Enabling Citrix read-only administrator privileges
The Citrix VDI agent requires the agent operator user account have at least Citrix read-only administrator privileges.
About this task
To run these steps remotely from a computer with the Citrix Delegated Admin PowerShell Snap-in, use the AdminAddress parameter.
For example, the command is as follows:
New-AdminAdministrator -Name "YOURDOMAIN\NewAdmin" -AdminAddress "controller1.YOURDOMAIN.com"
Where <YOURDOMAIN> is the name of the network domain, <NewAdmin> is the user account that is being given Citrix administration privileges, and controller1.YOURDOMAIN.com is the fully qualified domain name of the Citrix site server.
Procedure
- Start a PowerShell session with an existing Citrix administrator account.
-
Load the Delegated Admin PowerShell Snap-in to manage the Citrix XenApp or XenDesktop site.
(Add-PSSnapin Citrix.DelegatedAdmin.Admin.V1)
-
Add the agent operator user account as a Citrix site administrator.
New-AdminAdministrator -Name "YOURDOMAIN\NewAdmin"Where <YOURDOMAIN> is the name of the network domain and <NewAdmin> is the user account that is being given Citrix administration privileges.
-
Query for the available roles and scopes to assign to NewAdmin.
Get-AdminRole Get-AdminScope -
Assign roles to the agent operator user account, including read-only administrator permissions.
Add-AdminRight -Administrator
\ -Role Read Only Administrator -Scope All Where:
- <YOURDOMAIN> is the name of the network domain.
- <NewAdmin> is the user account that is being given Citrix administration privileges.
Read Only Administratoris the Citrix site administrator role that you are assigning.Allis the Citrix site administrator scope that you are assigning.
-
Confirm the addition and changes of the administrator.
Get-AdminAdministrator -Name
\ Where <YOURDOMAIN> is the name of the network domain and <NewAdmin> is the user account that is being given Citrix administration privileges.