Citrix Pure AAD Intune integration for Windows 10/11 Single Session and Multisession

by Javier Lopez Santacruz, posted in Uncategorized

In a previous blog, I explained all the step-by-step configurations to deploy a Citrix Connectorless deployment with AAD in Azure: link.

In this blog, I will talk about the seamless Intune integration when deploying your Azure workloads with Citrix.

Azure Active Directory on its own doesn’t have any management capabilities. There is no GPOs or any other management functionalities as we had in our traditional on-prem AD environments. Intune or MEM (Microsoft Endpoint Manager) will be the Azure management component to deliver all the applications, policies, updates…

Note: When creating the Master image, the template VM image cannot be joined to Azure AD before starting the MCS process. In case you joint it before you can just use

dsregcmd /leave

command after the preparation is completed.

Single session

For the single-session Intune VDA deployment, all the integration is built in our UI and very easy to follow as I described in the previous blog.

Multisession

If we select the Multi-session OS as machine type we will not see the option to enrol the machines in Microsoft Intune in the UI. We will need to use PowerShell to provision this type of workload as we explain in Citrix docs: Citrix docs link

In this case, we will use PowerShell to provision this workload.

Prerequisites:

If you already work with Powershell and the Citrix SDK you can move to the deployment phase 🙂

Virtual Apps and Desktops Remote PowerShell SDK: https://www.citrix.com/downloads/citrix-cloud/product-software/xenapp-and-xendesktop-service.html

Basics steps

https://www.citrix.com/blogs/2022/02/03/getting-started-with-powershell-automation-for-citrix-cloud/

Creating a catalog:

https://developer-docs.citrix.com/projects/citrix-virtual-apps-desktops-sdk/en/latest/creating-a-catalog/

https://developer.cloud.com/citrixworkspace/citrix-daas/citrix-daas-rest-apis/docs/how-to-create-a-mcs-machine-catalog#create-a-machine-catalog-using-powershell

Deployment

The full script can be downloaded here:

AAD multisession IntuneDownload

Script Variables

You will need to gather all the data from your environment before running the script.

1 $catalogName = “in quotes the new catalog name”

2 $hosting = “”
3 $MasterImagePath = “X”
4 $MachineProfilePath = “”
5 $VnetPath = “”

6 $zoneUid =””

Now I will break down where to get all the info in your environment:

$catalogName you can customize as you wish, it will be the Catalog name on DaaS

$hosting = you can find the name under Resources in your hosting connection

$MasterImagePath =

1 get the correct resource group folder with this command from other catalog in the same RG:

Get-ProvScheme |select ProvisioningSchemeName, MasterImageVM, MachineProfile, NetworkMaps |fl

$MachineProfilePath = copy the Diskname and add .vm for $MasterImagePath  and copy the name in the of the $MachineProfilePath

$VnetPath =

Get-ProvScheme -ProvisioningSchemeName yourVMname).NetworkMaps | fl

$zoneUid =

After successfully completing the deployment you will see your brand new Machine catalog in your Citrix cloud.

Published by Javier Lopez Santacruz

Senior Technologist - https://www.linkedin.com/in/javierlopezs/

One thought on “Citrix Pure AAD Intune integration for Windows 10/11 Single Session and Multisession

  1. Pingback: Citrix Modern Cloud deployment in Azure (AAD, MEM/Intune and Non-domain Windows 10/11 desktops ) step-by-step configuration

Leave a Reply

Please log in using one of these methods to post your comment:

Gravatar
WordPress.com Logo

You are commenting using your WordPress.com account. Log Out /  Change )

Twitter picture

You are commenting using your Twitter account. Log Out /  Change )

Facebook photo

You are commenting using your Facebook account. Log Out /  Change )

Cancel

Connecting to %s

This site uses Akismet to reduce spam. Learn how your comment data is processed.