Gateway

Creating LDAP Authentication Policies for Multiple Domains

After you create session policies on Citrix Gateway, you create LDAP authentication policies that are almost identical. When configuring the authentication policy, the important field is Search Filter. In this field, you must type the name of the group you created in the Active Directory.

Create the authentication profiles first and then create the authentication policy.

To create authentication profiles for multiple domain group extractions

  1. In the configuration utility, on the Configuration tab, expand Citrix Gateway > Policies > Authentication.
  2. In the navigation pane, click LDAP.
  3. In the details pane, click the Servers tab and then click Add.
  4. In Name, type the name of the first domain, such as Sampa.
  5. Configure the settings for the LDAP server, and then click Create.
  6. Repeat Steps 3, 4, and 5 to configure the authentication profile of the second domain, and then click Close.

After you create and save the profiles, create the authentication policies.

To create authentication policies for multiple domain group extractions

  1. In the configuration utility, on the Configuration tab, expand Citrix Gateway > Policies > Authentication.
  2. In the details pane, click the Policies tab and then click Add.
  3. In Name, type the name of the first domain.
  4. In Authentication Type, select LDAP.
  5. In Server, select the authentication profile for the first domain.
  6. Next to Named Expressions, click General, select True value, click Add Expression, and then click Create.
  7. In Name, type the name of the second domain.
  8. In Server, select the authentication profile for the second domain, click Create, and then click Close.
Creating LDAP Authentication Policies for Multiple Domains