sso citrixnetscalermultipleauthenticationmethods
TRANSCRIPT
-
8/10/2019 SSO CitrixNetScalerMultipleauthenticationmethods
1/32
http://localhost/var/www/apps/conversion/tmp/scratch_1/#h.6b25e5e869f8http://localhost/var/www/apps/conversion/tmp/scratch_1/#h.6b25e5e869f8http://localhost/var/www/apps/conversion/tmp/scratch_1/#h.6b25e5e869f8http://localhost/var/www/apps/conversion/tmp/scratch_1/#h.6b25e5e869f8 -
8/10/2019 SSO CitrixNetScalerMultipleauthenticationmethods
2/32
http://support.nordicedge.se/step-by-step-guide-to-implement-sms-authentication-to-citrix-access-gateway-enterprise-editionhttp://support.nordicedge.se/step-by-step-guide-to-implement-sms-authentication-to-citrix-access-gateway-enterprise-editionhttp://support.nordicedge.se/step-by-step-guide-to-implement-sms-authentication-to-citrix-access-gateway-enterprise-editionhttp://support.nordicedge.se/step-by-step-guide-to-implement-sms-authentication-to-citrix-access-gateway-enterprise-editionhttp://support.nordicedge.se/step-by-step-guide-to-implement-sms-authentication-to-citrix-access-gateway-enterprise-editionhttp://support.nordicedge.se/step-by-step-guide-to-implement-sms-authentication-to-citrix-access-gateway-enterprise-editionhttp://support.nordicedge.se/step-by-step-guide-to-implement-sms-authentication-to-citrix-access-gateway-enterprise-editionhttp://support.nordicedge.se/step-by-step-guide-to-implement-sms-authentication-to-citrix-access-gateway-enterprise-editionhttp://support.nordicedge.se/step-by-step-guide-to-implement-sms-authentication-to-citrix-access-gateway-enterprise-editionhttp://support.nordicedge.se/step-by-step-guide-to-implement-sms-authentication-to-citrix-access-gateway-enterprise-editionhttp://support.nordicedge.se/step-by-step-guide-to-implement-sms-authentication-to-citrix-access-gateway-enterprise-editionhttp://support.nordicedge.se/step-by-step-guide-to-implement-sms-authentication-to-citrix-access-gateway-enterprise-editionhttp://support.nordicedge.se/step-by-step-guide-to-implement-sms-authentication-to-citrix-access-gateway-enterprise-editionhttp://support.nordicedge.se/step-by-step-guide-to-implement-sms-authentication-to-citrix-access-gateway-enterprise-editionhttp://support.nordicedge.se/step-by-step-guide-to-implement-sms-authentication-to-citrix-access-gateway-enterprise-editionhttp://support.nordicedge.se/step-by-step-guide-to-implement-sms-authentication-to-citrix-access-gateway-enterprise-editionhttp://support.nordicedge.se/step-by-step-guide-to-implement-sms-authentication-to-citrix-access-gateway-enterprise-editionhttp://support.nordicedge.se/step-by-step-guide-to-implement-sms-authentication-to-citrix-access-gateway-enterprise-editionhttp://support.nordicedge.se/step-by-step-guide-to-implement-sms-authentication-to-citrix-access-gateway-enterprise-editionhttp://support.nordicedge.se/step-by-step-guide-to-implement-sms-authentication-to-citrix-access-gateway-enterprise-editionhttp://support.nordicedge.se/step-by-step-guide-to-implement-sms-authentication-to-citrix-access-gateway-enterprise-editionhttp://support.nordicedge.se/step-by-step-guide-to-implement-sms-authentication-to-citrix-access-gateway-enterprise-editionhttp://support.nordicedge.se/step-by-step-guide-to-implement-sms-authentication-to-citrix-access-gateway-enterprise-editionhttp://support.nordicedge.se/step-by-step-guide-to-implement-sms-authentication-to-citrix-access-gateway-enterprise-editionhttp://support.nordicedge.se/step-by-step-guide-to-implement-sms-authentication-to-citrix-access-gateway-enterprise-editionhttp://support.nordicedge.se/step-by-step-guide-to-implement-sms-authentication-to-citrix-access-gateway-enterprise-editionhttp://support.nordicedge.se/step-by-step-guide-to-implement-sms-authentication-to-citrix-access-gateway-enterprise-editionhttp://support.nordicedge.se/step-by-step-guide-to-implement-sms-authentication-to-citrix-access-gateway-enterprise-editionhttp://support.nordicedge.se/step-by-step-guide-to-implement-sms-authentication-to-citrix-access-gateway-enterprise-editionhttp://support.nordicedge.se/step-by-step-guide-to-implement-sms-authentication-to-citrix-access-gateway-enterprise-editionhttp://support.nordicedge.se/step-by-step-guide-to-implement-sms-authentication-to-citrix-access-gateway-enterprise-editionhttp://support.nordicedge.se/step-by-step-guide-to-implement-sms-authentication-to-citrix-access-gateway-enterprise-editionhttp://support.nordicedge.se/step-by-step-guide-to-implement-sms-authentication-to-citrix-access-gateway-enterprise-editionhttp://support.nordicedge.se/step-by-step-guide-to-implement-sms-authentication-to-citrix-access-gateway-enterprise-editionhttp://support.nordicedge.se/step-by-step-guide-to-implement-sms-authentication-to-citrix-access-gateway-enterprise-editionhttp://support.nordicedge.se/step-by-step-guide-to-implement-pledge-enrollment-to-otpserver-3http://support.nordicedge.se/step-by-step-guide-to-implement-pledge-enrollment-to-otpserver-3http://support.nordicedge.se/step-by-step-guide-to-implement-pledge-enrollment-to-otpserver-3http://support.nordicedge.se/step-by-step-guide-to-implement-pledge-enrollment-to-otpserver-3http://support.nordicedge.se/step-by-step-guide-to-implement-pledge-enrollment-to-otpserver-3http://support.nordicedge.se/step-by-step-guide-to-implement-pledge-enrollment-to-otpserver-3http://support.nordicedge.se/step-by-step-guide-to-implement-pledge-enrollment-to-otpserver-3http://support.nordicedge.se/step-by-step-guide-to-implement-pledge-enrollment-to-otpserver-3http://support.nordicedge.se/step-by-step-guide-to-implement-pledge-enrollment-to-otpserver-3http://support.nordicedge.se/step-by-step-guide-to-implement-pledge-enrollment-to-otpserver-3http://support.nordicedge.se/step-by-step-guide-to-implement-pledge-enrollment-to-otpserver-3http://support.nordicedge.se/step-by-step-guide-to-implement-pledge-enrollment-to-otpserver-3http://support.nordicedge.se/step-by-step-guide-to-implement-pledge-enrollment-to-otpserver-3http://support.nordicedge.se/step-by-step-guide-to-implement-pledge-enrollment-to-otpserver-3http://support.nordicedge.se/step-by-step-guide-to-implement-pledge-enrollment-to-otpserver-3http://support.nordicedge.se/step-by-step-guide-to-implement-pledge-enrollment-to-otpserver-3http://support.nordicedge.se/step-by-step-guide-to-implement-pledge-enrollment-to-otpserver-3http://support.nordicedge.se/step-by-step-guide-to-implement-pledge-enrollment-to-otpserver-3http://support.nordicedge.se/step-by-step-guide-to-implement-pledge-enrollment-to-otpserver-3http://support.nordicedge.se/step-by-step-guide-to-implement-pledge-enrollment-to-otpserver-3http://support.nordicedge.se/step-by-step-guide-to-implement-pledge-enrollment-to-otpserver-3http://support.nordicedge.se/step-by-step-guide-to-implement-pledge-enrollment-to-otpserver-3http://support.nordicedge.se/step-by-step-guide-to-implement-pledge-enrollment-to-otpserver-3http://support.nordicedge.se/step-by-step-guide-to-implement-pledge-enrollment-to-otpserver-3http://support.nordicedge.se/step-by-step-guide-to-implement-pledge-enrollment-to-otpserver-3http://support.nordicedge.se/step-by-step-guide-to-implement-pledge-enrollment-to-otpserver-3http://support.nordicedge.se/step-by-step-guide-to-implement-pledge-enrollment-to-otpserver-3http://support.nordicedge.se/step-by-step-guide-to-implement-pledge-enrollment-to-otpserver-3 -
8/10/2019 SSO CitrixNetScalerMultipleauthenticationmethods
3/32
Setup Citrix Access Gateway Enterprise Edition (NetScaler) for use of multiple authentication methods.
2 Multiple authentication methods
Citrix NetScaler and OTP Server integrate via RADIUS protocol. For multiple authentication methods,Citrix NetScaler sends which method the end user requires via RADIUS attribute to the OTP Server. ThisRADIUS attribute is called NAS ID in Citrix NetScaler and uses RADIUS attribute number 32.
3 Configuring Citrix NetScaler
These are the main steps that need to be performed to configure Citrix NetScaler:1. Add multiple authentication function in the login page.2. Adjust startup script to use new login page.3. Add authentication methods to NetScaler configuration.
3.1 Add multiple authentication function to the Citrix NetScaler login page
Backup files in Citrix NetScaler
-
8/10/2019 SSO CitrixNetScalerMultipleauthenticationmethods
4/32
Setup Citrix Access Gateway Enterprise Edition (NetScaler) for use of multiple authentication methods.
Changes will be made to the following files:/netscaler/ns_gui/vpn/index.html
/nsconfig/rc.netscaler
NOTE: Backup these files before continuing.
- Add the configuration below to /netscaler/ns_gui/vpn/index.html. See this example index.htmlfor
instructions on where to place this configuration.
function getCookie(name) { // use: getCookie("name"); var re = new RegExp(name + "=([^;]+)"); var value = re.exec(document.cookie); return (value != null) ? unescape(value[1]) : null;
}
var today = new Date();var expiry = new Date(today.getTime() + 28 * 24 * 3600 * 1000); // plus 28 daysvar expired = new Date(today.getTime() - 24 * 3600 * 1000); // less 24 hours
function setCookie(name, value) { // use: setCookie("name", value);document.cookie=name + "=" + escape(value) + "; path=/; expires=" + expiry.toGMTString();}
function storeValues(form) {setCookie("logonmethod", form.logonmethod.value);return true;}
Logon method:
var
logonmethod=getCookie("logonmethod");var
MyLogonMethods=["SMS","Pledge"];for (var i = 0; i