VMware Horizon Community
iscsitarget
Contributor
Contributor
Jump to solution

VM View, Linked Clones and Thinapp to a group of users?

In our view setup i have a pool of 80 guests, some users have requested MS Visio.

I've created a visio package and wanted to deploy it to a group of users, but i can only assign it to a pool.

Is there a way so i can assign MS Visio only to a certain (AD)group of people without having to create a extra pool?

For another application i'm using the security feature in the thinapped application, which doesnt let users start the program and reports back an error message. With visio this doesnt work propperly: a user with visio can open visio files just fine with the editor, a user without visio should get the visio viewer (internet explorer), but the application is launched instead (which gives back the security message and the user cannot view the visio file).

Reply
0 Kudos
1 Solution

Accepted Solutions
mittim12
Immortal
Immortal
Jump to solution

In theory if you added it to a pool only the people within the security group would be able to access it.   You could also use a login script to register it which means it would only be registered for people who have access.    See link below for login sript example.

http://blogs.vmware.com/thinapp/2008/10/thinapp-thinreg.html

View solution in original post

Reply
0 Kudos
5 Replies
mittim12
Immortal
Immortal
Jump to solution

In theory if you added it to a pool only the people within the security group would be able to access it.   You could also use a login script to register it which means it would only be registered for people who have access.    See link below for login sript example.

http://blogs.vmware.com/thinapp/2008/10/thinapp-thinreg.html

Reply
0 Kudos
JCL225
Enthusiast
Enthusiast
Jump to solution

Is this a persistent pool?

If so you can assign to the individual user's vDesktop. Now if you have a substantial amount of visio users then yes this will add quite a bit of workload.

The problem with assigning to the pool is that regardless of security settings of the user, the pool assigns and registers the thinapp with the vDesktop and takes over the file association rather than the default (in your case the visio viewer to IE setting).

------

If this is a Non persistent pool, then you're better option is to do a thinreg in a logon script similar to mittim12 's recommendation.

iscsitarget
Contributor
Contributor
Jump to solution

Thanks all for responding, 2bad that vmware is not doing thinapping per user/AD group.

as our AD is hosted remotly ad queries can take long, therefor i bypassed the group lookup function and just check if a file can be accessed:


Option Explicit

'Set Dimension
DIM fso
DIM WSHShell

'Set Object
Set fso = CreateObject("Scripting.FileSystemObject")
Set WSHShell = WScript.CreateObject("WScript.Shell")

If (fso.FileExists("\\servername\Thinapps\Microsoft Office Visio 2007 Service Pack 2 (SP2)\Microsoft Office Visio 2007.exe")) Then
  WSHShell.Exec("""\\servername\Thinapps\ThinReg\thinreg.exe"" /Q ""\\servername\Thinapps\Microsoft Office Visio 2007 Service Pack 2 (SP2)\Microsoft Office Visio 2007.exe""")
End If


'Exit Script
WScript.Quit()


I run this script at users logon.

Reply
0 Kudos
mittim12
Immortal
Immortal
Jump to solution

Thanks for sharing your solution.   I know someone out there will find this thread and find the script useful.  

Reply
0 Kudos
Squidly_Man
VMware Employee
VMware Employee
Jump to solution

Just to clarify, ThinApp DOES support A.D. Security groups within ThinApp packages by use of the PermittedGroups setting (which goes under the Build Options in the Package.ini).  This setting can be defined for the entire package under the BuildOprions section of the Package.ini file or for each Entry Point or both.  Additionally, ThinAp also supports A.D. Computer Security Groups via a PermittedCompuetrs setting (which goes under the Build Options in the Package.ini).

When using THINREG.EXE ( http://blogs.vmware.com/thinapp/2010/04/simple-thinregexe-login-script.html ) or the ThinApp SDK ( http://blogs.vmware.com/thinapp/2012/03/configuring-the-thinapp-sdk-in-place-of-thinreg.html ) to register the packages, they are only assigned based upon the A.D. security groups defined in the packages (or nested security groups the user is a member of where the app is assigned to the parent group).

See this video as an example.

http://www.screencast.com/t/ZjYyNzEzMTY

See the ThinAp online pubs for more details.

http://bit.ly/ThinAppPubs

-Dean F. https://www.vmware.com/support/pubs/identitymanager-pubs.html
Reply
0 Kudos