This message was deleted.
# citrix-vads
Slackbot
03/20/2023, 3:20 PMThis message was deleted.
j
James Rankin
03/20/2023, 3:33 PMJust set different policies for different user groups. Lots of details here https://james-rankin.com/articles/windows-session-timeouts-on-citrix-a-brief-guide/
g
Gartes
03/21/2023, 3:03 PMThanks @James Rankin !
I swear - I've read every single of your articles, but somehow I missed this one 😉
Somehow it seems that I've also missed that it's possible to set session limits on a user base. Since Server 2008R2 I've always built them on a computer level.
Unfortunately this is what brakes my neck now - the computer baseline policy has session limits implemented and this makes it impossible to use the user settings.
Also the Citrix Policies are ignored if I configure them 😞
Without "reorganizing" the baseline GPO (which isn't an option at the moment) I fear I'm stuck.
Does someone know if the Citrix Session Timers still rely on those "finherit..." reg keys?
My thought is: I could disable the Computer RDSH Session timers, set the needed "finherit" reg keys to enable the counter functionality and then configure some Citrix user session counters.
Good luck with your house renovation! 👍 (I'm luckily almost done with my house too)
j
James Rankin
03/21/2023, 3:04 PMWhy are the Citrix policies ignored? Is it because the RDSH Computer policies are in play? Are the Citrix policies actually getting written to the Registry (HKLM\Policies\Citrix\[SESSIONID]?
James Rankin
03/21/2023, 3:13 PMOf course, you could just tell these users to install Caffeine on their end devices.....works a treat for me 🙂
g
Gartes
03/21/2023, 3:15 PMI suppose it's because I've to disable the session limits on a lower ranked computer based gpo and then try to re-enable them on a higher ranked user gpo.
I suppose that deactivating them on a computer level takes precedence over "re-activating" them on a user level - even the user gpo is ranked higher.
also bringing in the Citrix policies instead the user rdsh settings doesn't change anything
Gartes
03/21/2023, 3:16 PMthis is our scenario:
j
James Rankin
03/21/2023, 3:18 PMYeah I think Computer overrides User if the same settings are configured
James Rankin
03/21/2023, 3:19 PMCould you not switch the 10 hour timeout to a User setting as well? Technically it shouldn't make any difference.....then the higher User setting should override it
James Rankin
03/21/2023, 3:20 PMUnless it's specifically mandated as a Computer GPO, which wouldn't surprise me
g
Gartes
03/21/2023, 3:25 PMgenerally switching over to user: well - that's what I'm thinking about since a couple of hours now. It would cause some effort in testing, change advisory board discussions,... + the risk to damage something for 1,5k users.
On the other hand I'd need the flexibility for 4 users that want to run some SAP reports "in the background" 4 times a month. They are not willing to run the reports on their local computer, because of the CPU consumption and because they can't hibernate their laptops and take them with them when they switch to their home-office.
j
James Rankin
03/21/2023, 3:28 PMOr just install Caffeine for those 4 users on their local machines which will make sure the session limits never apply (there may be a security implication however dependent on your stance)
g
Gartes
03/21/2023, 3:34 PMyes - this would be a quick alternative.
will check this out - hope it's still working with workspace app...
thanks a lot for reading all this and all your suggestions!!
j
James Rankin
03/21/2023, 3:45 PMit still works, I use it every day. Occasionally it has crashed (not very often) but a reboot usually sorts