Application Delivery Management

Data governance

All existing NetScaler Console customers must be compliant with the NetScaler telemetry program by uploading the required telemetry data either through automated or manual mode. The NetScaler telemetry program is enabled starting from 14.1-25.53 and later / 13.1-53.22 and later build. For more information, see the NetScaler telemetry program.

Citrix collects basic license telemetry data and NetScaler deployment and feature usage telemetry data for its legitimate interests, including license compliance. NetScaler Console configuration and feature usage data is also collected to manage, measure and improve Citrix products and services.

The automated telemetry collection mode enables you to use the Security Advisory feature in NetScaler Console on-prem that collects the optional telemetry parameters. You can disable the optional parameters, but not the required parameters.

Notes:

  • After you upgrade to NetScaler Console 14.1-25.53 or later / 13.1-53.22 or later build, the following configuration is automatically pushed to your NetScaler instances through NetScaler Console. This configuration collects and stores the telemetry metrics in your NetScaler instances:
enable ns feature AppFlow
add analytics profile telemetry_metrics_profile -type timeseries -outputMode prometheus -metrics ENABLED -serveMode Pull -schemaFile "./telemetry_collect_ns_metrics_schema.json" -metricsExportFrequency 300
<!--NeedCopy-->
  • If you are in manual mode or automated mode (with any prerequisite not met), NetScaler Console continues to check for the above configuration every 24 hours and push it to NetScaler instances, if this configuration is missing. If you do not want the configuration to be pushed, you must be in the automated mode (with all prerequisites met) or upgrade to the upcoming build (14.1-29.x or 13.1-55.x).

  • The /nsconfig/.telemetry.conf file is updated with the following command for the Gateway telemetry. NetScaler Console checks for this command every hour and adds it, if this command is missing:

ns_telemetry_server,<Console IP>,5140
<!--NeedCopy-->
  • Some telemetry parameters are collected through scripts that are pushed from NetScaler Console to NetScaler instances. These scripts are read-only and do not change anything in NetScaler.

  • The information collected through telemetry, such as email addresses, usernames, and IP addresses, is securely pseudonymised by hashing the information at the source using one-way hashing algorithms. As a result, Citrix cannot access or read these values. This telemetry data is used solely for logical asset-matching purposes.

The following table provides the parameter details that are collected as part of NetScaler telemetry program:

Categories Description What do we use it for? Required / Optional
License, and NetScaler deployment and usage telemetry Information about license entitlement, allocation, usage, and high-level NetScaler deployment data, and NetScaler feature usage. License compliance and to manage, measure, and improve the service. Required
NetScaler Console deployment and feature usage telemetry Information about Console deployment and feature usage. To manage, measure, and improve the service. Optional

To disable the optional parameters:

  1. In NetScaler Console on-prem, navigate to NetScaler Telemetry and disable Security Advisory.

  2. Navigate to Settings > Administration > Enable or disable the Console feature data sharing, and clear the I agree to share Console feature usage data checkbox.

If your NetScaler Console is earlier than 13.1-53.22, you can create a Customer Identity on Citrix Cloud to send important statistics about NetScaler Console health, status, and other metrics from NetScaler Console on-prem deployment to Citrix Cloud account. Citrix collects statistics to understand the usage of NetScaler Console. For more information, see Data governance for Customer Identity.

Data governance

In this article