Overview What’s the biggest difference when choosing SAML instead of OAuth as the protocol when using Azure AD as IdP for NetScaler when it comes to User Experience (UX)? You should consider this Question when
Continue readingNetScaler – OTP Encryption Tool
Overview Recently the internal Public Key Infrastructure (PKI) at one of my customers will change in a few weeks, with new private keys, too. What does that mean regarding my encrypted NetScaler Native OTP Attributes?
Continue readingNVIDIA vGPU – NVIDIA Control Panel is not found
Introduction Since the latest NVIDIA vGPU Driver you will notice that during the installation, the NVIDIA Control Panel isn’t longer part of the package. The known path for the .exe will also be empty: That’s
Continue readingCitrix FAS – Azure AD CBA Single Sign-On (SSO) without a PRT
Overview With Azure AD’s certificate-based authentication (CBA) there is a way to get a Primary Refresh Token (PRT) inside the User’s Citrix Session. I’ve written about the details in Part1. As the most negative requirement
Continue readingNetScaler – Advanced Clientless VPN
Overview Recently a customer requested me to implement a Clientless VPN solution with Citrix NetScaler. CVPN? Wasn’t that the rewriting module which only works with simple Webapps and all other complex ones were failing or
Continue readingCitrix FAS – SID Lookup Mismatch with Citrix DaaS
Issue Recently I tried to setup a Citrix DaaS environment with OnPrem VDA’s and FAS for a working Azure AD B2B scenario. Every B2B customer’s UPN suffix is created OnPrem with the matching Shadow Account.
Continue readingNVIDIA vGPU – Calculate required Bandwidth using RDAnalyzer
Overview When doing a NVIDIA vGPU PoC the mostly asked question from the customer perspective is – how much Bandwidth do we need per User / per branch Office to calculate the required Bandwidth when
Continue readingNetScaler – (Un)limited nFactor with Standard License
Disclaimer Citrix isn’t supporting this way of configuration for a full-feature usage of nFactor with a Standard License. The following content is for testing / lab purposing only. Don’t put this in production! Overview Starting
Continue readingNetScaler – Native OTP and Push OTP in Combination
Overview Not all customers are able to use modern authentication methods regarding SAML / OAuth with Identity Providers like Azure Active Directory, Okta and so on – there is still a small but not uninteresting
Continue readingCitrix FAS – Azure AD CBA with Primary Refresh Token (PRT)
Overview There are several discussions about the missing Primary Refresh Token (PRT) in the User’s Citrix Session when using SAML / oAuth with Azure AD and Citrix FAS – as using Smartcard to authenticate is
Continue reading