The Account Permissions in Citrix Virtual App and Desktop

The Account Permissions in Citrix Virtual App and Desktop

book

Article ID: CTX549286

calendar_today

Updated On:

Description

This article is designed to describe the account permissions in Citrix Virtual Apps and Desktops.

Instructions

User account:
 
PurposeRequired Permissions
Install CVAD componentsLocal administrator and domain user
Create site and upgrade siteSQL permission
● Server role: dbcreator, securityadmin
● Database role: db_owner
Join VDI into domain Create and join computer account on AD
Delete computer accountDelete computer account on AD
Reset computer account passwordReset computer account password on AD
Add user or group into delivery groupSearch and read user account or group on AD
Administrating Citrix siteConfigured via Studio > administrator
Publish certificate template on CA server"Issue and Manage Certificates" and "Manage CA" under Security tab of CA properties.

Computer account:
 
Computer accountPurposePermission
DDC hostname        Communication with site databasesite database role:
ADIdentitySchema_ROLE
Analytics_ROLE
AppLibrarySchema_ROLE    
chr_Broker
chr_Controller
ConfigLoggingSiteSchema_ROLE 
ConfigurationSchema_ROLE
DAS_ROLE
DesktopUpdateManagerSchema_ROLE
EnvTestServiceSchema_ROLE    
HostingUnitServiceSchema_ROLE
Monitor_ROLE
OrchestrationSchema_ROLE    
StorefrontSchema_ROLE
TrustSchema_ROLE
Communication with monitor databasemonitor database role:
MonitorData_ROLE
Communication with logging databaseloggingdatabase role:
ConfigLoggingSchema_ROLE
FAS hostnameRequest certificate from CARead and Enroll permissions on each certificate template used by FAS Servers.

Additional Information

https://support.citrix.com/article/CTX310627/
https://support.citrix.com/article/CTX237503/ ​​​​​​​
Powered by Wolken Software