Configuring Citrix Gateway
After you configure the base network settings on Citrix Gateway, you then configure the detailed settings so users can connect to network resources in the secure network. These settings include:
- Virtual servers. You can configure multiple virtual servers on Citrix Gateway, which allows you to create different policies depending on the user scenario you need to implement. Each virtual server has its own IP address, certificate, and policy set. For example, you can configure a virtual server and restrict users to network resources in the internal network depending on their membership in groups and the policies you bind to the virtual servers. You can create virtual servers by using the following methods:
- Quick Configuration wizard
- Citrix Gateway wizard
- Configuration utility
- High availability. You can configure high availability when you deploy two Citrix Gateway appliances in your network. If the primary appliances fails, the secondary appliance can take over without affecting user sessions.
- Certificates. You can use certificates to secure user connections to Citrix Gateway. When you create a Certificate Signing Request (CSR), you add the fully qualified domain name to the certificate. You can bind certificates to virtual servers.
- Authentication. Citrix Gateway supports several authentication types, including Local LDAP, RADIUS, SAML, client certificates, and TACACS+. In addition, you can configure cascading and two-factor authentication. Note: If you use RSA, Safeword, or Gemalto Protiva for authentication, you configure these types by using RADIUS.
- User connections. You can configure user connections by using session profiles. Within the profile, you can determine the plug-ins users can log on with, along with any restrictions users might require. Then, you can create a policy with one profile. You can bind session policies to users, groups, and virtual servers.
- Home page. You can use the default Access Interface as your home page, or you can create a custom home page. The home page appears after users successfully log on to Citrix Gateway.
- Endpoint analysis. You can configure policies on Citrix Gateway that check the user device for software, files, registry entries, processes, and operating systems when users log on. Endpoint analysis allows you to increase the security of your network by requiring the user device to have the required software.