be honest.. no one falls for that shit. Not really.<br /><br />Anyways - so I have a friend that I used to work with that is looking for a job. He's done Citrix for about 5 years and is sharp as a tack. He's also got a hefty package of development skills swinging from his belt to boot. You know what they say about that... once you go .NET you never go back.<br /><br />So I know that for some reason this blog gets alot of traffic despite the fact that I've completely neglected it. I know times are shitty, but if anyone is looking for a solid engineer I can put you in touch with this person.<br /><br />I'm not going to get all sentimental about it. You can go ask for reach-arounds on your own time, but I'll leave it at this. I'm not one to put up with dumb people or shitty work. This guy is probably the best engineer I've worked with. If you have an open position you would be a toothless sister-humping fuckwit not to hire him.<br /><br />-CGCitrix Guyhttp://www.blogger.com/profile/17615847499624477002noreply@blogger.com0tag:blogger.com,1999:blog-4575584183591168020.post-65626412043557407112008-11-07T11:29:00.003-05:002008-11-07T11:50:52.551-05:002X or not 2X?So I guess I've had my head up my ass more than usual lately, cause I completely missed these guys. I give you <a href="http://www.2x.com">2X Software</a>. <br /><br />Aside from being the largest company I know of to name their company after an enviable domain name - albeit a lame one, 2X put it's stake in the world of SBC as yet another Citrix wannabe.<br /><br />Look I love competition, but I have to say that all these companies try to sell you their stuff under the tagline, "Hey we do most / all of what Citrix does, but for less money." It's pedestrian. Innovate already, Dammit!! Is it just me?<br /><br />There's something to being able to say, "Hey yeah, Citrix is swell and all, but they have a funny logo, give you strange cravings for orange juice, and oh by the way our shit does a bunch more stuff that actually pushes the envelope of this industry than their stuff does! We're actually making waves not just riding them!"<br /><br />Case in point - (and I probably owe these guys a plug anyways) - Provision Networks (now Quest software).<br />Provision networks is like a whirlpool that's sucking all these seemingly distant technologies from all over the landscape and homogenizing them. For example - you can publish a virtual machine instance from the same console as you can publish an application. You can even publish an application on a virtual machine and have the software spin up the vm as needed to host said application. I don't care who you are, that's fukin sweet people. That's pushing the envelope. That's putting something out there that Citrix will have to play catch up on for a change.<br /><br />Don't get me wrong, I'm sure 2X has some great stuff at a much better price point than Citrix. But who doesn't? I've looked at their stuff, and it's a strong offering, but with the exception of their Linux stuff it's just not that fresh.<br /> <br />So X2 fans, am I wrong?Citrix Guyhttp://www.blogger.com/profile/17615847499624477002noreply@blogger.com2tag:blogger.com,1999:blog-4575584183591168020.post-143077117613208702008-10-21T12:29:00.007-04:002008-10-22T09:48:08.679-04:00Happy Douche Bag Day!Holy shit it's been a long time since I posted. <br /><br />Sorry folks, I was sitting around the other day with that feeling like I had left the iron on, and then I was like, "hey, don't I have a blog or something"<br /><br />Anyways..<br /><br />Update: My job is making me a racist. More on that some other time.<br /><br />For now I'm writing in celebration of <a href="http://www.microsoft.com/presspass/presskits/antipiracy/default.mspx">Global Anti Piracy Day</a>! Hooray!! What's that you say? You've never heard of it? Ahh.. well friend, that's because it's bullshit. <br /><br />It's nothing more than a corporate mind fuck dreamed up by the lawyers and other suits at Microsoft. Yes kids, suddenly the company that has been at odds with the US Department of Justice for years over anti-trust violations, that has all but monopolized (and shit-ified) the software realm, that has gone to great lengths to stamp out open source software, this same company now wants to become your moral compass and guardian angel. The amount of ironic hypocracy that oozes out of this effort is staggering to the degree that even Alanis Morissette wouldn't be able to handle it. <br /><br />But don't take my word for it. Remember, I'm full of shit and a liar. Have a heaping pile of <a href="mms://msstudios.wmod.llnwd.net/a2294/o21/presspass/WaddEd_Piracy_MBR.wmv">corporate propaganda</a> and see for yourself. My favorite part is how they try to spin it as a stimulus to the US economy. You gotta admit, to do that with a straight face takes brass balls.<br /><br />This really is pathetic. You know what? You may be Microsoft, but just like the RIAA, the cat is out of the bag, and technology will always stay one step ahead of you. As fast as you can come up with anti-pirate measures, countermeasures will enter the scene. You're going to have to come to terms with the fact that you can't ass-slam every person on earth for 400 bucks just to have their machine grind to a crawl by your bloated memory-whore of an operating system. Oops, was that my out-loud voice?<br /><br />Talk amongst yourselves while I swear and throw things.<br /><br />Damn, I'm angry.<br /><br />-CGCitrix Guyhttp://www.blogger.com/profile/17615847499624477002noreply@blogger.com1tag:blogger.com,1999:blog-4575584183591168020.post-3650493509969256742008-06-17T08:34:00.005-04:002008-06-17T09:10:22.811-04:00Sepa-go-go gadget profiles!Profiles have long been the high maintenance girlfriend of Terminal Server / Citrix deployments. There's no way around it. If you run Citrix, you have at some point included user profiles as a bullet point on a suicide note.<br /><br />Citrix has finally decided to listen to the million or so odd people that have been bitching for years on all manner of lists and forums about user profile management. To date, I think Citrix has turned a deaf ear to the whiners because technically that falls into the terminal server realm, and stepping on Microsoft's toes has generally not been regarded as a strategic business direction. And if Microsoft can't come up with a better way to do it then why should it be Citrix's problem? Can't argue with that, besides who the hell would want to take on profile management and all its baggage as a supported product? Fuck that noise.<br /><br />So what has happened is the same thing that happened with the "Wow, printing really sucks in Citrix" movement. A bunch of third-party solutions popped up to fill the void. One of these is Sepago. Admittedly, I haven't played with it much, but Sepago has a pretty cool product for managing profiles. And surprise surprise, Citrix recently bought them. <br /><br />So now Citrix has a native profile solution, or at least one that their sales people can pimp out. But why Sepago? I have a speculation. The disclaimer is that this is just me talking. This is probably going to be a half-truth at best - but here goes.<br /><br />Convergence.<br /><br />You see, thin computing is on the brink of a singularity. In the coming years you're going to see application and OS virtualization merge with VDI, workstations, and mobile devices. It's all going to be a huge blob that facilitates access to all the virtualized resources across platforms from a single technology or (as some have speculated) an appliance (although I doubt that). Here's where Sepago fits in. You see, it's not limited to just terminal server. It will manage profiles across the board - including your desktops and VDI instances. And... And.. it is largely managed through native GPO's! How's that for elegant scalability? Bam! What we're we're seeing is Citrix positioning itself for the coming homogeneous landscape. <br /><br />Strategery.<br /><br />One thing for sure, I can poke and jab at the company and have a good time doing it, but that Marky T is a sharp guy. Forward thinking and all. You tell Mark Templeton to think outside the box and he would answer that the box isn't really there to begin with. "It's running on a server somewhere else, but I get all the functionality of the box and I'm able to seamlessly think outside of it from wherever I am using any number of hardware and software platforms. We call it XenBox"<br /><br />Again, that's not an actual quote. I'm just making all that up to make a point. It will certainly be interesting to watch and see what happens.<br /><br />-CGCitrix Guyhttp://www.blogger.com/profile/17615847499624477002noreply@blogger.com0tag:blogger.com,1999:blog-4575584183591168020.post-42971530432715248872008-05-13T09:37:00.011-04:002008-05-14T23:21:13.829-04:00Sorry peeps. It's gone.Sorry everyone. I've deleted this post because it's ruffled some big feathers and gotten a friend very pissed off at me. This friend (I'll call him B) confided some frustrations in me over a beer a few weeks ago and I posted it without permission. When the vendor recognized the scenario and brought this to B's attention he contacted me and told me to remove it immediately. And in typical CG fashion, for whatever reason, I decided not to. If I had done so, this situation would probably still be salvageable.<br /><br />I just received an email from someone who I believe is the vendor implicating B because he apparently had a link to this blog on a networking site. So in short, for his showing me some support, I've potentially delivered a whole load of shit to his doorstep. I haven't told B of this little development yet, but it will probably be the final straw in this whole thing.<br /><br />I'm considering taking down this blog permanently, but whether or not that comes to pass I want to convey my most sincere apologies to B and to the vendor that was involved. <br /><br /><br />-CGUnknownnoreply@blogger.com5tag:blogger.com,1999:blog-4575584183591168020.post-53595102046056056312008-04-16T08:59:00.008-04:002008-04-16T09:17:53.738-04:00CDRom Scripting FunHere's a nifty bit of shop talk. Although no one really uses them, the Windows Media Player API exposes the CDRom controls. The following code snippit uses vbscript to eject the cdrom. It's only a few lines, so you could easily put it in .. oh I dunno.. a login script or something. Just imagine the little snaps of cdroms ejecting all over the office at 9am. Now that is some capital whimsy, folks. <br /><br /><br />Set objMPlay = CreateObject("WMPlayer.OCX.7" )<br />Set colCDROM = objMPlay.cdromCollection<br />if colCDROM.Count >= 1 then<br /> For i = 0 to colCDROM.Count - 1<br /> colCDROM.Item(i).Eject<br /> Next<br />End If<br /><br /><br />If you would like to learn more about scripting with Media Player, then you are a dork and I pity you. All that aside, the SDK is available <a href="http://msdn2.microsoft.com/en-us/library/aa969732.aspx">here</a>.<br /><br /><br /><br />-CGUnknownnoreply@blogger.com0tag:blogger.com,1999:blog-4575584183591168020.post-59927779416049777862008-03-20T09:15:00.003-04:002008-03-20T10:14:07.573-04:00Do I like Citrix?I saw a <a href="http://boards.fool.co.uk/Message.asp?mid=10970156">forum post</a> the other day referring to this site (which is way fucking uber cool in itself. Major thanks for the plug!). But it troubled me that it made the assertion that I don't at all like Citrix. Certainly I can understand how one would get this impression from the posts. But it's not true.<br /><br />I've been doing Citrix for a long time. I've had lunches with Mark Templeton, gone to solution summits, had lunches with the developers (great guys), attended iForum (got completely hammered), and did it all on Citrix's dime. Citrix has treated me very well, and I've made a successful career out of working with their products. Indeed, some of the quirks of their products have served to make the Citrix skill set more exclusive. Long ago Citrix made a decision to foster community around their products. Sure it's taken them a while to get it right, but it's a good thing. They're not perfect, but there are far worse software companies out there.<br /><br />The point is that I'm all about giving credit where credit is due, and Citrix deserves alot of credit for a great many thing.<br /><br />So what's with all the zings?<br /><br />I can't begin to count the number of blogs out there that deal with thin computing. While many of these are technically interesting, they also tend to be butt-kissy and flacid in content. My goal is to keep it interesting here by speaking from the real side of IT with a healthy dose of the cynicism that proliferates most enterprise shops. <br /><br />Real IT isn't sitting around sipping lattes while talking about great new feature sets in products. Real IT is plowing through all the bugs and unexpected behavior those new products add as 'features'. IT is getting called in the middle of the night because some fucktard can't log in. Our day to day is decidedly less fluffy than many vendors, Citrix included, would have us believe about their products.<br /><br />So there ya go. I'm not against Citrix, Microsoft, or most other companies out there.. except Scientology of course, and then all bets are off. I'm just trying to expose the underbelly of the IT and thin computing landscape and have a little fun doing it. <br /><br />Who knows, Someday some dude/dudette at Citrix may be reading this blog (they do quite frequently, btw) and maybe find something useful that they can use to improve their products. I wouldn't count on it, but it's possible. Innovation is good for everyone, even assholes like me.<br /><br />-CGUnknownnoreply@blogger.com0tag:blogger.com,1999:blog-4575584183591168020.post-85174203659074752402008-03-18T11:10:00.008-04:002008-03-18T12:27:28.047-04:00Happy Power Holidays!!And in outsourcing critical operations to third world countries with faltering infrastructure news:<br /><br />Through one of my esteemed coworkers, I caught a copy of an email that was sent from our Chennai operations to one of our VPs. Apparently, there's a bit of a power crunch over in India. <br /><br />There's so much of a crunch in fact that the government is mandating blackouts. The spin is that they're actually '<a href="http://www.newkerala.com/one.php?action=fullnews&id=33419">power holidays</a>', but lets face it - how much of a break does one need from electricity? Is having electrical service something that is so stressful that we need a holiday from it? That's right pal! Fuck President's Day, but if someone doesn't kill the lights, I'm taking a hostage. <br /><br />Okie dokie.<br /><br />I've never worked at a company that offered paid holidays from electricity, running water, telephone service, clothing (though that could be kinda fun), or the like. No, indeed going without these things is generally regarded by most as a huge fu#king inconvenience.<br /><br />So what does this mean?<br /><br />Before we get into that, it's important to take a moment to give a big middle finger salute to all these companies that gleefully tossed skilled IT workers to the curb in favor of cheap overseas (and often unqualified) labor to save a buck or two on the front end. Long have I suffered at the inept hands of overseas workers which have been tasked with jobs that they are unqualified to do. So a heartfelt congratulations to all of you corner-office-power-lunching big wigs. You're getting exactly what you paid for. <br /><br />And believe me, if some whelk supervisor over there is sending an email to an EVP of a multi-billion dollar company telling him that golly gee sorry, we're just not going to work on Mondays because the building is dark..this is just the tip of the iceberg. <br /><br />Hell, it's not even summer yet. Just wait until they crank up all those air conditioners over there and then talk to me about power holidays. <br /><br />Polish up the resume and keep a close eye on this one kids. My guess is that it may turn out to be a sizable fecal matter & fan situation before it's all done.<br /><br />-CGUnknownnoreply@blogger.com0tag:blogger.com,1999:blog-4575584183591168020.post-70835367539315195652008-03-13T07:37:00.002-04:002008-03-13T08:03:20.696-04:00Ericom to Citrix: Chew on This!This is big news.<br /><br />In a very interesting and fuckyouCitrix-esque turn of events Ericom has stepped up and is offering a free version of Windows Power Term to be released with Windows Server 2008. <br /><br />Now I haven't personally used Powerterm, but I hear it's not too bad. And hell, if it's free, then it's a no-brainer. This is a real sucker punch to Citrix in the small to medium office arena. In the present economic landscape, you can bet that a free and workable alternative to Citrix will be embraced by companies. This is especially true in the medium size sector where the company or app is just too big or important to only use terminal server, but they hate seeing that damn Citrix line item every year.<br /><br />Hats off to Ericom for a very bold and I must add cunning move! But now what?<br /><br />The problem is that very few decision makers are tuned into the virtualization world like us. Let's face it; they have lives and have probably never been addressed by anyone as "Dungeon Master". It's up to us as engineers to sell this thing and give it visibility. Ericom is putting itself out there and if this does well, it's going to introduce competition. That's going to force innovation on Citrix's part. That is unless of course Citrix just buys Ericom, which would be in line with their recent product launches.<br /><br />See original info <a href="http://www.ericom.com/ws08.asp">here</a>.<br /><br />-CGUnknownnoreply@blogger.com0tag:blogger.com,1999:blog-4575584183591168020.post-91140937626910746952008-03-12T10:46:00.009-04:002008-03-13T13:29:05.501-04:00Managing Local Admin PasswordsThe company I work for often seeks out the worst and most vexing solution to any given situation. That probably stems from the fact that although the corporate line is that we hire 'quality people', most of the people in my building have an IQ approximating that of a canteloupe. <br /><br />In fact, I would wager that many of the IT staff here would be quite content to sit and drool on their keyboards for much of the day. Sad, but there ya go. The plus side of that is that it's not terribly difficult for a slightly below average bloke such as myself to look like a shining star. <br /><br />"Hey CG, I really like the way you tied your shoes. You keep that up and the sky is the limit for you here."<br /><br />Seriously.<br /><br />So anyways, one of the most short-bus-esque practices that goes on here is that all of the servers in the environment have the same admin password. Yeah.. not only that, but nearly everyone in the building knows about since it hasn't changed in two years. It even showed up in a Google search the other day. I wish I was kidding. <br /><br />So it's been a constant pain in the ass for me that when odd stuff happens on the server the trail stops at the admin account. So I decided to take the law in my own hands and change it.<br /><br />Here's the quandry. I don't want to have to manage several hundred admin ids and passwords. I wanted a password that I could get to quickly, that was unique for each server, and that did not require some kind of database to manage. Here's what I came up with. I set the password to a combination of the servername, a special character, and the last octet of the server IP address. It's easy to figure out the password if you know the formula and the formula can be quickly updated by tweaking the script.<br /><br />Here's the script I used to do it. (Special thanks to E, who helped me fix a bug in the error handling) This pulls a list of servers from MFCOM and loops through them. Enjoy.<br /><br />'//Resets the local password using the formula:<br />'// servername + @ + last octet of IP<br />'// Run this using cscript. If you use wscript you will be innundated with popups<br /><br />'------------------------------------------------------------------------------------- <br />'// Compensate for crappy coding and diminutive manhood.<br />On Error Resume Next <br /><br /><br />'//Set the Username <br />'------------------------------------------------------------------------------------------ <br />LocalAdmin = "Admin" <br />'------------------------------------------------------------------------------------------ <br /><br /><br />'// Get the farm 411<br />Set theFarm = CreateObject("MetaFrameCOM.MetaFrameFarm")<br />theFarm.Initialize 1<br /><br />'// If this doesn't work we're screwed so exit<br />if Err.Number <> 0 Then<br />WScript.Echo "Can't create MetaFrameFarm object"<br />WScript.Echo "(" & Err.Number & ") " & Err.Description<br />WScript.Echo ""<br />WScript.Quit Err.Number<br />End if<br /><br />'// Loop through the name o' server<br />For each Server in thefarm.servers<br /> <br /> '// set the hostname based on where we are in the loop <br /> strComputer = ""<br /> strComputer = Server.servername<br /><br /> 'invoke the dnslookup because the datastore IP could be for some other nic if we pulled it from MFCOM.<br /> strIP = DNSLookup(strComputer)<br /> strOctet = Right(strIP,3)<br /> StrOctet = Replace(strOctet,".","")<br /> strPassword = strComputer & "@" & strOctet<br /> strPassword = LCase(strPassword)<br /> <br />'//now that we have the password, let evil ensue<br /><br />On error resume next <br /> IF not strComputer = "" then<br /> <br /> '//Clear any error condition that may have existed from the last loop<br /> Err.Clear<br /><br /> ' //Connect to the computer\administrator account <br /> Set objUser = GetObject("WinNT://" & strComputer & "/" & LocalAdmin, user)<br /> if Err.Number <> 0 Then<br /> wscript.echo "Error on " & strComputer<br /> if WScript.Echo "(" & Err.Number & ") " & Err.Description<br /> WScript.Echo ""<br /><br /> End If <br /><br /> '//Set the password for the account <br /> wscript.echo<br /> wscript.echo "Setting password on " & strComputer<br /> objUser.SetPassword strPassword <br /> objUser.SetInfo <br /> if Err.Number <> 0 Then<br /> wscript.echo "Error on " & strComputer & "!!!"<br /> WScript.Echo "(" & Err.Number & ") " & Err.Description<br /> Else<br /> wscript.echo strComputer & " - " & localadin & " password has been set to: " & strPassword<br /> End If<br /> End if<br /> <br /> ' //senseless destruction of objects<br /> Set objWMIService = nothing<br /> Set objuser = nothing <br /><br />Next<br /><br /><br />'-------------------------------------------------------------------------------------------------------------------------------------------------------------------------<br />'Functions<br />'-------------------------------------------------------------------------------------------------------------------------------------------------------------------------<br /><br />Function DNSLookup(sAlias)<br /><br /> If len(sAlias) = 0 Then<br /> DNSLookup = "Failed."<br /> End If<br /><br /> Const OpenAsDefault = -2<br /> Const FailIfNotExist = 0<br /> Const ForReading = 1<br /><br /> Set oShell = CreateObject("WScript.Shell")<br /> Set oFSO = CreateObject("Scripting.FileSystemObject")<br /> sTemp = oShell.ExpandEnvironmentStrings("%TEMP%")<br /> sTempFile = sTemp & "\" & oFSO.GetTempName<br /><br /> oShell.Run "%comspec% /c nslookup " & sAlias & ">" & sTempFile, 0, True<br /><br /> Set fFile = oFSO.OpenTextFile(sTempFile, ForReading, FailIfNotExist, OpenAsDefault)<br /> sResults = fFile.ReadAll<br /> fFile.Close<br /> oFSO.DeleteFile (sTempFile)<br /><br /> aIP = Split(sResults, "Address:")<br /><br /> If UBound(aIP) < 2 Then<br /> DNSLookup = "Failed."<br /> Else<br /> aIPTemp = Split(aIP(2), Chr(13))<br /> DNSLookup = trim(aIPTemp(0))<br /> End If<br /> <br /> Set oShell = Nothing<br /> Set oFSO = Nothing<br />End Function<br /><br />----------------------------------------------------<br /><br />Happy Clicking!Unknownnoreply@blogger.com4tag:blogger.com,1999:blog-4575584183591168020.post-47181489180055107062008-02-14T22:04:00.008-05:002008-02-14T22:55:01.771-05:00Paging Dr. Xen to DeliveryIn one guy's humble opinion, the person that is responsible for coming up with marketing slogans at Citrix really needs to consider hitting a second cup of coffee in the morning. No doubt you've noticed the new splash when you visit the Citrix.com site. It takes up half the page to deliver the following message:<br /><br />The Game has Changed.<br /><br />Transform your Datacenter into a Delivery Center.<br /><br />Introducing Citrix Delivery Center.<br /><br />Now is it just me or does that sound like some kind of superbowl ad for a maternity ward? I mean seriously..the Citrix Delivery Center? That's all you guys could come up with? You need to hire someone with a pulse to do your marketing. <br /><br />Oh but let not your heart be troubled, kids. I've come up with a few alternate suggestions. I know..I know. I'm a giver. It's just how I am.<br /><br />How about:<br /><br />The game has changed. We're combining all our suites into a new super-enterprise-platinum-mega-super-uber-suite that all runs on NetScaler.<br /><br />The game has changed. Resource manager is another story. Say, have you checked out Edgesight?<br /><br />The game hasn't actually changed...just the name of our products.<br /><br />The game is up. Too bad your servers aren't.<br /><br />The game has changed. We're actually considering writing our next software product instead of just buying it up.<br /><br />Any other suggestions?<br /><br />-CGUnknownnoreply@blogger.com0tag:blogger.com,1999:blog-4575584183591168020.post-55827479385815035132008-02-12T20:12:00.000-05:002008-02-12T20:31:37.580-05:00Free Edgesight Courseware - CTX-1800Knowledge should be free. Share it. <a href="http://rs306.rapidshare.com/files/86451877/CTX-1800_Edge_Sight_for_load_testing.rar">Here's</a> the full courseware for Citrix / Xenapp, or whatever the hell their name is today course CTX-1800. <br /><br />Note that I am not personally providing this download, just pointing you to it. I don't know who put it out there, but get while it's hot. <br /><br />-CGUnknownnoreply@blogger.com0tag:blogger.com,1999:blog-4575584183591168020.post-74859487842571372832008-02-01T07:17:00.001-05:002008-02-01T09:01:03.596-05:00Endpoint Agent HackHey folks, <br /><br />I know.. I know.. the Edgesight hacking stuff is becoming a little tiresome. I'll try to sweeten the mix with some other topicality this month but for now.. here's yet another Edgesight hack.<br /><br />This time we're talking about the agent. <br /><br />Citrix has two main versions of the Edgesight agent. The one you and I are probably mostly concerned with is the Presentation Server agent (I guess that will soon be named the Xenapp agent or some crap like that in keeping with Citrix's curious habit of renaming their products every 7.5 minutes). Anyways, you have the PS agent, which is designed to monitor Presentation Servers, and you have the Endpoint Agent - which is designed to run on non-presentation servers. This includes standard server builds and workstations.<br /><br />Now the irksome thing is that Citrix licenses these agents separately. Consequently, we get to keep track of how many PS agents versus EP agents are deployed, what they're running on, and whether or not we have enough licenses to support what's out there. What a pain in the ass.<br /><br />In our environment we don't monitor our workstations through the EP agent using Edgsight, but we do have many servers that are non Presentation servers that we want to monitor. i.e. Web Interface, Secure Gateway, File / Profile Servers, etc.<br />I don't want to have to mess with the additional administrative burden of running two agents to essentially get me the same functionality. Wouldn't it be cool if you could run the PS agent on non-Presentation Servers?<br /><br />You can.<br /><br />How? Well it goes back to the way that the agent works and why there are two agents in the first place. <br /><br />Both agents position themselves very close to the kernel and essentially function like a piece of zombie code. <br /><br />The reason is that there are two agents is because the terminal server kernel is vastly different from that of a standard server, being that it has to accomodate multiple users and all that other cool stuff that allows people like me to keep a job.<br /><br />So the endpoint agent just won't work with a terminal server, and vice versa - you can't install the PS agent on a non-terminal server. <span style="font-weight:bold;">So it has nothing to do with licensing; it's a matter of compatibility</span>. That's why there's two agents.<br /><br />So if you want to only run the PS agent, it's a simple matter of making it so that it works with your non terminal servers. To do that it's as easy as making them application servers. You just install terminal server on them. That's it. Badda bing! They'll run perfectly fine in terminal server mode and you only have to manage one agent. Cake.<br /><br />Of course there are some security aspects to address, but if you're messing around with this stuff I'm going to assume you're not a complete tool and can handle that stuff on your own.<br /><br />Peace <br />-CGUnknownnoreply@blogger.com0tag:blogger.com,1999:blog-4575584183591168020.post-5532595608297669402008-01-03T13:54:00.000-05:002008-01-03T14:14:49.689-05:00Citrixguy.net Featured on Citrix.com!So I was browsing my stats the other day and noticed several visitors coming in from citrix.com! Yes, Citrix linked to this blog.<br /><br />TWICE!!! <br /><br />Specifically from <a href="http://web.citrix.com/blogosphere/index.php?id=88">http://web.citrix.com/blogosphere/index.php?id=88</a><br /><br />Look for the "Edgesight for Load Testing Semi-Free" and "Edgesight Licensing Hole" links.<br /><br />So WTF?<br /><br />No doubt this is an automated spider that just searches a bunch of blogs for relevent content and posts links to the page. I seriously doubt that Citrix Systems would endorse anything on this site. All that said, I got quite a chuckle at the irony of Citrix linking to articles about hacking their products.<br /><br />I'm thinking that maybe someone at Citrix should take a glance at that page once in a while.<br /><br />-CGUnknownnoreply@blogger.com0tag:blogger.com,1999:blog-4575584183591168020.post-60214914612335326962007-12-13T09:48:00.001-05:002007-12-14T08:26:50.682-05:00Edgesight for Loadtesting Semi-Free!Here's some news. Load testing on Citrix is still a pain in the ass. <br /><br />Citrix is attempting to round out that chasm of product functionality with a new product called "Edgesight for Load Testing". Actually to say that it's a new product is a fat lie. Like many other products (Edgesight included) Citrix just bought up a company and slapped their logo on their product. So in addition to the name being completely lame, it's also incorrect. This product is in no way related to Edgesight. No doubt future integration is planned, but for now it has about as much to do with Edgesight as notepad does. <br /><br />According to the press release found <a href="http://press.citrix.com/English/NE/news/news.asp?newsID=658481">here:</a><br />"Citrix EdgeSight for Loading Testing 2.5 will be available on June 25, 2007, and suggested retail pricing starts at $7,500. Citrix EdgeSight for NetScaler is available as part of the Citrix NetScaler 8.0 Platinum Edition."<br /><br />In other words, this shit ain't cheap.<br /><br />Unless of course you found some way to get a license for some kind of discount.<br /><br />Recently I took a class on Edgesight 4.5, specifically CTX-1800AI. It's a moderately interesting course, but the cool part is that you get a demo license for Edgesight for Load Testing. So what? Well.. the "demo" license you get is good for 2 years! 2 friggin years! What the hell were these guys thinking?<br /><br />So why pay 7500 for a product when you can get the same product for around 1200 and some change? Just take the course and conduct a very extensive demo of the product. I think most people would agree that two years is adequate to make a determination as to whether or not you actually want to go forward and pay the full licensing cost. <br /><br />-CGUnknownnoreply@blogger.com0tag:blogger.com,1999:blog-4575584183591168020.post-58681756065394598972007-10-31T13:52:00.000-04:002007-12-14T08:27:11.021-05:00Edgesight Licensing HoleEdgesight is a cool product. There's no doubt about it. But why pay for it if you don't have to? <br /><br />A little history is probably in order..<br /><br />Edgesight was actually developed by another company called Reflectant. Citrix bought Reflectant as a means to round out their suite of products. Let's face it, Resource Manager is about as useful as loose bowels. Oh sure, it was probably grand back in the days, but it's a dinosaur by modern standards. Hence the need for Citrix to find something to monitor their stuff.<br /><br />A little known fact is that shortly after acquiring Reflectant, Citrix promptly told most of the other competing vendors (EG Innovations, etc) to go fuck themselves. Citrix is no longer including these vendors in the development process of the Metaframe product suite. Downright bastardly if you ask me, but many of us have seen the big red dot toss its weight around before for no other apparent reason than just to be catty. They refunded their iForum exhibition fees and did a tremendous job in showing their ass.<br /><br />So anyways, after Citrix purchased reflectant they were in a rush to re-brand the product and get it out there. As is often the case, certain compromises were made with the product conversion for the sake of some deadline. Long story short is that the licensing in 4.0 and 4.2 is not perfect.<br /><br />It's so imperfect in fact that it is not enforced by the product. Edgesight is licensed by concurrent connection in the same fashion that MPS is. What is supposed to happen is that the product gathers data on the number of users that you are licensed for and then stops once it hits the ceiling. With version 4.0 and 4.2 this doesn't happen. You could be licensed for 10 users and collect data on 10,000. Pretty sweet.<br /><br />This little bug is fixed in 4.5, which may explain why Citrix is pushing folks so hard to upgrade even though the improvements are somewhat minor in the newer version.<br /><br />Sometimes the latest and greatest turns out not to be.<br /><br />-CGUnknownnoreply@blogger.com0tag:blogger.com,1999:blog-4575584183591168020.post-63542097466639640382007-10-17T09:40:00.000-04:002007-12-14T08:27:40.380-05:00Free TS CALs Forever!I've given you a way to get around the Citrix licensing. It's only fair that I illustrate how to give the finger to Microsoft as well.<br /><br />You'll note from my last entry, that I'm a little pissed at old Billy Gates. So I got to thinking.. As a Citrix engineer, how can I screw Microsoft? Of course the answer is licensing - the same way MS screws us. It's kinda poetic when you think about it.<br /><br />There's potentially two ways to do this. Both of them are illegal, so you're on your own if you get caught.<br /><br />User Mode licensing - TS User licensing with Win2003 is something that most Citrix Engineers don't mess with much. The idea is that you set up user level licensing and then you pay for each user who would be accessing a terminal server in your environment. In reality, it works much differently.<br /><br />You see user level TS licensing is a new feature with Win2k3 server. Unfortunately, it's half baked. If you log on to a terminal server that's running in user licensing mode, it checks to see if there is a TS Licensing server on the network. That's it. If it finds a license server you're in. Money in the bank. So you can have a TS License server set up with only 1 CAL installed, and thousands of users would still be able to connect as long as your Terminal Servers are using user licensing. Nice huh?<br /><br />Now if you opt to stay with device cals (the older win2k model that most of us are probably familiar with) the solution is a bit more extensive, but is still within reach. <br /><br />The device CAL is stored on each workstation in the following registry location<br />HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\MSLicensing\Store\<br /><br />If the device tries to connect and doesn't have an entry there, a CAL is issued.. or if no CALs are available - a *temporary* CAL is issued. The temporary CALs expire in 120 days, which is plenty of time to get your users working. The problem of course is that after 120 days they get an error if there are no legitimate device CALs available. <br /><br />So the way to get around that is to have a TS Licensing server that has a few device CALs installed, but all of them being in use. In this scenario, workstations that connect without a CAL are issued a temporary one. If the temporary CAL is deleted before it expires, it will get another temporary CAL, and so on.<br /><br />It's the "and so on.." part that we're most concerned with. If you keep deleting the temporary CAL at login, they get a new one the next time they connect. This can be done over and over.<br /><br />So a simple line or two in the login script to delete the license store (the registry key above) when users logon is enough to keep your entire enterprise running on temporary CALs. <br /><br />Now go get busy, <br />-CGUnknownnoreply@blogger.com0tag:blogger.com,1999:blog-4575584183591168020.post-61520410369219627492007-10-17T08:34:00.001-04:002007-12-14T08:25:15.743-05:00TS License Server and the Chamber of SecretsSo here's the scoop. We're retiring our main TS Licensing server and replacing it with a new box. Sounds simple yes? Yeah not so much. <br /><br />The basic process is this you get on the phone with the MS Licensing Clearinghouse, which is a boiler room operation somewhere overseas, give them a bunch of numbers, and if the stars line up just right, then they give you a bunch of licenses to install.<br /><br />So after the myriad of mindless voice prompts:<br />"Please say the operating system you're caling about"<br /><br />"Windows 2003"<br /><br />"It sounded like you said Windows XP. Is this correct?"<br /><br />"No."<br />"I'm sorry, please say the name of the operating .."<br /><br />"Windows 2003"<br /><br />"It sounded like you said Windows 2003. Is that correct?"<br /><br />"Yes. Damn this is a pain"<br /><br />"Are you calling about licensing for terminal server, licensing for.."<br /><br />"Yes. Terminal Server"<br /><br />"I'm sorry. Please say your selection again.."<br /><br />"Terminal server. Terminal Server! Terminal-fucking-server. What the mickey mouse fuck is your problem? None of your other products even sound remotely like the words 'terminal server'. You blind horse fucking toaster.."<br /><br />"Transferring you to an operator"<br /><br />"Mother Fucker!"<br /><br />---Operator picks up---<br /><br />[in a very thick indian accent] "Halo and tank you fah callind microsoft lichsing. My name is Bill. How can I assist you today?"<br /><br />"Your name isn't Bill is it?"<br /><br />"My name is Bill, yes"<br /><br />"Seriously, what's your name"<br /><br />[quietly] "It is.. uh.. Prasheid"<br /><br />"Uh huh.. you guys in Redmond?"<br /><br />"Redmond?"<br /><br />"Nevermind."<br /><br />"Look I need 90 thousand TS device CALs."<br /><br />"What?" [Noises of the guy shitting a golden and curry scented brick can be faintly heard in the background]<br /><br />"TS CALs - 90 thousand of em"<br /><br />"90?"<br /><br />"Ninety .. Nine.. zero.. thousand. Nine.. Zero.. Zero..Zero.. Zero."<br /><br />"Hold on"<br /><br />[Shitty hold music ensues]<br /><br />"Sir I can't give you that many licenses."<br /><br />"Our SA agreement should cover that amount.. what's the problem?"<br /><br />"I'm not allowed to give you 90 thousand licenses"<br /><br />"But we paid for that many. How am I supposed to get them?"<br /><br />"You need to call back."<br /><br />"What?"<br /><br />"I can only grant 9999 per call"<br /><br />"So I have to call back 9 more times to get the licenses that we paid for?"<br /><br />"Yes sir"<br /><br />"That's bullshit."<br /><br />"I'm sorry?"<br /><br />"Nevermind.. alright then.. so let go ahead with it.<br /><br />"Okay sir.."<br /><br />"Buttfucker"<br />----------------------<br /><br /><br />F-ing rediculous.Unknownnoreply@blogger.com1