Submitting the CSR to a 3rd party CA – Comodo Free SSL We now need to take our CSR created in the previous section and submit that to a 3rd Party Certificate Authority or CA to verify our CSR and provide us with a certificate response we can combine with our CSR and generate the […]
We will now take the Certificate response file (CRT file) from our 3rd party Certificate Authority (CA) and install it onto the NetScaler device, then using both the CRT and Private key to combine and finally create a fully functional NetScaler certificate. Step Description Screenshot 1 Expand Traffic Management > SSL > SSL Files Click […]
OKTA – Create Application Step Description Screenshot PRQ Generate metadata from Okta 1 Be sure to be accessing the ‘Classic UI’ and not the developer console 2 Click Add Applications 3 Search for ‘appstream’ Click Add 4 Provide Application label Click Done 5 Click Sign On tab 6 Click Identity Provider metadata Save the metadata […]
In this section we will walk through how to perform a simple firmware upgrade of the our Production NetScalers which are in a HA availability pair. Upgrading the Passive node first, disabling HA sync, rebooting then confirm the device is OK before forcing a HA failover and repeating the upgrade steps on the other NetScaler. […]
Prerequisites Description * Citrix FAS Service installation * XA/XD 7.6 or newer * StoreFront 3.6 or newer (I’ve tested with 3.9) * SAML Provider acting as the iDP (Google in this instance) * NetScaler Gateway configured as the SAML Service Provider (SP) * Active Directory Certificate Services * Access to edit Windows GPOS and OUs […]
Step Description Screenshot 1 Let’s Bind the LDAP_NetScaler_Users policy now to this VPN / Gateway (see previous posts on the creation of a LDAP policy, the one listed above is an example name based on our other posts) 2 Browse to the gateway and click Edit 3 Click the + on Basic Authentication Choose LDAP […]
Step Description Screenshot 1 In order that our users devices know which network is ‘local’ and which network is remote we need to define our remote network resources 2 First we ensure that split tunnelling is enabled NetScaler gateway > Global Settings > Change Global Settings Click the Client experience tab Change Split Tunnel* to […]
Prerequisites Item Description * You should be a local administrator of the device where you are install the gateway plug-in Step Description Screenshot 1 Ensure your newly created gateway is added to DNS internally or externally (wherever you are connecting to it from) Open a web browser to the NetScaler VIP Login 2 Select Network […]
Prerequisites Item Description * DNS is configured on the NetScaler correctly * The internal or private IP Address of the VIP assigned to the NetScaler Gateway * * Know the details of your Citrix Server STA (our Citrix DDC(s)) * Firewall ports are open between the NetScaler and the StoreFront server * StoreFront already configured […]
In the following steps we will detail how to configure a stand alone installation of Citrix Storefront and give examples of how to connect this to your Citrix NetScaler Step Description Screenshot 1 Open the Citrix StoreFront Console Expand Citrix StoreFront Click Stores Click Create Store 2 Click Next 3 Give the store a name […]