This section provides information about troubleshooting this release. It contains the following topics:
Tip
For more information about known issues, see Issues tables.
You can use one of the following commands to configure the WinRM:
Note
If you are logged in on a non-Administrator account, you must either right-click the Command Prompt icon in the Start Menu and select Run as Administrator, or use the Runas
command at the command prompt.
The winrm quickconfig
command creates a firewall exception only for the current user profile. If the firewall profile is changed for any reason, you must run the winrm quickconfig
command again to enable the firewall exception for the new profile.
WinRM automatically configures the ports that it uses. The port number might be different, depending on the version of WinRM that you install.
For WinRM 2.0 or later:
The winrm quickconfig
command also performs following tasks:
Note
During WinRM configuration, on machines with User Access Control (UAC) enabled, ensure that LocalAccountTokenFilterPolicy is configured to grant administrative rights remotely to local users. If you do not configure this during WinRM configuration, then you need to manually add the LocalAccountTokenFilterPolicy registry key.
regedit,
and press ENTER.Tip
For an SSL certificate to be valid, its CN value must match the host name, it must not be expired, revoked, or self-signed, and it should be valid for server authentication.
You can use the following commands to view the WinRM configuration details:
You can use the following commands to verify the WinRM connection with a remote host.
winrs -r:http://<hostname>:<port> -u:<domain\username> -p:<password><sys_command>
winrs -r:https://<hostname>:<port> -u:<domain\username> -p:<password><sys_command>
Note
<sys_command> refers to any Microsoft Windows operating system command, such as DIR or SYSTEMINFO.
For issues in data collection for published applications (BTK_APPLICATION
application class) perform the following:
/BTK_FARM/_CollectionStatus
parameter.
2 Comments
Daric Smith
The above information should not be in "Troubleshooting" this should be in the "Configuration after installation" and should have another section called "Pre-configure the OS environment". This is base installation information.
You should also include information on the XenApp account requirements such as "View Only" in the farm.
On top of the above, the XenApp account needs to be either a local administrator on any of the XenApp servers or in the WinRM security group if it exists, otherwise you will get "Access Denied" errors from Patrol.
It should be noted that WinRM needs to be configured on every server in the farm or you get numerous errors in the btk_server log and you won't get server performance data or active session data.
From the above it should be noted that the above configurations can be done through a Domain Group Policy to save configuration steps on individual servers.
Finally, this troubleshooting should reference that Patrol will log KM errors to the file: btk_server_nnn.log in the %PATROLHOME%\log directory.
Daric Smith
To view configuration errors through the operations console do the following (For some reason I can't include a picture):
One of the errors we saw:
ERROR:80338012:The client cannot connect to the destination specified in the request.
Verify that the service on the destination is running and is accepting requests.
Consult the logs and documentation for the WS-Management service running on the destination, most commonly IIS or WinRM.
If the destination is the WinRM service, run the following command on the destination to analyze and configure the WinRM service: "winrm quickconfig".
Another one we saw when we tried to retrieve license usage. This was resolved by enabling WinRM on the Citrix license server.
ERROR: Can't connect to the license server <license_server_name>.
ERROR:80338012:The client cannot connect to the destination specified in the request.
Verify that the service on the destination is running and is accepting requests.
Consult the logs and documentation for the WS-Management service running on the destination, most commonly IIS or WinRM.
If the destination is the WinRM service, run the following command on the destination to analyze and configure the WinRM service: "winrm quickconfig".
Affected Application Classes: BTK_FARM (FarmAvlConcUserLicenses)