In this guide we will connect the Citrix NetScaler to our Citrix XA/XD Environment for ICA proxy (Citrix Sessions without VPN). Here you will see how quickly you can set up, secure and enable remote access to your Citrix environment via the NetScaler Gateway. NOTE: you must have an active Citrix XenApp/XenDesktop server and a […]
Prerequisites Item Description * NetScaler configured with IP Address, Certificates and accessible from the clients either internally or remotely over the internet. * Ensure Split Tunnelling is Off * Port 443 forwarded from firewall / router to the NetScaler VIP * Ensure the Default Authorization on the global configuration is set to allow Step Description […]
In newer versions of Citrix XenApp and XenDesktop (7.6+) if you selected to install Storefront, then the website will be preconfigured by the XA/XD Setup wizard. In order for this to function for Citrix NetScaler access there are some settings we need to set up in order for NetScaler to be able to connect to […]
Sometimes there can be some certificates that exist between the newly created NetScaler cert and the Root CA Certificate. These certificates ‘in the middle’ are known as intermediary or subordinate certificates and form a link or ‘chain’ between the root CA certificate and our newly created NetScaler certificate. For example: When some operating systems don’t […]
Submitting the CSR to a 3rd party CA – Comodo Free SSL We now need to take our CSR created in the previous section and submit that to a 3rd Party Certificate Authority or CA to verify our CSR and provide us with a certificate response we can combine with our CSR and generate the […]
We will now take the Certificate response file (CRT file) from our 3rd party Certificate Authority (CA) and install it onto the NetScaler device, then using both the CRT and Private key to combine and finally create a fully functional NetScaler certificate. Step Description Screenshot 1 Expand Traffic Management > SSL > SSL Files Click […]
OKTA – Create Application Step Description Screenshot PRQ Generate metadata from Okta 1 Be sure to be accessing the ‘Classic UI’ and not the developer console 2 Click Add Applications 3 Search for ‘appstream’ Click Add 4 Provide Application label Click Done 5 Click Sign On tab 6 Click Identity Provider metadata Save the metadata […]
In this section we will walk through how to perform a simple firmware upgrade of the our Production NetScalers which are in a HA availability pair. Upgrading the Passive node first, disabling HA sync, rebooting then confirm the device is OK before forcing a HA failover and repeating the upgrade steps on the other NetScaler. […]
Prerequisites Description * Citrix FAS Service installation * XA/XD 7.6 or newer * StoreFront 3.6 or newer (I’ve tested with 3.9) * SAML Provider acting as the iDP (Google in this instance) * NetScaler Gateway configured as the SAML Service Provider (SP) * Active Directory Certificate Services * Access to edit Windows GPOS and OUs […]
Step Description Screenshot 1 Let’s Bind the LDAP_NetScaler_Users policy now to this VPN / Gateway (see previous posts on the creation of a LDAP policy, the one listed above is an example name based on our other posts) 2 Browse to the gateway and click Edit 3 Click the + on Basic Authentication Choose LDAP […]