I must be doing something boneheaded...
Trying to connect from the iPad through our Secure-IT gateway to the broker. I've set up the farm and location just like they would be in AppPortal for an externally located user, but when I attempt a connection, I receive the error: "There are currently no logon servers available to service the logon request"
The iPad has Internet connectivity. I know it has nothing to do with the app, but I can even visit the Web-IT page in Safari from the device. Point is, I know it can resolve the gateway name, likes the certificate, etc.
PC based users are getting in via AppPortal without issue.
My location in the config is set to use https.
I've tried the FQDN of the broker and also the IP address. Neither are resolvable / accessible from the Internet, but I am under the impression that the secure gateway settings further down the page will set up a secure tunnel that will take care of that issue. Broker tcp port is correct as 8080.
I have NAT off, and RDP over SSL on - again, just like they would be in our functional AppPortal config. Our secure gateway FQDN is able to be resolved on the Internet, so that's what I entered in the secure gateway field along with the port, as in "portal.ourdomain.com:4443". Our Secure-IT gateway is handling both broker and web traffic, hence the non-standard port.
OK, so by filling in the broker name and broker tcp port with those of the secure-it gateway, I was able to get a list of managed apps, but they don't connect when I tap them. "Could not establish a connection to the server". A little closer...
i had this error too...
turn out we need to add the vdi broker host and it's port 8080 open on the wireless firewall
and it worked !!! - this is onsite testing
we also tried it offsite via a VPN clients ( download vpn client from app store ) enabled on the ipad , and this works too.
Thanks. Will have to investigate the VPN client and see if that affords us any security options. With the vWorkspace iPad connector willing to save credentials, and the iPad itself being very portable and not very secure (no centrally enforcable security policies that I know of), I don't know how we can let our employees use this.
We ae suggesting that users not save their creditials and enter their username, password, and domain as they log-in to prevent unintended access. This is easier than a VPN and as secure as a laptop.
Thanks for the suggestion, Mark. I'm just untrusting by nature. I have nightmares where they save the password despite our written policy, then one of their kids gets done watching a Netflix movie on the iPad, and says "Oooh... what's this vWorkspace app?" We need a way to lock it down, and I guess that's going to need to be multi-factor auth.
You are right, as I experienced over the holidays anyone can pick up your iPad and go to any app. I think there is a password setting for the iPad though. I haven't tried it yet but the screen does shut down and it could be comparable to screen password protect on PC. Might be simpler than multi-factor authentication. I haven't seen multi-factor for the iPad, have you?
Keith Graham the iPad Connector product manager here at Quest. At the moment we are recommending that customers use the passcode protection that comes in-built in the iPad, but I agree there is a need to secure the vWorkspace App too. Would you consider it a suitable solution to have a passcode facility within the vWorkspace Connector so that upon starting it can require the user to enter a passcode? (i.e. a multinumber PIN like the iPad itself supports today).
I'm having this exact same problem, "no logon servers available". Using SSL Gateway with the exact settings of working App Portal. Did anyone figure out how to correct it?
Hello Brian and Steve,
Don't forget you have to store the certificate on the iPad which must be trusted. Maybe this is the missing part.