DIGIPASS Authentication for NetScaler - Maintenance · PDF fileXenApp XenDesktop...

download DIGIPASS Authentication for NetScaler - Maintenance · PDF fileXenApp XenDesktop Authentication ... network optimization, ... 8 DIGIPASS Authentication for NetScaler (with CAG)

If you can't read please download the document

Transcript of DIGIPASS Authentication for NetScaler - Maintenance · PDF fileXenApp XenDesktop...

  • DIGIPASS Authentication for

    Citrix NetScaler (with AGEE)

    INTEGRATION GUIDE

  • 1 DIGIPASS Authentication for NetScaler (with CAG)

    DIGIPASS Authentication for NetScaler (with CAG)

    Disclaimer

    Disclaimer of Warranties and Limitation of Liabilities

    All information contained in this document is provided 'as is'; VASCO Data Security assumes no

    responsibility for its accuracy and/or completeness.

    In no event will VASCO Data Security be liable for damages arising directly or indirectly from any

    use of the information contained in this document.

    Copyright

    Copyright 2012 VASCO Data Security, Inc, VASCO Data Security International GmbH. All

    rights reserved. VASCO, Vacman, IDENTIKEY, aXsGUARD, DIGIPASS and logo

    are registered or unregistered trademarks of VASCO Data Security, Inc. and/or VASCO Data

    Security International GmbH in the U.S. and other countries. VASCO Data Security, Inc.

    and/or VASCO Data Security International GmbH own or are licensed under all title, rights and

    interest in VASCO Products, updates and upgrades thereof, including copyrights, patent

    rights, trade secret rights, mask work rights, database rights and all other intellectual and

    industrial property rights in the U.S. and other countries. Microsoft and Windows are

    trademarks or registered trademarks of Microsoft Corporation. Other names may be

    trademarks of their respective owners.

  • 2 DIGIPASS Authentication for NetScaler (with CAG)

    DIGIPASS Authentication for NetScaler (with CAG)

    Table of Contents

    Reference guide ............................................................................................................. 4

    1 Overview................................................................................................................... 5

    2 Technical Concepts ................................................................................................... 6

    2.1 Citrix ................................................................................................................... 6

    2.1.1 NetScaler ....................................................................................................... 6

    2.1.2 Access Gateway Enterprise Edition .................................................................... 6

    2.1.3 Web Interface ................................................................................................. 6

    2.2 VASCO ................................................................................................................. 6

    2.2.1 IDENTIKEY Authentication server ...................................................................... 6

    3 Citrix setup ............................................................................................................... 7

    3.1 Architecture .......................................................................................................... 7

    3.2 Prerequisites ......................................................................................................... 7

    3.3 Citrix ................................................................................................................... 7

    3.3.1 Access Gateway .............................................................................................. 7

    3.3.1.1 Policies .................................................................................................... 7

    3.3.1.2 Virtual Servers ........................................................................................ 11

    3.3.1.3 Groups .................................................................................................. 12

    3.4 Test the setup .................................................................................................... 14

    4 Citrix Receiver on mobile ........................................................................................ 15

    4.1 Architecture ........................................................................................................ 15

    4.2 Prerequisites ....................................................................................................... 15

    4.3 Citrix ................................................................................................................. 15

    4.3.1 Access Gateway ............................................................................................ 15

    4.3.1.1 Policies .................................................................................................. 15

    4.3.1.2 Virtual Servers ........................................................................................ 18

    4.4 Test ................................................................................................................... 19

  • 3 DIGIPASS Authentication for NetScaler (with CAG)

    DIGIPASS Authentication for NetScaler (with CAG)

    5 Solution .................................................................................................................. 22

    5.1 Architecture ........................................................................................................ 22

    5.2 Citrix ................................................................................................................. 22

    5.2.1 Access Gateway ............................................................................................ 22

    5.2.1.1 Policies .................................................................................................. 22

    5.2.1.2 Virtual Servers ........................................................................................ 25

    5.3 IDENTIKEY Authentication Server .......................................................................... 26

    5.3.1 Policies ........................................................................................................ 27

    5.3.2 Client .......................................................................................................... 28

    5.3.3 User ............................................................................................................ 29

    5.3.4 DIGIPASS .................................................................................................... 29

    5.4 Test the Solution ................................................................................................. 31

    5.4.1 With the browser .......................................................................................... 31

    5.4.2 With Citrix Receiver ....................................................................................... 31

    6 FAQ ......................................................................................................................... 34

    7 Appendix ................................................................................................................. 34

  • 4 DIGIPASS Authentication for NetScaler (with CAG)

    DIGIPASS Authentication for NetScaler (with CAG)

    Reference guide

    ID Title Author Publisher Date ISBN

  • 5 DIGIPASS Authentication for NetScaler (with CAG)

    DIGIPASS Authentication for NetScaler (with CAG)

    1 Overview This whitepaper describes how to configure a Citrix NetScaler with Citrix Access Gateway

    Enterprise Edition (AGEE) in combination with the VASCO IDENTIKEY AUTHENTICATION Server.

    That way an extra security layer can be added to the SSL VPN solution the CITRIX AGEE provides.

    Netscaler

    XenApp

    XenDesktop

    Authentication

    Servers

  • 6 DIGIPASS Authentication for NetScaler (with CAG)

    DIGIPASS Authentication for NetScaler (with CAG)

    2 Technical Concepts 2.1 Citrix

    2.1.1 NetScaler

    Citrix NetScaler makes apps and cloud-based services run five times better by offloading

    application and database servers, accelerating application and service performance, and

    integrating security. Deployed in front of web and database servers, NetScaler combines high-

    speed load balancing and content switching, data compression, content caching, SSL acceleration,

    network optimization, application visibility and application security on a single, comprehensive

    platform.

    2.1.2 Access Gateway Enterprise Edition

    Citrix Access Gateway Enterprise Edition (AGEE) is a secure application access solution that

    provides administrators granular application-level control while empowering users with remote

    access from anywhere. It gives IT administrators a single point to manage access control and

    limit actions within sessions based on both user identity and the endpoint device, providing better

    application security, data protection, and compliance management.

    2.1.3 Web Interface

    The Citrix Web Interface provides users with access to XenApp applications and content and

    XenDesktop virtual desktops. Users access their resources through a standard Web browser or

    through the Citrix online plug-in.

    2.2 VASCO

    2.2.1 IDENTIKEY Authentication server

    IDENTIKEY Authentication Server is an off-the-shelf centralized authentication server that

    supports the deployment, use and administration of DIGIPASS strong user authentication. It

    offers complete functionality and management features without the need for significant budgetary

    or personnel investments.

    IDENTIKEY Authentication Server Server is supported on 32bit systems as well as on 64bit

    systems.

  • 7


DIGIPASS Authentication for Fortigate SSL-VPN - … DIGIPASS Authentication for Fortigate SSL-VPN DIGIPASS Authentication for Fortigate SSL-VPN 1 Reader This Document is a guideline

DIGIPASS Authentication for Fortigate SSL-VPN - … DIGIPASS Authentication for Fortigate SSL-VPN DIGIPASS Authentication for Fortigate SSL-VPN 1 Reader This Document is a guideline

DIGIPASS Authentication to Citrix XenDesktop with endpoint ... · 9 DIGIPASS SSO Authentication to Citrix XenDesktop in High Security Environments 7 Citrix Configuration Configure

DIGIPASS Authentication to Citrix XenDesktop with endpoint ... · 9 DIGIPASS SSO Authentication to Citrix XenDesktop in High Security Environments 7 Citrix Configuration Configure

Two factor authentication for Citrix NetScaler NetScaler with...packaged to run within your corporate network. The LoginTC RADIUS Connector enables Citrix NetScaler to use LoginTC

Two factor authentication for Citrix NetScaler NetScaler with...packaged to run within your corporate network. The LoginTC RADIUS Connector enables Citrix NetScaler to use LoginTC

DIGIPASS Authentication for VMware View - VASCO · 8 DIGIPASS Authentication for VMware View DIGIPASS Authentication for VMware View 1 a New policy will do a 2 b New policy will do

DIGIPASS Authentication for VMware View - VASCO · 8 DIGIPASS Authentication for VMware View DIGIPASS Authentication for VMware View 1 a New policy will do a 2 b New policy will do

DIGIPASS Authentication for Office 365 - VASCO · supports the deployment, ... DIGIPASS Authentication for Office 365. DIGIPASS Authentication for Office 365 DIGIPASS Authentication

DIGIPASS Authentication for Office 365 - VASCO · supports the deployment, ... DIGIPASS Authentication for Office 365. DIGIPASS Authentication for Office 365 DIGIPASS Authentication

DIGIPASS Authentication for Check Point Security · PDF fileDIGIPASS Authentication for Check Point Security Gateways - Integration Guideline V1.0 ... DIGIPASS Authentication for Check

DIGIPASS Authentication for Check Point Security · PDF fileDIGIPASS Authentication for Check Point Security Gateways - Integration Guideline V1.0 ... DIGIPASS Authentication for Check

Digipass 270XH Getting Started - Deutsche Bank · April 2018 Digipass 270 XH – Getting Started 03 1. What is a Digipass 270XH The Digipass 270XH (Digipass) is a PIN protected personal

Digipass 270XH Getting Started - Deutsche Bank · April 2018 Digipass 270 XH – Getting Started 03 1. What is a Digipass 270XH The Digipass 270XH (Digipass) is a PIN protected personal

Digipass Authentication for Microsoft UAG

Digipass Authentication for Microsoft UAG

DIGIPASS Authentication for [Solution Partner] · PDF file3 DIGIPASS Authentication for Cisco ASA 5505 DIGIPASS Authentication for Cisco ASA5505 4.2.3 Attaching the new back-end to

DIGIPASS Authentication for [Solution Partner] · PDF file3 DIGIPASS Authentication for Cisco ASA 5505 DIGIPASS Authentication for Cisco ASA5505 4.2.3 Attaching the new back-end to

DIGIPASS Authentication for NetScaler

DIGIPASS Authentication for NetScaler

Twofactor authentication for Citrix NetScaler - LoginTC factor authentication for... · Twofactor authentication for Citrix ... 9.For access to the web interface select Web Server

Twofactor authentication for Citrix NetScaler - LoginTC factor authentication for... · Twofactor authentication for Citrix ... 9.For access to the web interface select Web Server

KB 160045 user static passwords can be used in various ways with IAS. For example when requesting a Virtual OTP with a VDP enabled DIGIPASS, authentication against IAS if no DIGIPASS

KB 160045 user static passwords can be used in various ways with IAS. For example when requesting a Virtual OTP with a VDP enabled DIGIPASS, authentication against IAS if no DIGIPASS

Citrix NetScaler Family...Citrix NetScaler Product OverviewNetScaler Management & Analytics System NetScaler ADC NetScaler Gateway NetScaler SD-WAN Citrix NetScaler Family Office Area

Citrix NetScaler Family...Citrix NetScaler Product OverviewNetScaler Management & Analytics System NetScaler ADC NetScaler Gateway NetScaler SD-WAN Citrix NetScaler Family Office Area

DIGIPASS Authentication for Office 365 using IDENTIKEY

DIGIPASS Authentication for Office 365 using IDENTIKEY

DIGIPASS Authentication for Fortigate SSL-VPN - VASCO · PDF file4 DIGIPASS Authentication for Fortigate SSL-VPN DIGIPASS Authentication for Fortigate SSL-VPN 1 Reader This Document

DIGIPASS Authentication for Fortigate SSL-VPN - VASCO · PDF file4 DIGIPASS Authentication for Fortigate SSL-VPN DIGIPASS Authentication for Fortigate SSL-VPN 1 Reader This Document

Setting up DIGIPASS VPN Token - Virtusa to setup... · 2019-01-14 · Onboarding User Guide 1 1 Setting up DIGIPASS VPN Token Vasco DIGIPASS provides highly secure two-factor authentication

Setting up DIGIPASS VPN Token - Virtusa to setup... · 2019-01-14 · Onboarding User Guide 1 1 Setting up DIGIPASS VPN Token Vasco DIGIPASS provides highly secure two-factor authentication

DIGIPASS Authentication for Fortigate SSL-VPN - VASCO · DIGIPASS Authentication for Fortigate SSL-VPN - Integration Guideline V1.0 . DIGIPASS Authentication for Fortigate SSL-VPN

DIGIPASS Authentication for Fortigate SSL-VPN - VASCO · DIGIPASS Authentication for Fortigate SSL-VPN - Integration Guideline V1.0 . DIGIPASS Authentication for Fortigate SSL-VPN

DIGIPASS Authentication for Cisco ASA 5500 Series · PDF file2 Problem Description The basic working of the ASA is based on authentication to an existing media (LDAP, Radius, local

DIGIPASS Authentication for Cisco ASA 5500 Series · PDF file2 Problem Description The basic working of the ASA is based on authentication to an existing media (LDAP, Radius, local

DIGIPASS Authentication for Sophos UTM - VASCO · 2 DIGIPASS Authentication for Sophos UTM ... • Admin account email address ... please use the following guide provided

DIGIPASS Authentication for Sophos UTM - VASCO · 2 DIGIPASS Authentication for Sophos UTM ... • Admin account email address ... please use the following guide provided

DIGIPASS Authentication for WatchGuard Firebox

DIGIPASS Authentication for WatchGuard Firebox