After users change their network password (Active Directory), launching XenApp applications starts failing as the process takes too long and hits some sort of Citrix timeout. If we RDP directly to one of the XenApp servers (outside of Citrix) as that problematic user, the login process takes 5-10 minutes but it does complete successfully. After this RDP process, then the user can launch Citrix apps normally and they open fairly quickly.
My IT counterparts have found it seems to be directly related to the Windows Credential Manager. The problem exist with cached credentials located in the profile:
The only way to see these is to show hidden files and un-hide protected system files. These files are created via the Windows Credential Manager Service.
Was hoping that we could simply disable this service and thus resolve the problem, however was uncertain what would break if we did so. So rather than pushing it out last night I did some testing. I disabled the service on 3 of the xen-app servers and then tested by logging into each one of them while changing my password in between. The good news is it resolved the long login time caused by password changes. Re-enabling the service caused the long log in time to return. However then I started to notice what it broke, Every time I logged in outlook thought I was new and I have to go through the setup process again. IE would not store passwords or remember usernames. I would imagine that I would find additional issues if I would have kept testing, but I had seen enough to know that simply disabling the service causes a lot of problems. Thus I re-enabled it and did NOT roll out the changes.
Any thoughts on what might be causing this or how to fix?
Question
Lucas Phelps
This problem started a couple of months ago.
After users change their network password (Active Directory), launching XenApp applications starts failing as the process takes too long and hits some sort of Citrix timeout. If we RDP directly to one of the XenApp servers (outside of Citrix) as that problematic user, the login process takes 5-10 minutes but it does complete successfully. After this RDP process, then the user can launch Citrix apps normally and they open fairly quickly.
My IT counterparts have found it seems to be directly related to the Windows Credential Manager. The problem exist with cached credentials located in the profile:
\\fileserver\CitrixProfiles\johnsmith\windows\UPM_Profile\AppData\local\microsoft\Credentials
The only way to see these is to show hidden files and un-hide protected system files. These files are created via the Windows Credential Manager Service.
Was hoping that we could simply disable this service and thus resolve the problem, however was uncertain what would break if we did so. So rather than pushing it out last night I did some testing. I disabled the service on 3 of the xen-app servers and then tested by logging into each one of them while changing my password in between. The good news is it resolved the long login time caused by password changes. Re-enabling the service caused the long log in time to return. However then I started to notice what it broke, Every time I logged in outlook thought I was new and I have to go through the setup process again. IE would not store passwords or remember usernames. I would imagine that I would find additional issues if I would have kept testing, but I had seen enough to know that simply disabling the service causes a lot of problems. Thus I re-enabled it and did NOT roll out the changes.
Any thoughts on what might be causing this or how to fix?
Link to comment
5 answers to this question
Recommended Posts
Archived
This topic is now archived and is closed to further replies.