Citrix NetScaler: An Intelligent, Hands-Free Way to Secure XenApp & XenDesktop
They say simplicity is the best form of security.
The less complex your access controls, the fewer gates there are to open or close, the more invisible the security checks and the greater your chances of maintaining a highly secure, yet user-friendly environment. That has been the philosophy driving the seamless integration between NetScaler and XenApp-XenDesktop.
In this post, we’ll discuss a step-by-step guide that helps you demonstrate this goodness in your own setup, and do it with minimal effort.
SmartAccess has long been a cornerstone of the Citrix value in “securing remote access from any location, on any device”. A granular system of triggers is the basic building block of this security strategy. The Citrix ICA protocol contains multiple virtual channels within a single TCP connection, each responsible for a different aspect of the user interaction such as keyboard or mouse input, screen display, USB devices, multimedia, and so on. SmartAccess uses a number of active directory and network conditions to disable/enable each of these virtual channels for a given group of users.
Thanks to the deep visibility from XenApp and XenDesktop, NetScaler has the right data to make intelligent decisions about user access to resources, even in the face of dynamically changing conditions. For instance, User A has full access to a server when inside the office but if they access from outside, it automatically turns into a “read-only” access. Or take another example, where User B can access sensitive database servers from a locked-down corporate device, but the access is blocked if the same user tries to login from an unknown device. It may still allow email and basic app access from the unknown device. This is a sophisticated system that can respond dynamically to security and access needs, with minimal administrative intervention.
Read the entire article here, NetScaler: An Intelligent, Hands-Free Way to Secure XenApp & XenDesktop
via the fine folks at Citrix Systems, Inc.