How to set up Landonline access in a Virtual Desktop (VDI) environment.
Landonline uses Citrix to communicate over the Internet between individual computers and the Landonline server. Some organisations have replaced individual computers with virtual desktop environments. The following illustrates additional considerations that are potentially required to set up virtual desktop environments to communicate with Landonline.
Note: this page has been written for system administrators
Provide additional information for system administrators to advise on design considerations / requirements of the Landonline service in a Virtual Desktop Infrastructure (VDI) environment.
LINZ Customer Support receives enquiries from IT departments seeking to understand how they can integrate the Landonline service with a VDI solution.
The upward trend in the number of contacts of this nature recently indicates the larger law firms are actively migrating away from the more traditional desktop towards VDI, and their IT departments acknowledge the complexity of the Landonline service. We expect there to be considerable interest from other small to medium sized firms over time.
Landonline is an application that is presented using a virtualised application technology called Citrix XenApp.
Application binaries are executed on Landonline servers and a Citrix receiver client installed on the end-users machine, simply transfers keystrokes and screen updates between server and the users’ desktop. The benefit of Citrix is that complex applications do not need to be installed on end-user devices.
For our customers, this also means that the application does not have high CPU or RAM requirements making it an optimal application to run on virtualised desktops.
End user VDI architectures
There are a number of different virtualised desktops delivery methods that organisations can deploy. These include:
The different VDI implementations described above are managed differently however in the context of using Landonline, the same considerations must be applied to each.
Pre-requisite software and requirements
Whether a user is connecting to Landonline from a traditional desktop or through VDI technology, the requirements and pre-requisite software must be installed in the user desktop environment. This includes:
See System Support for Landonline software and installation instructions.
Considerations for using Landonline in VDI environments
In many cases, the use of VDI makes it easier to manage and maintain the system requirements for accessing Landonline. In many virtual environments, you can install and set up the solution once and the application is available to many.
The following considerations should be made when setting up Landonline for operation in a VDI solution.
The certificate must be imported into the user’s certificate store and must also be saved as a file to a protected repository for use in signing events (e.g. personal drive)
If the user is logging on to multiple physical desktops and/or virtual machine, roaming profiles present the best method of ensuring that each time the user logs on, they have access to the Landonline digital certificate for application logon. (The certificate is installed into the local registry which is copied at logon to each machine when roaming profiles are used).
For document signing, the physical certificate file is required for digitally signing. This file should be saved on a personal drive for access by the authorised user. The file should not be stored in a common file directory where everyone has access.
It should also be noted, that the passphrase issued for the assigned user certificate should only be known to the certificate holder. System administrators who may be setting environments up for users should not know what this password is.
See Security for more information about the security required for digital certificates, passwords and passphrases. Breach of these requirements will result in the revocation of the user’s digital certificate.
LINZ IT support for LOL VDI environments
LINZ is not in a position to offer any technical advice or guidance to any customer who contacts our Customer Support team.