These articles focus on VMware vSphere. For Hyper-V, see Installing and configuring Unidesk 4.x by George Spiers.
- Import Enterprise Layer Manager Appliance
- ELM IP Address
- Appliance Certificate
- Administrator Password
- File Share
- Active Directory
- Provisioning Services Publishing
Import Enterprise Layer Manager Appliance
- In vSphere Web Client, right-click a cluster, and click Deploy OVF Template.
- In the Select template page, browse to the vmware_188.8.131.52.ova file, and click Next. This file is downloaded from unidesk.com
- In the Select name and location page, give the machine a name, and click Next.
- In the Select a resource page, select a cluster, and click Next.
- In the Review details page, click Next.
- In the Accept license agreements page, click Accept, and then click Next.
- In the Select storage page, select a datastore. The ELM appliance stores all master layers inside the appliance, so ensure there’s sufficient disk space (typically 300-500 GB) for the virtual appliance.
- You can view the appliance’s consumed disk space inside the Unidesk ELM Management Console at System > Manage Appliance.
- To expand the storage, either increase the existing disk size, or add a disk to the VM. Then on the right is a link to Expand Storage.
- Select thin provision, or not. Then Click Next
- In the Select networks page, change the IP Allocation to Static – Manual, and then click Next.
- In the Ready to complete page, click Finish.
- See Open firewall ports for Unidesk, as needed at Unidesk.com.
Configure ELM IP Address
- Once imported, power on the ELM appliance.
- After the RUN_ONCE commands are complete, login to the console as administrator with a password of Unidesk1. You might have to press enter before the logon prompt appears.
- Enter c to configure networking.
- Enter s to assign a static network.
- Enter a new IP address for this appliance. Then enter y to save settings and restart networking.
- Use Internet Explorer to connect to the ELM IP address. Silverlight does not work in Chrome.
- If Silverlight is not installed, click the button to install it.
- Uncheck the two boxes, and then click Install now.
- Click Close.
- You can login as administrator and Unidesk1 again.
- The first time you logon you are prompted with the End User License Agreement. Check the box next to I accept the Terms and Conditions, and then click Close.
- When prompted for a license, click Manage License.
- You can either upload a license file, or enter your unidesk.com credentials to retrieve a license. Click Finish when done.
- The Welcome to... screen appears at every logon until you finish all three steps. Feel free to review the steps, or just click Close.
- In the Unidesk ELM Management Console, go to System > Settings and Configuration.
- Scroll down until you see the HTTP Certificate Settings section. Click the Edit button.
- Scroll down and click Upload.
- Browse to a PEM file that contains an unencrypted RSA key, and one certificate. You can use OpenSSL to convert a .pfx file to a PEM file.
- If you scroll up, it should show you the Common Name of the certificate you uploaded.
- Scroll down and click Save.
- Click Yes to restart the web server.
- Now you can point your browser to the https URL and not see any certificate errors.
- At System > Settings and Configuration, you can scroll down to the Security Settings section to edit the Management Console idle timeout.
- Go to Users > Users.
- Click the Administrator account to highlight it. On the right, click Edit Properties
- On the General page, enter a new password, and click the down arrow (Next).
- In the Contact Information page, click Next.
- In the Roles page, click Next.
- In the Confirm and Complete page, click Update User.
- You can logoff and logon again to test your new password.
- On a Windows file server, create a new share that will store the Elastic Layers. Only SMB shares are supported with Elastic Layers. NFS shares will not work with Elastic Layers.
- For High Availability, you can use any file server High Availability technology like DFS, File Server Clustering, etc.
- Give Everyone (or equivalent) Full Control to the share.
- On the Security tab, make sure the Users groups only have Read access (no Modify/Write).
- Add a service account to the share, and give it Modify access. Unidesk uses this service account to upload elastic layers to the share.
- Back in the ELM, go to System > Settings and Configuration.
- Scroll down until you get to the Network File Shares section. Click Edit.
- Make sure Windows share is selected. Elastic Layers don’t work on NFS.
- Enter the file share path, the service account credentials, and click Test Network File Share.
- Click Save.
- Go to Users > Directory Service.
- On the right, click Create Directory Junction.
- Give the “junction” a friendly name (e.g. domain name).
- Enter one domain controller address. LDAP Load balancing is recommended.
- Change the port to 636 (assuming you have certificates on your domain controllers).
- Click Test Connection.
- When prompted with a certificate error, click OK.
- Check the box next to Ignore Certificate Errors, and then click Next.
- You’ll need a bind account. Get the full Distinguished Name (look in Active Directory Users & Computers > user > Attribute Editor) and enter it here in the Authentication Details page with the password. Click Test Authentication.
- After successful authentication, click Next.
- In the Distinguished Name (DN) Details page, click the drop down to select the Base DN. Click Test Base DN. And then click Next.
- In the Attribute Mapping page, leave them set to the defaults, and click Next.
- In the Confirm and Complete page, click Create Directory Junction.
Role Based Access
- Go to Users > Directory.
- Search through the tree and find your Unidesk Admins group. Select it. On the right, click Edit Properties.
- In the Machine Association page, click Next.
- In the Roles page, change it to Administrator, and click Next.
- In the Confirm and Complete page, click Update Group.
- Logout of Unidesk.
- Log back in using an AD account that’s in your Unidesk admins group.
Citrix Provisioning Services Publishing Agent
To publish to PvS, you install the Unidesk Agent on the PvS Servers. It’s only needed on one PvS server.
- From Install the Unidesk Agent (required for PVS and Connector Scripts) at Unidesk.com.
- Ensure the PvS services are running as a domain account. Network Service won’t work.
- Run the following command on the PvS 7.7 or newer Server:
"C:\Windows\Microsoft.NET\Framework64\v4.0.30319\InstallUtil.exe" "c:\program files\citrix\provisioning services console\Citrix.PVS.snapin.dll"
- If PvS 7.6, then run the following command instead:
"C:\Windows\Microsoft.NET\Framework64\v4.0.30319\InstallUtil.exe" "c:\program files\citrix\provisioning services console\MCliPSSnapIn.dll"
- If PvS 7.6, then run the following command instead:
- Go to the downloaded Unidesk files and run unidesk_agent_install.exe as administrator.
- In the Welcome to the InstallShield Wizard for Unidesk Agent page, click Next.
- In the License Agreement page, select I accept the terms, and click Next.
- In the Agent Port page, click Next. The installer automatically opens this port in the Windows Firewall.
- In the Ready to Install the Program page, click Install.
- In the Register the agent with a Enterprise Layer Manager page, enter the ELM address, and ELM credentials. Click Register.
- Registration logs can be found at C:\Program Files (x86)\Unidesk\Agent\Logs.
- In the InstallShield Wizard Completed page, click Finish.