Tag: RADIUS

Enabling two-factor authentication with SMS2 (free) and NetScaler Gateway

In this post we are going to see something fabulous, let's see how to enable 2FA or two-factor authentication in NetScaler Gateway, forcing users to use an additional Token for corporate access to the organization. We will use SMS2 which is a free tool, which through RADIUS will validate the user tokens, we'll use software tokens using the Google Authenticator app on mobile, A blast!

Installing and configuring WiKID to access the Citrix Web Interface with a token (Software!)

Complete document this, we will see the installation and configuration of WiKID for two-factor authentication with a software token instead of traditional hardware ones (SoftToken) against a Web Interface 5.3 from Citrix. To do this,, first we will install and configure WiKID that through an LDAP connection will connect to our Active Directory and authenticate the tokens in the Web Interface with RADIUS, assign/configure the token against a user in our domain and open a Citrix session. WiKID is a paid product but has a very low price, Logically, we can use this document to configure other services by tokenizing.

Connecting to Active Directory with Citrix Access Gateway Using RADIUS

If instead of using local users with Citrix Access Gateway what we want is to take advantage of our Windows Active Directory, our domain users to validate us when connecting from abroad, we must install the IAS service on a server in our network (Internet Authentication Service), configure it and indicate in the CAG that it is so. Be careful, if the CAG is in the DMZ, we need to map the RADIUS ports to the IAS server, What are the 1812 and the 1813, TCP both.