How to Install XenMobile 8.6 with XenMobile Netscaler Connector and XenMobile Mail Manager–Part 2

ActiveSync, Exchange 2010, Exchange 2013, Netscaler, Xenmobile

See other articles in the series:

Part 1

Part 3

In the first article, we went over the basic architecture.  Now we are going to go about installing XenMobile Device Manager on our PHDC-XENDM01 server.

First, lets go to www.citrix.com and download the needed software:

http://www.citrix.com/downloads/xenmobile/product-software/xenmobile-86-mdm-edition.html

image_thumb4

Besides that, we also need to install Java on the server.  At the time of this writing, I used Java version 7 Update 51:

image_thumb5

We also need to download a specific Java policy, Java Cryptography Extension Unlimited Strength from http://www.oracle.com/technetwork/java/javase/downloads/jce-7-download-432124.html

Once, we have the software, lets log into PHDC-XENDM01, which is running Windows Server 2012 STD.

First, lets disable IPV6 on the server.  Run the following command from powershell:

New-ItemProperty -Path HKLM:\SYSTEM\CurrentControlSet\services\TCPIP6\Parameters -Name DisabledComponents -PropertyType DWord -Value 0xffffffff

Also, run msconfig and disable UAC:

image_thumb71

After, reboot the server.

Once it comes back up, it’s time to install Java.  This is a simple, next, next finish install:

image_thumb11

Next, we need to go into UnlimitedJCEPolicy folder.  We need to copy the two files local_policy.jar and US_Export_policy.jar:

image_thumb13

To the following two locations:

C:\Program Files\Java\jdk1.7.0_51\jre\lib

C:\Program Files\Java\jre7\lib

If you don’t complete the above steps, you will get an error when you launch the Device Manager console, and iOS devices will not be able to register.

Next, lets get SQL ready.  We need to open SQL Management Studio on PHDC-SQL01.  Navigate to Security->Logins->New Login

image_thumb15

Make sure you create the login as SQL Server authentication.  We will use the login name xenmobile and set the password to whatever you like.  Next click the server roles tab, and we will select sysadmin.  Make sure that this security is allowed in your environment before making this setup.

image_thumb171

Before we start the install of Device Manager, if we are registering iOS devices, we need to request a certificate from Apple for an APNS certificate.  We then need to submit that request to XenMobile helpdesk for them to sign the request before completing the request with apple.

On a server with IIS installed (not the XenMobile Device Manager server, as IIS will break Device Manager), we need to create a certificate request for our Device Manager namespace, which in our case is mobile.accessabacus.com .  Open IIS Manager and click on Server Certificates:

image_thumb19

Then click on create Certificate Request, and fill out the certificate.  Ensure the common name is the one that devices will be hitting to register with Device Manager.  Again ours is mobile.accessabacus.com

image_thumb22

Select Next, and on Cryptographic Service Provider Properties, change the Bit Length to 2048:

image_thumb24

Select next, and save the request to your c drive:

image_thumb26

Next create an email to support@zenprise.com and request to have the certificate signed, ensure to attach the request you created above.  You will receive an email back with the signed request.

Take the file you get back, and log into https://identity.apple.com/pushcert.  If you don’t have a developer ID, create one, its free.

Click Create a Certificate:

image_thumb28

Accept the agreement, and upload the signed request file.  You can then download your complete certificate request:

image_thumb30

Now, log back into the same server where you created the certificate request and go back to IIS->Server Certificates.  Now click on Complete Server Certificate, and select the file you downloaded from the Apple website.  Give it a friendly name so you can easily identify it.  In my case I’ll call it iOS MDM.

image_thumb33

Next, open up MMC on the same server you completed the certificate request on. Click on File->Add/Remove Snap in, select certificates and add it, select local computer:

image_thumb351

Navigate to Certificates->Personal->Certificates.  Select the iOS MDM you created before, right click and select all tasks, export:

image_thumb37

Ensure you select Yes Export the private key:

image_thumb39

It will ask you to password protect the file, ensure you remember it as you will need it when you install Device Manager.

image_thumb401

Select a file name and save the file:

image_thumb421

Okay, we are FINALLY ready to install Device Manager.

Copy the PFX file you exported to PHDC-XENDM01.  Then, lets run the XenMobileDeviceManager Installer.

Select Next until you get to the component screen.  Unselect Database Server.  This will allow us to use Microsoft SQL and not the Postgres SQL that comes with Device Manager:

image_thumb45

Select the default install path and click next, let the installer begin.  It will ask you for the license file for the install, browse to it and select the file.  You can request free trials from Citrix as well:

image_thumb47

Next brings you to Configure Database Connection.  Select SQL Server/jTDS.  Fill out the info:

 

image_thumb52

The user name should be the user we created in SQL before.  The database name can be anything you want.  the installer will realize its missing and ask if you want to create it when you select Check the connection:

image_thumb54

Click create, and then next.

Leave this screen blank, and select next:

image_thumb56

Select next at the Configure iOS usage screen:

image_thumb58

Then click on next through all the IP configuration:

image_thumb60

image_thumb62

image_thumb64

Next we will come to the Define the Root Certification Authority.  This will create a self signed certificate store.  Enter a keystore password to create, to the same for the next three screens:

image_thumb66

image_thumb68

image_thumb71[1]

For the last one, define a certificate for HTTPS, you need to add the FQDN that users are connecting to this server on.  In our case, its mobile.accessabacus.com:

image_thumb73

**If after you want to replace this certificate with your own, complete the install and then follow my article here: http://port25guy.com/2013/11/18/import-a-3rd-party-certificate-into-xenmobile/**

Next page, browse to the PFX file that holds your Apple APNS certificate, and enter the password you used to protect it:

image_thumb75

Select next, leave the default port for Remote Support tunnels:

image_thumb77

Next, select the default admin username and password:

image_thumb80

Click Next, and then finish.

Next time, we will go over configuring the XenMobile Device Manager Server and publishing it using the Netscaler.

Comments;

  1. Pingback: How to Install XenMobile 8.6 with XenMobile Netscaler Connector and XenMobile Mail Manager–Part 1 | Exchange for the Working Man

  2. Pingback: How to Install XenMobile 8.6 with XenMobile Netscaler Connector and XenMobile Mail Manager–Part 4 | Exchange for the Working Man

  3. Pingback: How to Install XenMobile 8.6 with XenMobile Netscaler Connector and XenMobile Mail Manager–Part 3 | Exchange for the Working Man

Leave a Reply

Your email address will not be published. Required fields are marked *

You may use these HTML tags and attributes: <a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <del datetime=""> <em> <i> <q cite=""> <strike> <strong>