Horizon Cloud Pod Architecture Tools

A Horizon Cloud Pod Architecture enabled environment with horizon connection server version 7.x

Please download the instructions.pdf here

How it works:

Environments where Global entitlements, user and groups assignments are in thousands, it takes time proportionately based on the entries as it will execute commands one by one for importing the data back. Foreign Security Principal needs to have at least one sync successful ( It happens all the time, else it will fail to add user or group entitlements to global entitlements)

NOTE: Horizon 7.10 on wards daily global data backup is available. This is not a replacement to that functionality. Horizon global data recovery using vdmadmin can be used to recover the data if no conflicts are identified in it. Command executor is helpful for older 7.x horizon environments in faster CPA recovery. Even in newer environments it helps in automation of the lmvutil execution as part of CPA build operations.

Horizon ADLDS Analyzer

A second utility is to analyze horizon global data and fix the stale user entries which are deleted or having an incomplete information because of replication issues. For example, Home site assignment page stops listing data if the user is no longer having an Active Directory account.

On the local database instance, two small utilities are added now.

• Checks the application icons integrity. As in some rare occasions the custom icon mapping gets lost and it blocks the local inventory to get loaded. This utility will export all orphaned icons to file. All such entries can be removed from ADLDS instance manually.
• Exports all the VDI servers which are available in the local database to a CSV file.

Identifies the stale user entries mapped to global assignments and highlights that it needs to be deleted though it is not hindering in the day to day horizon administration activities.

There are some rare occasions, where the global entitlements gets deleted and global assignments still have the deleted reference of it. In such cases the GUI management operations are not possible. To identify such broken entries and fix it this utility provides option for it.

Note: SID History is not supported in Horizon product and so is the analyzer. It cannot detect the missing users in active directory with the old SID mapped to it. It would be an enhancement if this tool gets enough support from customers like you to add more feature to it.

Regarding the tools heap memory usage:

Depending on the size of the environment the JVM heap memory can be adjusted in adlds-analyzer.cmd, lmvtools.cmd. As a default option, up to 2 GB of heap will be used by this tool.

See the details in the instructions .pdf in the downloads box.

Version 1.3

• Minor bug fix on addressing an null pointer access while identifying FSP sync record from database entries.
• adlds-analyzer --scan now runs successfully.

Version 1.2

• Tested on Horizon 7.13.x and Hiorizon 8.4.x
   Deleted users or groups identified for Home Site assignment.
• Use this command resolve the deleted users assignments. Be sure to make sure your administrator account has access to Active Directory before resolving it.,
  adlds-analyzer.cmd --resolve-site-ga
• Addressed Log4J errors reported in Bugs to rely on existing Horizon Connection Server libraries for adlds-analyzer.cmd
• Now stale Global Entitlement Assignment with only Local Entitlement reference gets identified it can get resolved using command line options adlds-analyzer.cmd --resolve-localpool-ga
• With Horizon 8.4 locale bundles are in JSON format. New parsing logic is added to support other launguages while exporting data as CSV

Version 1.1

Based on the customer requests, have added few more command line options for CSV reports generation and AD LDS data cleanup.

What's New:

Adds support to cleanup stale global local entitlement assignments from ADAM DB.

• Global AD LDS Command:
  adlds-analyzer.cmd --resolve-localpool-ga
• Scans the cloud pod database and resolves the stale entries of local pool global assignments.
  Note: This resolves deleted local pool conflicts of current pod only. If dashboard session data load error or session search fails in a different pod, a scan and resolve has to be executed in that pod.
• List of new commands added to Local AD LDS:
  adlds-analyzer.cmd --export-machine
• All machine data exported as CSV file. Compatibility: Horizon 7.10 and above, 8.x
  adlds-analyzer.cmd --export-machine -pool="DesktopPool1,DesktopPool2"
• All machine data exported as CSV file. Use -pool= to filter machines by desktop pool name. Compatibility: Horizon 7.10 and above, 8.x
• Spaces are not allowed in -pool= optional argument.
  adlds-analyzer.cmd --export-session
• All local sessions data exported as CSV file. Compatibility: Horizon 7.10 and above, 8.x
  adlds-analyzer.cmd --export-session -pool="PoolName1,PoolName2" -farm="FarmName1,FarmName2"
• All local session data exported as CSV file. Use -pool= to filter sessions by desktop pool name. -farm= filter sessions by RDS farm name. Compatibility: Horizon 7.10 and above, 8.x
• Spaces are not allowed in -pool= and -farm= optional argument.
  adlds-analyzer.cmd --check-apps-integrity
• Scans and lists the stale application icons in local ADLDS instance.
  adlds-analyzer.cmd --check-apps-integrity -input="AbsoluteFilePath1","AbsoluteFilePath2"
• Reads the list of adam LDIF files in "-input=" for parsing and exports the stale application icons data to a file.
  adlds-analyzer.cmd --export-named-lic-users
• Exports the utilized and un-utilized named license users list information.