-
Install and configure the Citrix Gateway appliance
-
VPN configuration on a Citrix Gateway appliance
-
Integrate the Citrix Gateway plug-in with Citrix Workspace app
-
-
Configure Citrix Gateway session policies for StoreFront
-
-
Maintaining and Monitoring the System
-
Integrate Citrix Gateway with Citrix products
-
Integrate Citrix Gateway with Citrix Virtual Apps and Desktops
-
Configure settings for your Citrix Endpoint Management Environment
-
Configure load balancing servers for Citrix Endpoint Management
-
Configure load balancing servers for Microsoft Exchange with Email Security Filtering
-
Configure Citrix Endpoint Management NetScaler Connector (XNC) ActiveSync Filtering
-
Allow Access from mobile devices with Citrix Mobile Productivity Apps
-
Configure domain and security token authentication for Citrix Endpoint Management
-
Configure client certificate or client certificate and domain authentication
-
-
Access Citrix Virtual Apps and Desktops resources with the Web Interface
-
Configuring Additional Web Interface Settings on Citrix Gateway
-
Configuring Access to Applications and Virtual Desktops in the Web Interface
-
Integrate Citrix Gateway with Citrix Virtual Apps and Desktops
-
Configuring Settings for Your Citrix Endpoint Management Environment
-
Configuring Load Balancing Servers for Citrix Endpoint Management
-
Configuring Load Balancing Servers for Microsoft Exchange with Email Security Filtering
-
Configuring Citrix Endpoint Management NetScaler Connector (XNC) ActiveSync Filtering
-
Allowing Access from Mobile Devices with Citrix Mobile Productivity Apps
-
Configuring Domain and Security Token Authentication for Citrix Endpoint Management
-
Configuring Client Certificate or Client Certificate and Domain Authentication
-
-
Citrix Gateway Enabled PCoIP Proxy Support for VMware Horizon View
-
Configure DTLS VPN virtual server using SSL VPN virtual server
-
Proxy Auto Configuration for Outbound Proxy support for Citrix Gateway
This content has been machine translated dynamically.
Dieser Inhalt ist eine maschinelle Übersetzung, die dynamisch erstellt wurde. (Haftungsausschluss)
Cet article a été traduit automatiquement de manière dynamique. (Clause de non responsabilité)
Este artículo lo ha traducido una máquina de forma dinámica. (Aviso legal)
此内容已动态机器翻译。 放弃
このコンテンツは動的に機械翻訳されています。免責事項
This content has been machine translated dynamically.
This content has been machine translated dynamically.
This content has been machine translated dynamically.
This article has been machine translated.
Dieser Artikel wurde maschinell übersetzt. (Haftungsausschluss)
Ce article a été traduit automatiquement. (Clause de non responsabilité)
Este artículo ha sido traducido automáticamente. (Aviso legal)
この記事は機械翻訳されています.免責事項
이 기사는 기계 번역되었습니다.
Este artigo foi traduzido automaticamente.
这篇文章已经过机器翻译.放弃
Translation failed!
Configure Citrix Gateway session policies for StoreFront
This article describes how to configure a Citrix Gateway domain only authentication with StoreFront for users who are using Citrix Workspace app or a web browser.
Minimum requirements
-
Citrix StoreFront 2.x or 3.0
-
Citrix ADC 10.5 and higher
-
Citrix Workspace app for Windows 4.x
-
Citrix Workspace app for Mac 11.8
-
Web browser (Citrix Workspace app for Web)
-
Authentication configured on the Citrix ADC appliance as outlined in CTX108876 - How to Configure LDAP Authentication on a Citrix ADC appliance
-
SSL Certificates configured for StoreFront Server and Citrix Gateway. For details on the following topics, see StoreFront Documentation.
- Install and set up for StoreFront 2.6
-
Windows 2012 Server Certificates
-
To add an SSL binding to a site
-
Installing and Managing Certificates for Citrix ADC appliance 10.5
-
Configure Citrix Gateway with StoreFront
Create a session policy for web browser based access
-
To create session policy, navigate to Citrix Gateway > Policies > Session.
-
In the Session Policies field, click Add.
-
In the Name field, type the name of the Session Policy. For example, Web_Browser_Policy.
-
Click the box with the + sign.
-
Type in the name of the new Session Profile in the Configure Citrix Gateway Session Profile window.
You can check the Override Global check boxes under all tabs to overwrite the inherited values from the global Citrix Gateway parameters. In the configuration example, details about only the mandatory parameters are included.
-
In the Client Experience tab, enable the following settings:
-
Clientless Access: set to On
-
Single sign-on to Web Application: Select the check box
-
Plug-in Type: Set to Windows/MAC OS X
-
-
In the Security tab, enable Default Authorization Actions and set it to ALLOW.
-
In the Published Application tab, enable the following settings:
-
ICA Proxy: Set to ON.
-
Web Interface Address: FQDN of the StoreFront server followed by the path to the store for web
-
Single Sign-on Domain - NetBIOS name for the domain
-
-
Click Create.
-
If you are using a Classic Policy expression, in the Expression field, add the following information and click Create.
REQ.HTTP.HEADER User-Agent NOTCONTAINS CitrixReceiver
-
If using an Advanced Policy expression, in the Expression field, add the following information and click Create.
HTTP.REQ.HEADER("User-Agent").CONTAINS("CitrixReceiver").NOT
This policy is needed for the Citrix ADC to differentiate between web browser based and Citrix Workspace app based connections. This policy is applied to web browser based connections.
Create a session policy for Citrix Workspace app for Windows or Mac, and Mobile Devices on Citrix Gateway
-
Navigate to Citrix Gateway > Policies > Session.
-
In the Session Policies field, click Add.
-
In the Name field, type the name of the session policy. For example, Receiver_Policy.
-
Type in the name of the new session profile in the Configure Citrix Gateway Session Profile window.
-
In the Client Experience tab, enable the following settings:
-
Home Page: Set to None
-
Split Tunnel: Set to OFF
-
Clientless Access: Set to On
-
Single Sign-on to Web Application: Select the check box
-
Plug-in Type: Set to Java
-
-
In the Security tab, set Default Authorization Actions to ALLOW.
-
In the Published Application tab, enable the following settings:
-
ICA Proxy: Set to ON.
-
Web Interface Address: FQDN of the StoreFront server followed by the path to the store
-
Single Sign-on Domain: NetBIOS name for the domain
-
Account Services Address: Enter the account services address. The last back slash is important. For example,
https://accounts.example.com/Citrix/Roaming/Accounts
-
-
Click Create.
-
If using a Classic Policy expression, in the Expression field, add the following information and click Create.
REQ.HTTP.HEADER User-Agent CONTAINS CitrixReceiver
-
If using anAdvanced Policy expression, in the Expression field, add the following information and click Create.
HTTP.REQ.HEADER("User-Agent").CONTAINS("CitrixReceiver")
This policy is needed for the Citrix ADC to differentiate between the web browser based and Citrix Workspace app based connections. This policy is applied for Citrix Workspace app based connections.
Configure authentication on the Citrix ADC appliance
For information about configuring LDAP authentication on a Citrix ADC appliance, see Configuring LDAP Authentication.
Create Citrix Gateway virtual server and bind the session policies
-
Navigate to Citrix Gateway > Virtual Server and click Add to add a new virtual server.
-
After the virtual server is created, bind the specific session policy to the virtual server based on your company’s requirements.
Configure authentication for StoreFront
-
Enable the pass-through authentication from Citrix Gateway on StoreFront. For more information, see Configure the authentication service.
StoreFront must trust the issuer of the Citrix Gateway virtual server’s bound certificate (Root and or Intermediate certificates) for the Authentication Callback service.
-
Add Citrix Gateway to StoreFront. For more information, see Add a Citrix Gateway connection.
The Gateway URL must match exactly with what the users are typing into the web browser address bar.
-
Enable remote access on the StoreFront store. For more information, see Manage remote access to stores through Citrix Gateway.
Share
Share
This Preview product documentation is Citrix Confidential.
You agree to hold this documentation confidential pursuant to the terms of your Citrix Beta/Tech Preview Agreement.
The development, release and timing of any features or functionality described in the Preview documentation remains at our sole discretion and are subject to change without notice or consultation.
The documentation is for informational purposes only and is not a commitment, promise or legal obligation to deliver any material, code or functionality and should not be relied upon in making Citrix product purchase decisions.
If you do not agree, select Do Not Agree to exit.