Product Documentation

Unified Gateway Visualizer

Overview

The Unified Gateway Visualizer provides a visual representation of the configurations using the Unified Gateway Wizard. The Unified Gateway Visualizer is used to add and edit configuration, and diagnose a backend issues.

The Unified Gateway Visualizer shows the following: |Configuration|Configuration| |—|–| |Pre-authentication policies|Authentication policies| |CS virtual servers|VPN virtual servers| |LB virtual servers|XA/XD apps| |Web apps|SaaS apps|

Unified Gateway deployment enables secure remote access through one URL to your Enterprise or SaaS applications, clientless access applications, XenApp, or XenDesktop resources.

Configure Unified Gateway

  1. Select Unified Gateway from the menu.

localized image

2.   At the next screen, verify that you have the following information, then click Get Started:

-  Public IP address for the Unified Gateway.
-  Server certificate chain (.PFX or.PEM) with optional Root-CA certificate.
-  LDAP/RADIUS/Client Certificate based authentication details.
-  Application details (URLs for Saas applications or XenApp\&XenDesktop server details).

localized image

3.   Click the Continue button.

localized image

Create a Unified Gateway Configuration virtual server.

  1. Enter the configuration Name for the virtual server.
  2. Enter the public facing Unified Gateway IP address for the Unified Gateway deployment.
  3. Enter the Port number. The port number range is 1 - 65535.
  4. Click Continue.

localized image

Complete the following information to specify the Server Certificate.

1.  Select either the Use existing certificate or Install Certificate radio buttons. 2.  Select a Server Certificate from the drop down menu. 3.  Click the Continue button.

localized image

Complete the following information to specify Authentication.

1.  Select a Primary authentication method from the pull-down menu. 2.  Select either the Use existing server or Add new server radio buttons. 3.  Click the Continue button.

localized image

  1. Select the Portal Theme from the pull-down menu.
  2. Click Continue.

localized image

  1. Select either the Web Application or XenApp & XenDesktop radio buttons.
  2. Click Continue.

localized image

Complete the following information to specify Web Application.

  1. Enter the Name of the bookmark link.
  2. Select the type of application the VPN URL represents. The possible values are:

    • Intranet Application
    • Clientless Access
    • SaaS
    • PreConfigured application on this NetScaler
  3. Check this box to make this application accessible through the Unified Gateway URL.
  4. Enter the URL for the bookmark link.
  5. From the Icon URL choose a file to fetch an icon file. The MaxLength = 255
  6. Click the Continue button.

localized image

  1. Click Done.

localized image

  1. Click Continue.

localized image

  1. Click Done.

localized image

GUI Configuration

  1. Select Unified Gateway from the menu.

localized image

  1. Click the Unified Gateway Visualizer icon to access configured Gateway instances.

localized image

The Unified Gateway Visualizer looks like the following graphic:

localized image

The Unified Gateway Visualizer has PreAuth, Auth, and an Apps section. If the vpn virtual server has pre-authentication policy, only then will the pre-auth be shown in the Unified Gateway Visualizer.

localized image

The Unified Gateway Visualizer uses a color coding scheme for the load balancing and VPN virtual servers to indicate their state.

Colour Description
Red means the server is down.
Grey means webapps/xenapps have not been configured.
Green means everything is fine with the virtual server.
Orange means one of the load balancing virtual server services. is down, but still it is functioning properly.

Details of VPN Virtual Servers

To get the details of the vpn virtual servers, click on the vpn virtual servers node. The popup renders details like the C/S rule and all policies.

  1. Add Policies to the vpn entity by clicking on the (+) icon.

localized image

The following policies are bound by default.

  1. Click on the desired node for details of policies already configured.

localized image

For VPN virtual server information, the VPN title in the popup is a clickable entity that goes to a slider that details the VPN virtual server.

localized image

The details of the VPN server are shown here.

localized image

The Pre Auth Block

If a vpn virtual server has pre authentication policies assocated with it, the Unified Gateway Visualizer shows a PreAuth block. The Pre Auth block shows the policies, and provides an option to add pre authetication policies to the vpn .

  1. Click the + to add a preauth policy.

localized image

In a case where no pre authentication policies have been assosciated, this block would be hidden from the view.

The Auth Block

The Auth block lists the primary and secondary policies. The Auth block provides an option to add policies.

  1. Click + in the Primary list to add a Primary Authentication Binding or Click + in the Secondary list to add a Secondary Authentication Binding.

localized image

1.  Select an option from the Primary authentication method drop down menu. This is a mandatory field. 2.  Specify if it is an use existing server or Add new server by selecting the radio button. 3.  Select an option from the LDAP Policy Name drop down menu. This is a mandatory field. 4.  Select an option from the Secondary authentication method drop down menu. This is a mandatory field.

  1. Specify if you want to use existing server or Add new server by selecting the radio button.
  2. Select an option from the RADIUS drop down menu. This is a mandatory field.
  3. Click Continue.

localized image

Adding Storefront

Click + near the XA/XD, and it takes you to adding “XA/XD” apps.

localized image

You can choose your integration point. The options are Storefront, WI, or WionNS. Click Continue.

localized image

  1. Complete the following fields to configure StoreFront:
Field Description
StoreFront FQDN* Enter the FQDN of the StoreFront server. Max length: 255 char.
Example://storefront.xendt.net
Site Path* Enter the path to Receiver for Web site already configured on the StoreFront.
Single Sign-on Domain* Enter the default domain for user authentication
Store Name* Enter the name for the STOREFRONT monitors.
The STORENAME is an argument defining storefront service store name to probe the health of StoreFront servers. Applicable to STOREFRONT monitors. Maximum Length: 31  
Secure Ticket Authority Server* Enter the secure ticket authority URL. This is typically present on the delivery controller.
Example: http://sta  
StoreFront Server* Enter the IP Address of the StoreFront Server
Protocol* Enter the protocol used by the server.
Port* Enter the port used by the server.
Load Balancing Enter the load balancing configuration for the StoreFront servers.
Virtual Server* Enter the public facing IP address for the Unified Gateway deployment.

2.  Click Continue

localized image

Adding SaaS

  1. Click + to add SaaS apps, it will take you to the Add SaaS page . Complete the following fields to configure SaaS. The fields that require mandatory information are noted with the *.
Field Description
Name* Enter the name of the bookmark link.
Application Type Enter the type of application this VPN URL represents. Possible values are : Intranet Application/Clientless Access/SaaS/PreConfigured application on this NetScaler
Enter URL* Enter URL of the Intranet application.
Choose File Enter the URL to fetch the icon file for displaying this resource.MaxLength = 255

Adding WebApps

  1. Click + to add Web apps, it will take you to the Add Web apps page . Complete the following fields to configure a Web Application. The fields that require mandatory information are noted with the *.
Field Description
Name* Enter the name of the bookmark link.
Application Type Enter the type of application this VPN URL represents. Possible values are : Intranet Application/Clientless Access/SaaS/PreConfigured application on this NetScaler
Enter URL* Enter URL of the Intranet application.
Choose File Enter the URL to fetch the icon file for displaying this resource.MaxLength = 255

If an application is accessible through the Unified Gateway URL, the details of the Load Balancing server can be accessed by clicking on the app:

localized image

New policies can be added by clicking on (+) and all the bound policies can be viewed by clicking on the node that displays policy information.

The number of services bound to the LB are also shown,along with the overall state information. Further click will list all the services. New services can be added to the LB.

For further details of the LB, the title of the popup is clickable that lands to the LB virtual server details page.