How to create a PIT file manually (4259143)

How to create a PIT file manually.

On the client machine:

• Click on Start | Programs (or All Programs) | Quest Software | vWorkspace Connector
• Run Remote Desktop Connection program (pntsc.exe)
• Tabs: Display, Local Resources and Experience are optional but they control important resources redirection and appearance on the client system
• Click on Credentials tab and fill user's credentials and domain. The "Save my password" checkbox can be checked, otherwise user will be prompted for password on every connection
• Click on General tab
• Click on Application radio button
• Click on Connectivity button

Connectivity dialog is the most important part of PNTSC configuration. It links client with vWorkspace Farm Connection Broker machine(s) either directly in the same LAN or through the Secure-IT CB proxy.

Internal connection:

Protocol: HTTP (unless Connection Broker itself is configured with SSL which is quite rare)
Port: 8080 (default port, can be reconfigured through vWorkspace Management console if needed)
Server list: clicking on Add button, add IPs of all Connection Broker machines. It's possible to use DNS/NetBIOS names if they are resolvable on the client machine
Connection Options: make sure that all checkboxes are unchecked (NAT Support, RDP over SSL, EOP Xtream)
Proxy server: do not use proxy
 

External connection:

Protocol: HTTPS
Port: Secure-IT Connection Broker proxy port. Should be available externally, properly forwarded by corporate firewall to Secure-IT gateway machine and enabled through the Secure-IT Control Panel applet
Server list: usually single entry which corresponds to external FQDN of company. Must be the same as certificate name. For example: ssl.mycompany.com. If certificate was issued by name, filling IP address here will not work.
Connection options:
- Enable NAT - unchecked
- Enable RDP over SSL - checked. Please fill it with the same external FQDN:port, where port should correspond to Secure-IT configuration, RDP proxy port. Usually it's 443
- Enable WAN acceleration (EOP Xtream) - depends on latency between user's computer and corporate farm. The easiest way to test it is when corporate firewall can respond to ICMP (ping). If ping delays for less than 30ms - leave EOP Xtream unchecked. Over 30 ms - check the EOP Xtream checkbox and leave the default value (TCP:3389)
Proxy server: try not to use proxy server option (do not use). Some proxy servers can block communication over 443 port because vWorkspace uses TCP 443 for tunneling and it's not a HTTPS traffic.

• After Connectivity dialog configuration, click OK to close it, then click on drop-down list in General tab to bring a list of applications. If client was able to contact brokers and brokers validated user's credentials successfully - user should see the list of published applications.
• Click on Save As to save configuration into PIT file.