Step Description Screenshot 1 Expand >NetScaler Gateway > Policies > Preauthentication 2 Click Add 3 Name the policy something like PreAuthPol_Notepad-is-running Click the + next to Request Action Note: you can call it whatever you want, I like to keep a standard format when creating policies and profiles so they are distinguishable in the various […]
In this section we are going to deploy the downloaded NetScaler firmware onto our hypervisor (VMWare). Step Description Screenshot Connect and authenticate to your VMWare ESX web console Note: In this example we are connecting to VMWare ESXi 6.0 with a private IP of 192.168.1.1. The default URL is http://192.168.1.1/ui Click Virtual Machines Click Create […]
Step Description Screenshot 1 Expand >NetScaler Gateway > Global Settings > Change Global Settings 2 Click Security tab Change Default Authorization Action to DENY Note: This change will affect all Gateways configured on the NetScaler that do not specifically reverse. 3 Expand NetScaler Gateway > Policies > Authorization Policies Click Add 4 Create a new […]
In this guide we will connect the Citrix NetScaler to our Citrix XA/XD Environment for ICA proxy (Citrix Sessions without VPN). Here you will see how quickly you can set up, secure and enable remote access to your Citrix environment via the NetScaler Gateway. NOTE: you must have an active Citrix XenApp/XenDesktop server and a […]
Prerequisites Item Description * NetScaler configured with IP Address, Certificates and accessible from the clients either internally or remotely over the internet. * Ensure Split Tunnelling is Off * Port 443 forwarded from firewall / router to the NetScaler VIP * Ensure the Default Authorization on the global configuration is set to allow Step Description […]
In newer versions of Citrix XenApp and XenDesktop (7.6+) if you selected to install Storefront, then the website will be preconfigured by the XA/XD Setup wizard. In order for this to function for Citrix NetScaler access there are some settings we need to set up in order for NetScaler to be able to connect to […]
Sometimes there can be some certificates that exist between the newly created NetScaler cert and the Root CA Certificate. These certificates ‘in the middle’ are known as intermediary or subordinate certificates and form a link or ‘chain’ between the root CA certificate and our newly created NetScaler certificate. For example: When some operating systems don’t […]
Submitting the CSR to a 3rd party CA – Comodo Free SSL We now need to take our CSR created in the previous section and submit that to a 3rd Party Certificate Authority or CA to verify our CSR and provide us with a certificate response we can combine with our CSR and generate the […]
We will now take the Certificate response file (CRT file) from our 3rd party Certificate Authority (CA) and install it onto the NetScaler device, then using both the CRT and Private key to combine and finally create a fully functional NetScaler certificate. Step Description Screenshot 1 Expand Traffic Management > SSL > SSL Files Click […]
In this section we will walk through how to perform a simple firmware upgrade of the our Production NetScalers which are in a HA availability pair. Upgrading the Passive node first, disabling HA sync, rebooting then confirm the device is OK before forcing a HA failover and repeating the upgrade steps on the other NetScaler. […]