Citrix does not support installation of any Self-Service Password Reset component on a domain controller. Deploy the Self-Service Password Reset components on dedicated servers.
This article describes the hardware and software requirements for your Self-Service Password Reset environment. This article assumes that each computer meets the minimum hardware requirements for the installed operating system.
Computers in your Self-Service Password Reset environment might require the following supporting system software.
Self-Service Password Reset Server
ASP.NET 3.5/4.X requirements
The ASP.NET component for your version of .NET framework on your Windows Server computer.
Security and account requirements
Before you install the Self-Service Password Reset Service, ensure that the appropriate accounts and components are available to support the service. Also, because the service uses secure HTTP (HTTPS), it requires a server authentication certificate for Transport Layer Security (TLS) communication with StoreFront.
Server Authentication Requirement:
Before you install the service, obtain a server authentication certificate for TLS communication from a Certificate Authority (CA) or your internal Public Key Infrastructure (PKI), if available.
Accounts Required for Service Modules:
Note: Ensure both accounts will not expire.
The Self-Service Password Reset Service requires these account types to read and write data as it operates in your environment:
When different modules require the same type of account, you can use the same account for multiple modules, or you can specify different customized accounts for each module.
Requires read and write access to the central store. For more information, see Create a central store.
Requires sufficient privileges to unlock and reset the password of the relevant users in User Configuration. For more information, Secure configuration.
External use with NetScaler Gateway