Changing an RPC node password

To communicate with other Citrix Gateway appliances, each appliance requires knowledge of the other appliances, including how to authenticate on Citrix Gateway. RPC nodes are internal system entities used for system-to-system communication of configuration and session information. One RPC node exists on each Citrix Gateway and stores information, such as the IP addresses of the other Citrix Gateway appliance and the passwords used for authentication. The Citrix Gateway that makes contact with another Citrix Gateway checks the password within the RPC node.

Citrix Gateway requires RPC node passwords on both appliances in a high availability pair. The passwords must be the same on both the appliances. The primary appliance must be aware of the secondary RPC node password and the secondary must be aware of the primary RPC node password. Initially, each Citrix Gateway is configured with the same RPC node password. To enhance security, you must change the default RPC node passwords. You can use the configuration utility to configure and change RPC nodes.

RPC nodes are implicitly created when adding a node or adding a Global Server Load Balancing (GSLB) site. You cannot create or delete RPC nodes manually.

Important:

You must also secure the network connection between the appliances. You can configure security when you configure the RPC node password by selecting the Secure check box.

To change an RPC node password and enable a secure connection

  1. Navigate to System > Network > RPC.

  2. In the details pane, select the node and then click Edit.

  3. In Password and Confirm Password, type the new password.

  4. In Source IP Address, type the system IP address of the other Citrix Gateway appliance.

  5. Click Secure and then click OK.

Note:

When you enable the Secure option, the appliance encrypts all communication sent from the node to other RPC nodes thus securing the RPC communication.

To change an RPC node password by using the CLI

At the command prompt, type:

set ns rpcNode <IPAddress> {-password} [-secure ( YES | NO )]

show ns rpcNode  
<!--NeedCopy-->

Example:

> set ns rpcNode 192.0.2.4 -password mypassword -secure YES
 Done
> show rpcNode
.
.
.
 IPAddress:  192.0.2.4 Password:  d336004164d4352ce39e
     SrcIP:  *           Secure:  ON
Done
>
<!--NeedCopy-->
Changing an RPC node password