Citrix

Produktdokumentation



Ganzes Dokument herunterladen

Configuring Applications and Trust Settings for NetScaler Gateway

Oct. 08, 2015

If you have an application that runs on a server in your internal network and users who connect from the Internet, you can configure trust settings in App Controller to route the connection through NetScaler Gateway. You also configure the application connector to indicate that the application is hosted in your internal network. When users connect to the application, NetScaler Gateway routes the request to App Controller. The application then starts on the user device. For more information about configuring application connectors in App Controller, see Configuring Single Sign-On by Using Application Connectors.

To configure connections to NetScaler Gateway

  1. In the App Controller management console, click the Settings tab.
  2. Under System Configuration, click Deployment.
  3. In the details pane, under NetScaler Gateway, click Edit.
  4. In Configure authentication from NetScaler Gateway if devices need to access App Controller remotely, select Yes to allow remote users to connect.
    Note: If this is the first NetScaler Gateway or virtual server you are configuring, this setting moves to Yes automatically. If this is not the first NetScaler Gateway or virtual server you are configuring, you must manually select Yes.
  5. Click the plus (+) symbol to add an appliance. When you click the plus symbol, the fields in the next several steps appear.
  6. In Alias, type a name that is easily recognizable.
  7. In Display name, type the NetScaler Gateway name.
  8. In Callback URL and External URL, enter the NetScaler Gateway web address. For example, enter https://mynetscalergateway.com.

    You can specify the port number in the web address, such as https://mynetscalergateway.com:443.

    When you add the web address to Callback URL, App Controller appends the URL automatically with the NetScaler Gateway authentication service URL. For example, the URL appears as https://NetScalerGatewayFQDN /CitrixAuthService/AuthService.asmx.

  9. Optionally, in Logon type, select one of the following:
    • Domain only. This setting requires users to enter their Active Directory credentials.
    • Security token only. This setting requires users to enter the code from a security token, such as an RSA token.
    • Domain and security token. This setting requires users to enter domain credentials and the code from a security token.
    • Certificate. This settings requires a client certificate for authentication.
    • Certificate and Domain. This setting requires a client certificate and users to enter their Active Directory credentials.
    • Certificate and security token. This setting requires a client certificate and for users to enter the code from a security token, such as an RSA token.
  10. Optionally, select the Do not require passwords check box if you do not want to require users to enter a password.
  11. Optionally, select Set as default to make this NetScaler Gateway the default appliance.
    Note: You cannot delete the default NetScaler Gateway. You can either disable NetScaler Gateway entirely or make another NetScaler Gateway the default appliance.
  12. Click Save.

To configure an application to allow NetScaler Gateway connections

  1. In the management console, click the Apps & Docs tab.
  2. Do one of the following:
    1. To edit an app, in the right pane, click an application from the list of All Apps and then click the pencil icon to edit the application.
    2. To add an app, in the left pane, under Applications, click Web & SaaS, click the plus sign and then click an application from the catalog.
  3. On the Details page, select App is hosted in internal network.
  4. Click Next, configure settings on each subsequent page and then click Save.
Back to Top