Citrix Gateway

Understanding Azure ADAL Token Authentication

Following is the flow of events in a typical Citrix Gateway-Microsoft ADAL token authentication:

     1.  When an app is launched in iOS or Android, the app contacts Azure. The user is prompted to log on with user credentials. After a successful logon, the app gets an ADAL token.

     2.  This ADAL token is presented to a Citrix Gateway, which has been configured to validate the ADAL token.

     3.  Citrix Gateway validates the signature of the ADAL token with the corresponding certificate from Microsoft.

     4.  After a successful validation, Citrix Gateway extracts the User’s Principal Name (UPN) and grants the app VPN access to the internal resources.

Understanding Azure ADAL Token Authentication