Citrix XenDesktop, ADFS, Azure MFA, NetScaler Unified Gateway and Citrix FAS – Part 1
I have long been an advocate of fronting everything with a NetScaler, I think it is an excellent way to Secure the perimeter of your network and with Unified Gateway a great way to simplify incoming firewall rules. Also, for those of us that have a lab and only 1 external IP this is a great way to present multiple public services on a single IP Address.
My network uses LDAPS and Azure MFA to secure access to my Apps and Desktops but I have always wanted to look into ADFS and the options around authentication using that and Citrix NetScaler Unified Gateway.
In this post series I will walk you through setting up ADFS for use with your NetScaler Unified Gateway, integrating this with Azure MFA and providing context aware authentication to your Gateway and in turn your Apps and Desktops.
I was going to write this as a single post but while putting together the screenshots for the ADFS part only I realised that it would be waaaay to long in a single post. I have therefore decided to write this as a series. This will be the intended order:
- Setting Up ADFS and Internal Access
- Setting Up Citrix FAS
- Configuring NetScaler SAML Authentication
- Configuring Citrix StoreFront
- Configuring ADFS Proxy Using NetScaler and External Access
I have used a number of resources to assist with bringing all of this together and I will reference and link to them during the posts.
Read the entire article here, Putting it all together – Citrix XenDesktop, ADFS, Azure MFA, NetScaler Unified Gateway and Citrix FAS – Part 1
via Dave Brett at bretty.me.uk