Citrix Gateway licensing

• Install a license on Citrix Gateway

• Citrix Gateway licensing FAQs

Install and configure the Citrix Gateway appliance

• Configure the Citrix Gateway appliance by using wizards

• Configure Citrix Gateway settings

  • Create virtual servers

  • Configure IP addresses on Citrix Gateway

  • Resolve DNS servers located in the secure network

  • Configure DNS virtual servers

  • Configure name service providers

  • Configure server-initiated connections

  • Configure routing on Citrix Gateway

  • Configure auto negotiation

• Configure the host name and FQDN on Citrix Gateway

• Policies and profiles on Citrix Gateway

• System expressions on Citrix Gateway

• Certificates management on Citrix Gateway

  • Create a certificate signing request

  • Configure intermediate certificates

  • Use device certificates for authentication

  • Import and install an existing certificate

  • Certificate revocation lists

• Manage Citrix Gateway configuration settings

• Certificates management on Citrix Gateway

  • Create a certificate signing request

  • Configure intermediate certificates

  • Use device certificates for authentication

  • Import and install an existing certificate

  • Certificate revocation lists

• Test your Citrix Gateway configuration

Deploy Citrix Gateway in a double-hop DMZ

• Communication flow in a double-hop DMZ deployment

• Install and configuring Citrix Gateway in a double-hop DMZ

  • Configure settings on the virtual servers on the Citrix Gateway Proxy

  • Configure the appliance to communicate with the appliance proxy

  • Configure Citrix Gateway to handle the STA and ICA traffic

  • Open the appropriate ports on the firewalls

Maintain and monitor Citrix Gateway systems

• Configuring Delegated Administrators

  • Configuring Command Policies for Delegated Administrators

  • Configuring Custom Command Policies for Delegated Administrators

• Configuring Auditing on Citrix Gateway

  • Configuring Logs on Citrix Gateway

  • Configuring ACL Logging

• Enabling Citrix Gateway plug-in Logging

• To monitor ICA connections

Authentication and Authorization

• Configuring Default Global Authentication Types

• Configuring Authentication Without Authorization

• Configuring Authorization

  • Configuring Authorization Policies

  • Setting Default Global Authorization

• Disabling Authentication

• Configuring Authentication for Specific Times

• How Authentication Policies Work

  • Configuring Authentication Profiles

  • Binding Authentication Policies

  • Setting Priorities for Authentication Policies

• Configuring Local Users

• Configuring Groups

  • Adding Users to Groups

  • Configuring Policies with Groups

• Configuring LDAP Authentication

  • To configure LDAP authentication by using the configuration utility

  • Determining Attributes in Your LDAP Directory

  • Configuring LDAP Group Extraction

  • Configuring LDAP Group Extraction for Multiple Domains

  • 14-day password expiry notification for LDAP authentication

• Configuring Client Certificate Authentication

  • Configuring and Binding a Client Certificate Authentication Policy

  • Configuring two-factor Client Certificate Authentication

  • Configuring Smart Card Authentication

• Configuring RADIUS Authentication

  • To configure RADIUS authentication

  • Choosing RADIUS Authentication Protocols

  • Configuring IP Address Extraction

  • Configuring RADIUS Group Extraction

  • Configuring RADIUS user accounting

• Configuring SAML Authentication

  • Configure SAML authentication

  • Using SAML authentication to log in to Citrix Gateway

  • Improvements in SAML Authentication

• Configuring TACACS+ Authentication

  • Clear Config Basic Must Not Clear TACACS Config

• Configuring Multifactor Authentication

  • Configuring Cascading Authentication

  • Configuring Two-Factor Authentication

• Native OTP Support for Authentication

• Push notification for OTP

• Configuring single sign-on

  • Configuring single sign-on with Windows

  • Configuring single sign-on to Web Applications

  • Configuring single sign-on to a Domain

  • Configuring single sign-on for Microsoft Exchange 2010

• Configuring One-Time Password Use

  • Configuring RSA SecurID Authentication

  • Configuring Password Return with RADIUS

  • Configuring SafeWord Authentication

  • Configuring Gemalto Protiva Authentication

• nFactor for Citrix Gateway Authentication

• Citrix Gateway Visualizer

• Configure Citrix Gateway to use RADIUS and LDAP Authentication with Mobile Devices

• Restrict access to Citrix Gateway for members of one Active Directory group

High Availability deployment

• How High Availability Works

• Configuring Settings for High Availability

  • Creating or Changing an RPC Node Password

  • Configuring the Primary and Secondary Appliances for High Availability

• Configuring Communication Intervals

• Synchronizing Citrix Gateway Appliances

• Synchronizing Configuration Files in a High Availability Setup

• Configuring Command Propagation

  • Troubleshooting Command Propagation

• Configuring Fail-Safe Mode

• Configuring the Virtual MAC Address

  • Configuring IPv4 Virtual MAC Addresses

  • Configuring IPv6 virtual MAC addresses

• Configuring High Availability Pairs in Different Subnets

  • Adding a Remote Node

• Configuring Route Monitors

  • Adding or Removing Route Monitors

• Configuring Link Redundancy

• Understanding the Causes of Failover

• Forcing Failover from a Node

  • Forcing Failover on the Primary or Secondary Node

  • Forcing the Primary Node to Stay Primary

  • Forcing the Secondary Node to Stay Secondary

Citrix Gateway deployment in cluster configurations

• Configuring Clustering

Unified Gateway

• Citrix Gateway FAQ

VPN configuration on a Citrix Gateway appliance

• How users connect with the Citrix Gateway plug-in

• Full VPN setup on a Citrix Gateway appliance

• Select the user access method

• Deploy Citrix Gateway plug-ins for user access

• Select the Citrix Gateway plug-in for users

  • Deploy the Citrix Gateway plug-in from Active Directory

  • Manage Citrix Gateway plug-in by using Active Directory

• Integrate the Citrix Gateway plug-in with Citrix Workspace app

  • How users connect with Citrix Workspace app

  • Decouple the Citrix Workspace app icon

  • Configure IPv6 for ICA connections

  • Configure the Citrix Workspace app home page on Citrix Gateway

  • Apply the Citrix Workspace app theme to the Citrix Gateway logon page

  • Create a custom theme for the Citrix Gateway logon page

• Citrix Gateway VPN client registry keys

• Enforce the HttpOnly flag on authentication cookies

• Customize the user portal for VPN users

  • Prompt users to upgrade older or unsupported browsers by creating a custom page

• Clientless VPN access with Citrix Gateway

  • Advanced clientless VPN access with Citrix Gateway

  • Configure domain access for users

  • Clientless VPN access for SharePoint 2003, SharePoint 2007, and SharePoint 2013

  • Enable clientless access persistent cookies

  • Save user settings for clientless access through Web Interface

• Citrix SSO VPN client for mobile devices

• Configure the Client Choices page

• Configure access scenario fallback

• Configure connections for the Citrix Gateway plug-in

  • Configure the number of user sessions

  • Configure time-out settings

  • Connect to internal network resources

  • Configure split tunneling

  • Configure client interception

  • Configure name service resolution

  • Enable proxy support for user connections

  • Configure address pools

  • Support for VoIP phones

  • Configure application access for the Citrix Gateway plug-in for Java

  • Configure Access Interface

  • Create and apply web and file share links

• Traffic policies

• Session policies

  • Configure Citrix Gateway session policies for StoreFront

• Advanced policy support for Enterprise bookmarks

• Endpoint polices

  • Preauthentication policies and profiles

  • Post-authentication policies

  • Preauthentication device check expressions for user devices

  • Configure Device Certificate in nFactor as an EPA component

  • EPA as a factor in nFactor authentication

• Advanced Endpoint Analysis scans

  • Advanced Endpoint Analysis Policy Expression Reference

  • EPA scan for MAC addresses

• Manage user sessions

• Always On

• Always On VPN before Windows Logon

  • Configure Always On VPN before Windows Logon

Integrate Citrix Gateway with Citrix products

• How users connect to applications, desktops, and ShareFile

• Integrate Citrix Gateway with StoreFront

• Integrate Citrix Gateway with Citrix Virtual Apps and Desktops

• Deploy Citrix Gateway with Citrix Endpoint Management, Citrix Virtual Apps, and Citrix Virtual Desktops

• Configure settings for your Citrix Endpoint Management Environment

  • Configure load balancing servers for Citrix Endpoint Management

  • Configure load balancing servers for Microsoft Exchange with Email Security Filtering

  • Configure Citrix Endpoint Management NetScaler Connector (XNC) ActiveSync Filtering

  • Allow Access from mobile devices with Citrix Mobile Productivity Apps

  • Configure domain and security token authentication for Citrix Endpoint Management

  • Configure client certificate or client certificate and domain authentication

Microsoft Intune Integration

• When to Use the Integrated Intune MDM Solution

• Understanding the Citrix Gateway Intune MDM Integration

• Configuring Network Access Control device check for Citrix Gateway virtual server for single factor authentication deployment

• Configuring a Citrix Gateway application on the Azure portal

• Understanding Azure ADAL Token Authentication

• Configuring Citrix Gateway Virtual Server for Microsoft ADAL Token Authentication

• Set up Citrix Gateway for using micro VPN with Microsoft Endpoint Manager

• Extended support for Azure AD Graph

HDX Enlightened Data Transport Support

• When to Use Enlightened Data Transport Support

• Configuring Citrix Gateway to Support Enlightened Data Transport and HDX Insight

• L7 Latency Thresholding

RDP Proxy

• Stateless RDP Proxy

• RDP connection redirection

• Populate RDP URLs based on LDAP attribute

• Randomize RDP file name with RDP proxy

• Configure names for RDP files

Outbound ICA Proxy support

• Configuring Outbound ICA Proxy

Citrix Gateway Enabled PCoIP Proxy Support for VMware Horizon View

• Configuring Citrix Gateway Enabled PCoIP proxy for VMware Horizon View

• Configuring VMware Horizon View Connection Server

RfWebUI Persona on Citrix Gateway UX Configuration

• RfWebUI configuration parameters

Citrix Gateway portal customizations

• Citrix Gateway portal customization using custom plug-ins

• Create and customize login schema

• Portal customizations from the Admin UI

Access Citrix Virtual Apps and Desktops resources with the Web Interface

• Setting Up a Web Interface Site to Work

  • Web Interface Features

  • Setting Up a Web Interface Site

  • Creating a Web Interface 5.4 Site

  • Creating a Web Interface 5.3 Site

  • Adding Citrix Virtual Apps and Desktops to a Single Site

  • Routing User Connections Through Citrix Gateway

• Configuring Communication with the Web Interface

  • Configuring Policies for Published Applications and Desktops

  • Configuring Settings with the Published Applications wizard

  • Configuring the Secure Ticket Authority on Citrix Gateway

• Configuring Additional Web Interface Settings on Citrix Gateway

  • Configuring Web Interface Failover

  • Configuring Smart Card Access with the Web Interface

• Configuring Access to Applications and Virtual Desktops in the Web Interface

• Configuring SmartAccess

  • How SmartAccess Works for Citrix Virtual Apps and Desktops

  • Configuring Citrix Virtual Apps Policies and Filters

  • Configuring User Device Mapping on Citrix Virtual Apps

  • Enabling Citrix Virtual Apps as a Quarantine Access Method

  • Configuring Citrix Virtual Desktops for SmartAccess

• Configuring SmartControl

• Configuring single sign-on to the Web Interface

  • To configure single sign-on to Web applications globally

  • To configure single sign-on to Web applications by using a session policy

  • To define the HTTP port for single sign-on to web applications

  • Additional Configuration Guidelines

  • To test the single sign-on connection to the Web Interface

  • Configuring single sign-on to the Web Interface by Using a Smart Card

  • To configure single sign-on for Citrix Virtual Apps and file shares

• Allowing File Type Association

  • Creating a Web Interface Site

  • Configuring Citrix Gateway for File Type Association