Citrix ADC

Single sign-on types

Citrix ADC Authentication, authorization, and auditing features supports the following single sign-on types.

  • Citrix ADC kerberos single sign-on: Citrix ADC appliances now support single sign-on (SSO) using the Kerberos 5 protocol. Users log on to a proxy, the Application Delivery Controller (ADC), which then provides access to protected resources. For details, see Citrix ADC kerberos single sign-on.

  • SSO for Basic, Digest, and NTLM authentication: Single Sign-On (SSO) configuration in Citrix ADC and Citrix Gateway can be enabled at global level and also per traffic level. By default the SSO configuration is OFF and an administrator can enable the SSO per traffic or globally. From a security point of view, Citrix recommends administrators to turn SSO globally OFF and enable per traffic basis. This enhancement is to make SSO configuration more secure by disabling certain type of SSO methods globally. For details, see SSO for Basic, Digest, and NTLM authentication.

Single sign-on types