Product Documentation

Installing XenMobile

Nov 06, 2015
The XenMobile virtual machine (VM) runs on Citrix XenServer, VMware ESXi, or Microsoft Hyper-V. You can use XenCenter or vSphere management consoles to install XenMobile. Before you start, see the System Requirements for XenMobile 10.1 and the XenMobile Pre-Installation Checklist.
Note: Ensure that the hypervisor is configured with the correct time because XenMobile uses that time.  Also, be sure that the XenMobile virtual machine is configured to synchronize guest time with the host in the Virtual Machine properties.

XenServer or VMware ESXi prerequisites: Before installing XenMobile on XenServer or VMware ESXi, you must do the following. For details, refer to your XenServer or VMware documentation.

  • Install XenServer or VMware ESXi on a computer with adequate hardware resources.
  • Install XenCenter or vSphere on a separate computer. The computer that hosts XenCenter or vSphere connects to the XenServer or VMware ESXi host through the network.

FIPs mode prerequisites: Before installing a XenMobile Server in FIPS mode, you need to complete prerequisites with SQL Server. For details, see Configuring FIPS with XenMobile.

Hyper-V prerequisites: Before installing XenMobile on Hyper-V, you must do the following. For details, refer to your Hyper-V documentation.

  • Install Windows Server 2008 R2, Windows Server 2012, or Windows Server 2012 R2 with Hyper-V enabled, role enabled, on a computer with adequate system resources. While installing the Hyper-V role, be sure to specify the network interface cards (NICs) on the server that Hyper-V will use to create the virtual networks. You can reserve some NICs for the host.
  • If you install Windows Server 2008 R2 or Windows Server 2012, do the following:
    • Delete the file Virtual Machines/<build-specific UUID>.xml
    • Move the file Legacy/<build-specific UUID>.exp into Virtual Machines

    These steps are necessary because there are two different versions of the Hyper-V manifest file representing the VM configuration (.exp and .xml). The Windows Server 2008 R2 and Windows Server 2012 releases support only .exp. For these releases, you must have only the .exp manifest file in place before installation.

    Windows Server 2012 R2 does not require these extra steps.

Downloading XenMobile Product Software

You can download product software from the Citrix web site. You need to log on to the site first and then use the Downloads link on the Citrix web page to navigate to the page containing the software you want to download.

To download the software for XenMobile

  1. Go to the Citrix web site.
  2. Next to the Search box, click Log On and log on to your account.
  3. Click the Downloads tab.
  4. On the Downloads page, from the select product list, click XenMobile.

  5. Click Go. The XenMobile page appears.
  6. Expand XenMobile 10.
  7. Click XenMobile 10.0 Server.
  8. On the XenMobile 10.0 Server edition page, click Download next to the appropriate virtual image to use to install XenMobile on XenServer, VMware, or Hyper-V.
  9. Follow the instructions on your screen to download the software.

To download the software for NetScaler Gateway

You can use this procedure to download the NetScaler Gateway virtual appliance or software upgrades to your existing NetScaler Gateway appliance.

  1. Go to the Citrix web site.
  2. If you are not already logged on to the Citrix web site, next to the Search box, click Log On and log on to your account.
  3. Click the Downloads tab.
  4. On the Downloads page, from the select product list, click NetScaler Gateway.
  5. Click Go. The NetScaler Gateway page appears.
  6. On the NetScaler Gateway page, expand 10.5.
  7. Under Firmware, click the appliance software version you want to download.
    Note: You can also click Virtual Appliances to download NetScaler VPX. When you select this option, you receive a list of software for the virtual machine for each hypervisor.
  8. Click the appliance software version you want to download.
  9. On the appliance software page for the version you want to download, click Download for the appropriate virtual appliance.
  10. Follow the instructions on your screen to download the software.

Configuring XenMobile for First-Time Use

Configuring XenMobile for the first time is a two-part process.

  1. Configure the IP address and subnet mask, default gateway, DNS servers, and so on for XenMobile by using the XenCenter or vSphere command-line console.
  2. Log on to the XenMobile management console and follow the steps in the initial logon screens.

Configuring XenMobile in the Command Prompt Window

  1. Import the XenMobile virtual machine into Citrix XenServer, Microsoft Hyper-V, or VMware ESXi. For details, see XenServer, Hyper-V, or VMware documentation.
  2. In your hypervisor, select the imported XenMobile virtual machine and start the command prompt view. For details, see the documentation for your hypervisor.
  3. From the hypervisor’s console page, create an administrator account for XenMobile in the command prompt window by typing the administrator user name and password.
    When you create or changed passwords for the command prompt administrator account, Public Key Infrastructure (PKI) server certificates, and FIPS, XenMobile enforces the following rules for all users except Active Directory users whose passwords are managed outside of XenMobile:
    •  The password must be at least 8 characters long and must meet at least three of the following complexity criteria:
      • Uppercase letters (A through Z)
      • Lowercase letters (a through z)
      • Numerals (0 through 9)
      • Special characters (such as, !, #, $, %)

    No characters, such as asterisks, are shown when you type the new password. Nothing appears.

  4. Provide the following network information and then, type y to commit the settings:
    1. IP address
    2. Netmask
    3. Default gateway
    4. Primary DNS server
    5. Secondary DNS server (optional)

      Note: The addresses shown in this and following images are non-working and are provided as examples only.
  5. Type y to increase security by generating a random encryption passphrase or n to provide your own passphrase. Citrix recommends typing y to generate a random passphrase. The passphrase is used as part of the protection of the encryption keys used to secure your sensitive data. A hash of the passphrase, stored in the server file system, is used to retrieve the keys during the encryption and decryption of data. The passphrase cannot be viewed.

    Note: If you intend to extend your environment and configure additional servers, you should provide your own passphrase. There is no way to view the passphrase if you selected a random passphrase.

  6. Optionally, enable Federal Information Processing Standard (FIPS). For details about FIPS, see XenMobile FIPS 140-2 Compliance. Also, be sure to complete a set of prerequisites, as discussed in Configuring FIPs with XenMobile.   

  7. Provide the following information to configure the database connection:

    1. Your database can be local or remote. Type l for local or r for remote.
    2. Select the database type. Type mi for Microsoft SQL or type p for PostgreSQL.
      • Citrix recommends using Microsoft SQL remotely. PostgreSQL is included with XenMobile and should be used locally or remotely only in test environments.
      • Database migration is not supported. Databases created in a test environment cannot be moved to a production environment.
    3. Optionally, type y to use SSL authentication for your database.
    4. Provide the fully qualified domain name (FQDN) for the database server. This one host server provides both device management and app management services.
    5. Type your database port number if it is different from the default port number. The default port for Microsoft SQL is 1433 and the default port for PostgreSQL is 5432.
    6. Type your database administrator user name.
    7. Type your data base administrator password.
    8. Type the database name.
    9. Press Enter to commit the database settings.
  8. Optionally, type y to enable clustering XenMobile nodes, or instances.
    Important: If you enable a XenMobile cluster, after system configuration is complete, be sure to open port 80 to enable real time communication between cluster members.
  9. Type the XenMobile server fully qualified domain name (FQDN).

  10. Press Enter to commit the settings.
  11. Identify the communication ports. For details on ports and their uses, see XenMobile Port Requirements.
    Note: Accept the default ports by pressing Enter (Return on a Mac).

  12. Skip the next question about upgrading from a previous XenMobile release because you are installing XenMobile for the first time.
  13. Type y if you want to use the same password for each Public Key Infrastructure (PKI) certificate. For details on the XenMobile PKI feature, see Uploading Certificates in XenMobile.

    If you intend to cluster nodes, or instances, of XenMobile together, you must provide the identical passwords for subsequent nodes.
  14. Type the new password and then, re-enter the new password to confirm it.
    Note: No characters, such as asterisks, are shown when you type the new password. Nothing appears.
  15. Press Enter to commit the settings.
  16. Create an administrator account for logging on to the XenMobile console with a web browser. Be sure to remember these credentials for later use.

    Note: No characters, such as asterisks, are shown when you type the new password. Nothing appears.
  17. Press Enter to commit the settings. The initial system configuration is saved.
  18. When asked if this is an upgrade, type n because it is a new installation.
  19. Copy the complete URL that appears on the screen and continue this initial XenMobile configuration in your web browser.


 Configuring XenMobile in a Web Browser

After completing the initial portion of the XenMobile configuration in your hypervisor Command Prompt window, complete the process in your web browser.

  1. In your web browser, navigate to the location provided at the conclusion of the command prompt window configuration.
  2. Type the XenMobile console administrator account user name and password you created in the command prompt window.

  3. On the Get Started page, click Start. The Licensing page appears.
  4. Configure the license. XenMobile comes with an evaluation license valid for 30 days. For details on adding and configuring licenses and configuring expiration notifications, see Licensing for XenMobile.
    Important: If you intend to cluster nodes, or instances, of XenMobile, you need to use the Citrix Licensing on a remote server.
  5. On the Certificate page, click Import. The Import dialog box appears.
  6. Import your APNs and SSL Listener certificate. For details on working with certificates, see Certificates in XenMobile.
    Note: This step requires restarting the server.
  7. If appropriate to the environment, configure NetScaler Gateway. For details on configuring NetScaler Gateway, see NetScaler Gateway and XenMobile.
    • You can deploy NetScaler Gateway at the perimeter of your organization's internal network (or intranet) to provide a secure single point of access to the servers, applications, and other network resources that reside in the internal network. In this deployment, all remote users must connect to NetScaler Gateway before they can access any resources in the internal network.
    • Although NetScaler Gateway is an optional setting, after you enter data on the page, you must clear or complete the required fields before you can leave the page.
  8. Complete the LDAP configuration to access users and groups from Active Directory. For details on configuring the LDAP connection, see LDAP Configuration.
  9. Configure the notification server to be able to send messages to users. For details on notification server configuration, see Notifications in XenMobile.