In this document we will look at the deployment of Swivel Secure's great PINsafe product, where we will force users who work against our Citrix platform to have a double authentication and validate themselves with their Active Directory authentication in addition to entering an OTC code based on their PIN so that they cannot access our platform before a keylogger and try to secure the accesses more!!
Well, once we have basically configured our NetScaler, we are going to implement the Access Gateway feature that will give us secure access to our Citrix XenApp applications or XenDesktop desktop from the outside to our users through any device. In this document we will see how to publish a Web Interface of our internal network through the NetScaler CAG and we will access it via the web and via Citrix Receiver!
In this document, we will look at deploying a VPX Express Access Gateway, We will see it in a virtual appliance that we can deploy in our virtual network, thus having all its advantages, will be the version 5.0.4, being virtual acquires the same functions as the model 2010 What is the physical. With Access Gateway VPX we will be able to allow our users secure access to their Citrix applications or desktops remotely.
If instead of using local users with Citrix Access Gateway what we want is to take advantage of our Windows Active Directory, our domain users to validate us when connecting from abroad, we must install the IAS service on a server in our network (Internet Authentication Service), configure it and indicate in the CAG that it is so. Be careful, if the CAG is in the DMZ, we need to map the RADIUS ports to the IAS server, What are the 1812 and the 1813, TCP both.
This procedure explains how to configure a Citrix Access Gateway device that allows us to connect to our VPN using this device. If we don't physically have the hardware, we can create a CAG virtual machine to perform tests, Never for End Use – HERE.
This document briefly explains how a user from the Internet would connect to our network or DMZ servers using the CAG Client. First of all, the user needs to connect to the internet, if it is the first time you are going to connect you need to download the VPN client called Citrix Secure Access Client, but if you have already connected more times, you would only have to run the shortcut that you will have on the desktop.
Do Tailor-made training
Windows Server – VMware vSphere – Citrix Virtual Apps & Desktops – Centreon
|
We are a consulting firm that cares and pampers
|
 |
|
With quality and added value
|
 |
|
¡Let's work together!
|
 |
