# Aug, 2014

## SSL Offloading / Content Switching with Citrix NetScaler and PRTG Network Monitor

A quick one. I tried to publish the PRTG Webinterface through a NetScaler using SSL Offload and Content Switching. While testing my setup with a Webbrowser it all seemed to worked fine. But as I tried the iOS Application from Paessler I run into the following problem.

PRTG iOS APP

Since there are two Knowledge Base articles from Paessler available how to use an IIS or Apache as a Reverse Proxy (Link 1 Link 2) and I could access the Webinterface with my Browser I was pretty sure I made a mistake somewhere.

So I connected my iPad to XCode and checked the Console Logfile while setting up My Account.

XCode Error Log

Content Switching Policy

The App is trying to access prtg.trendelkamp.net:443. This got me thinking. I checked my NetScaler Content Switching policy.
The policy says that the hostname needs to be the same as I configured, prtg.trendelkamp.net. And since the PRTG App adds the port at the end of the hostname there is no matching policy anymore. As soon as I changed the expression to HTTP.REQ.HOSTNAME.CONTAINS(“prtg.trendelkamp.net”) the App worked fine 🙂

My name is Jens Trendelkamp. I currently work as an IT Consultant at sepago GmbH. My fields of specialty are Application Delivery, SBC\VDI Solutions and Enterprise Mobility based on Products from Microsoft and Citrix.

## How to change/modify Android WorxApp Icons

Last week I explained how to modify WorxApp Icons on iOS Devices. This time I want to show you how to do this for the Android Apps since the necessary steps are slightly different.

For Android we need to decompile the .apk files before we can edit them. To accomplish this we need the apktool. You can download the tool here. After you finished installing the apktool we can directly start with decompiling the .apk file. In this example I moved the .apk to the same folder as the apktool and run the following command: ./apktool d applicationname.apk After the decompiling is finished you´ll find a new directory within your apktool folder.

Android WorxApp

In this folder you can edit the Icons as you wish. Since the .png for different resolutions are spread across several folders I searched for launcher which will show all relevant files. As you can see I spent a lot of time to customize the files 😉

Android WorxApp

After you are done you have to rebuild the .apk file. This will also be done by the apktool. You can start this process with the following command: ./apktool b applicationfolder applicationname.apk

Android WorxApp

Now you can wrap the newly created .apk as you are used to with the MDX Toolkit.

My name is Jens Trendelkamp. I currently work as an IT Consultant at sepago GmbH. My fields of specialty are Application Delivery, SBC\VDI Solutions and Enterprise Mobility based on Products from Microsoft and Citrix.

## How to change/modify iOS WorxApp Icons

I was asked how to modify the WorxApp Icons to match the Cooperate Identity Policy. To accomplish this you will need a Mac with XCode installed, an Image Editor like Gimp and of course the .ipa file you want to modify.

Let´s start with extracting the icons from the .ipa file. If you do this by simply extracting the images from the .ipa file you will get the following error in Gimp and similar Programs.

iOS WorxApp

This is absolutely normal since these Images have been optimized. To undo this we need to “uncrush” them. I found a nice script by Peter Boctor which “uncrushes” whole .ipa files. The script can be found here.

Start the script with the .ipa file you want to edit.

iOS WorxApp

After the script successful ended you will find a new folder named like the .ipa file and an Images at the end.

For a better overview I move the files i need to edit to a separate folder. Now you can now start to edit/replace the images as you wish.

iOS WorxApp

After we have finished editing or replacing the images we want to “crush” them again. Since I ‘am a lazy guy I created a little script which “crushes” a whole directory.

#!/bin/sh

for png in find $1 -name “*.png”; do echo “crushing$png”

pngcrush -rem allb -brute “$png” temp.png mv -f temp.png$png

done;

I also added the path to pngcrush binary to my Environment Variable

/Applications/Xcode.app/Contents/Developer/Platforms/iPhoneOS.platform/Developer/usr/bin/

iOS WorxApp

You´ll start the script with the following command: ./crush.sh foldername

iOS WorxApp

iOS WorxApp

Your folder (in my example it´s called “png”) now contains “crushed” .png files which need to be moved to your original .ipa file. To do this I extracted the WorxMail Application folder from the .ipa/Payload folder. After that I opened the WorxMail Package by clicking “Show Package Contents”. Copy the modified Icons from your folder to the WorxMail Package and make sure you replace the files.

iOS WorxApp

iOS WorxApp

Of course you need to put the WorxMail Application back to the .ipa file. In my case I used WinZip and simply dragged the file to the correct place.

iOS WorxApp

Now it´s time to wrap the app as usual with the MDX Toolkit and upload it to your AppController. If all worked well you can now install/update the customized app which hopefully looks better than mine J

iOS WorxApp

My name is Jens Trendelkamp. I currently work as an IT Consultant at sepago GmbH. My fields of specialty are Application Delivery, SBC\VDI Solutions and Enterprise Mobility based on Products from Microsoft and Citrix.

## How to deploy WorxMail and WorxWeb for Windows Phone 8.1

While upgrading our sepago XenMobile Environment to support WorxMail and WorxWeb for Windows Phone 8.1 i thought to write a blog post about this since its not easy to find all needed informations.

– You will need a Microsoft Developer Account. Register here http://dev.windows.com/

– A Symantec Enterprise Mobile Code Signing Certificate is required. This can be orderd athttps://products.websecurity.symantec.com/orders/enrollment/microsoftCert.do You can find your Symantec-Publisher-ID within your Microsoft  Developer Account. Navigate to the Windows Phone Store Dashboard –> Account. Here should your Symantecd-ID be listed. After the ordering process is finished and you followed the instructions provided within the mails you will receive a *.pfx certificate.

– A Windows 8.1 64-bit computer is needed. Also .NET 4.5, Silverlight 5 Runtime, SDK and at least Visual Studio Express 2013 have to be installed.

– The following files from your MyCitrix Account have to be downloaded – MDX Toolkit for Windows Phone 8.1, WorxMail for Windows Phone 8.1 v9, WorxWeb for Windows Phone 8.1 v9 and Worx Home for Windows Phone 8.1 v9

– And of course a fully working XenMobile v9 Enterprise Environment.

If the prerequisites are complete we can finally start doing things

– At first we create a *.aetx file. This one is needed to configure the Windows Phone Enterprise Hub Policy within the Device Management. We need to open the Visual Studio Command Line as an Administrator. We navigate to C:\Program Files (x86)\Microsoft SDKs\Windows Phone\v8.1\Tools\AETGenerator and excute the following command “AetGenerator.exe “c:\Path\to\your\Symantec\Certificate.pfx” passwordforyourcertificate”. You should now find tree new files in the AETGenerator Directory. We only need the AET.aetx file.

– To create the Windows Phone Enterprise Hub Policy we also need to wrap the WorxHome App. We will stay in our Visual Studio Command Line an navigate to the Directory where the MDX Toolkit for Windows Phone 8.1 is located. Here we create two new Directorys. One for our unsigned apps and one for signed apps. You should put the three downloaded Apps from Citrix to the unsigned folder. To wrap the WorxHome App we will execute the following command:

The phonePulisherId can be found within the Microsoft Developer Account: Login and navigate to Windows Phone Store Dashboard –> Account.

– Now we can create our Windows Phone Enterprise Hub Policy. Login with your Adminstrator Account to your MDM Server and create a new Windows Phone 8.x Enterprise Hub Policy. Enter a Name and if you want a Comment and upload the created AET.aetx und your wrapped WorxHome.xap file. Don´t forget to add the created Policy to a Deployment Package

– To use WorxMail and WorxWeb we also have to wrap them. But the command is this time a bit different since we have to add the MDX Policies. Within the Visual Studio CL we execute the following command for WorxMail

and for WorxWeb

Make sure you copy the *.mdx file to a save place after you created them. With each new wrapping process the Preptool will emtpy the signed folder. You can upload both Apps now to your AppController and configure the MDX Policies as u used to.

– Finally you can enroll your Windows Phone. Citrix published a very nice Blog Article how to do thishttp://blogs.citrix.com/2014/07/03/windows-phone-8-1-device-enrollment-process-xenmobile-9-0/. But other mentioned in the Citrix Blog Auto Discover is not needed for this. We are the living proof