NetScaler Gateway Clients

FAQs

January 8, 2024

Contributed by:

Important:

Citrix SSO for iOS is now called Citrix Secure Access. We are updating our documentation and the UI screenshots to reflect this name change.

This section captures the FAQ on Citrix Secure Access for macOS/iOS.

How is Citrix Secure Access client for macOS/iOS different from VPN app? Citrix Secure Access client for macOS and Citrix Secure Access client for iOS (formerly known as Citrix SSO for iOS) is the next generation SSL VPN client for NetScaler. The App uses Apple’s Network Extension framework to create and manage VPN connections on iOS and macOS devices. Citrix VPN is the legacy VPN client that uses Apple’s private VPN APIs which are now deprecated. Support for Citrix VPN is no longer available on the App store.

What is NE? The Network Extension (NE) framework from Apple is a modern library which contains APIs that can be used to customize and extend the core networking features of iOS and macOS. Network Extension with support for SSL VPN is available on devices running iOS 9+ and macOS 10.11+.

For which versions of NetScaler is the Citrix Secure Access client for macOS/iOS compatible? VPN features in Citrix Secure Access client for macOS/iOS are supported on NetScaler versions 10.5 and above. The TOTP is available on NetScaler version 12.0 and above. Push Notification on NetScaler has not been publicly announced yet. The App requires iOS 9+ and macOS 10.11+ versions.

How does Cert-based authentication for non-MDM customers work? Customers who previously distributed Certificates via Email or Browser to perform Client Certificate Authentication in VPN must note this change when using Citrix Secure Access client for macOS/iOS. This is mostly true for non-MDM customers who do not use an MDM Server to distribute User Certificates.

What is Network Access Control (NAC)? How do I configure NAC with Citrix Secure Access for iOS and NetScaler Gateway? Microsoft Intune and Citrix Endpoint Management (formerly XenMobile) MDM customers can take advantage of the Network Access Control (NAC) feature in the Citrix Secure Access for iOS. With NAC, administrators can secure their enterprise internal network by adding an extra layer of authentication for mobile devices that are managed by an MDM server. Administrators can enforce a device compliancy check at the time of authentication in the Citrix Secure Access for iOS.

To use NAC with the Citrix Secure Access for iOS, you must enable it on both the NetScaler Gateway and the MDM server.

To enable NAC on NetScaler, see Configure Network Access Control device check for NetScaler Gateway virtual server for single factor login.
If an MDM vendor is Intune, see Network access control (NAC) integration with Intune.
If an MDM vendor is Citrix Endpoint Management (formerly XenMobile), see Network Access Control.

Note:

The minimum supported Citrix Secure Access client for macOS/iOS version are 1.1.6 and above.

The official version of this content is in English. Some of the Cloud Software Group documentation content is machine translated for your convenience only. Cloud Software Group has no control over machine-translated content, which may contain errors, inaccuracies or unsuitable language. No warranty of any kind, either expressed or implied, is made as to the accuracy, reliability, suitability, or correctness of any translations made from the English original into any other language, or that your Cloud Software Group product or service conforms to any machine translated content, and any warranty provided under the applicable end user license agreement or terms of service, or any other agreement with Cloud Software Group, that the product or service conforms with any documentation shall not apply to the extent that such documentation has been machine translated. Cloud Software Group will not be held responsible for any damage or issues that may arise from using machine-translated content.

Was this helpful

FAQs

January 8, 2024

Contributed by:

January 8, 2024

Contributed by:

FAQs

In this article