Citrix states in their article: CTX108126

Document ID: CTX108126, Created on: Dec 1, 2005, Updated: Apr 5, 2006

Products: Citrix Access Essentials 1.0, Citrix Access Essentials 1.5

Summary

This article describes the steps needed to disable client drive mapping for Citrix Access Essentials.

Background

The default behavior of Access Essentials is to map client drives to drive letters on the server so that users may access their drives from published applications. For example, the C: drive on the client device is mapped to the V: drive on the server so that users can access their local files.

An administrator may want to disable this functionality for all users or a subset of users. To do this, an administrator creates a policy to disable client drive mapping using the Presentation Server Console and applies the policy to users.

Procedure

Launch the Presentation Server Console and create a new policy:

1. Open the Quick Start tool.
2. Click Presentation Server Console under Citrix tools.
3. Select Enable pass-through authentication if asked and click OK. The Presentation Server Console opens.
4. Select the Policies node.
5. Right-click Policies and select Create Policy.
6. Type a meaningful policy name, such as “Disable Client Drive Mapping,” and click OK. A new blank policy is created, but has not yet been defined or applied to any users.

Define the properties of the new policy:

1. Right-click the policy created in the previous steps and select Properties.
2. Expand the Client Devices > Resources > Drives node and select Mappings.
3. Select Enabled to activate the policy.

This enables the policy itself; it does not enable client drive mapping. The next step is to select the action of the policy.

4. Select each of the drive types to be disabled.

An administrator can disable the following drive types:
o Floppy disk drives
o Hard drives
o CD-ROM drives
o Remote (network) drives

5. Click OK to continue. The policy has been defined, but has not yet been applied to any users.

Apply the policy to users by creating a filter:

1. Right-click the policy created in the previous steps and select Apply this policy to.
2. Select Users in the left pane and select Filter based on users.
3. Select Apply to all explicit (non-anonymous) users to have the policy apply to all Access Essentials users, or add users and user groups using the Look in list or Add List of Names button.

An administrator can create exceptions to the configured accounts list by selecting Deny for users and user groups to whom the policy will not apply.

For example, an administrator can select Apply to all explicit (non-anonymous) users to apply the policy to all users and then add user groups named Administrators and Executives. By selecting Deny for these two groups, the policy will not apply to these users and they will be able to access their client drives.

4. Click OK to apply the policy to the specified users.

More Information

Policies allow an administrator to customize the behavior of Access Essentials. A single policy can have more than one rule and each policy can be applied to different user groups. The relative priority of policies can be modified to create complex scenarios. Administrators that implement multiple policies may find it best to name policies after the user groups to which they apply to avoid confusion.

Note: Access Essentials comes configured with a special policy called the Citrix default policy. Do not modify this policy or Access Essentials may not perform as expected.