Authentication methods

AAA Authentication methods: Netscaler supports 7 methods of authentication. Local: user account should be created locally on the netscaler. Authentication takes place without contacting external authentication server. LDAP: LDAP often uses Microsoft AD to validate users. It has 3 authentication types: Plaintext, SSL and TLS. Plaintext uses 389 for communication. Sends credentials in plain text. […]

Continue Reading

Configure LDAP authentication on netscaler

some or all steps are required to add external authentication on netscaler 12 and above: Create LDAP Server (authentication server). Create LDAP policy. Bind the LDAP policy globally. Add AD groups to netscaler to restrict access to management access. Optional Restrict normal users to netscaler gateway. Optional Create LDAP Server (authentication server):  To create LDAP […]

Continue Reading

XenApp/XenDesktop 7.X Services list

XenDesktop 7.x Controller Services There are overall 11 core FMA services in every citrix site. Service Name Executable Logon Account / Startup Type Description Dependencies Citrix AD Identity Service Citrix.ADIdentity.exe NT AUTHORITY\NetworkService Automatic Manages Active Directory Computer Accounts for machines within the xenapp/xendesktop deployment. Workstation Citrix Analytics Citrix.Analytics.exe NT AUTHORITY\NetworkService Automatic Collects analytical data regarding […]

Continue Reading

Double Hop

HDX Double-Hop: This is formerly known as ICA Pass-Through. User logs into first storefront store on end point device receiver and initiates connection to desktop or server virtual delivery agent. This Citrix desktop or server virtual delivery agent has receiver installed in it and has second storefront details. When user launches an application from Citrix […]

Continue Reading

Seamless Applications

Seamless mode: Applications delivered by XenApp and XenDesktop without a desktop are referred as seamless applications. Seamless mode allows remote applications to appear as though they are installed locally i.e., applications appear integrated with local operating system. Seamless applications gives look and feel like applications are installed locally. Without seamless applications, all applications are shown […]

Continue Reading

Application and Desktop Launch process

Accessing resources can be broken down to 4 steps: Authentication Enumeration Resource launch Session initialization. Authentication: Check out below links for authentication while user is on netscaler, storefront or web interface. Authentication at Storefront, web interface or storefront delegation: http://knowcitrix.com/logon-process/ Authentication at netscaler: http://knowcitrix.com/xendesktop-7-x-app-vda-login-process/ Internal component communication: http://knowcitrix.com/component-communications/ Enumeration: Assuming user is already authenticated, storefront sends request over […]

Continue Reading

Logon Process

XML Service: The XML service handles all client communication. Client communication like user authentication to the published app list, resolving the Citrix Zone Preference Policies, user application requests, and user connections requests. The XML service also hosts the Secure Ticket Authority that is used for storing secure tickets for user session requests and session reliability in […]

Continue Reading