| To prevent from having the end-users annoyed with the Security Information popup you will want to configure Microsoft Internet Explorers security properties. 
The following defines how to manually perform this configuration change. You can also perform this change through an IE GPO 1. From the menu bar of Microsoft Internet Explorer click Tools and then click Internet Options. 
2. Click to select the Security tab and click the Custom Level button. 
3. Scroll down to the Display mixed content setting and click to select the Enable radio button. Click OK to continue. 
4. Click Yes to save the security settings change. 
5. Click OK to return to the Access Center. In order to implement a full featured Web Interface login site, follow the following three steps. Install Web Interface 2.1 (standalone web server only) Configure Web Interface through the Web Interface 2.1 Administration Web pages Brand the Web Interface login pages. You will also want to make sure you follow the security recommendations for the particular Web Server that you are using. Note: Web Interface 2.1 is a security update to the version of Web Interface release with MetaFrame XP Feature Release 3. The issue was that when Web Interface 2.0 was reporting an authentication failure, includes the text of the error message in the URL. By constructing such a URL that contained script, if an attacker could lure the user into navigating to that URL, that script would be executed in the context of Web Interface, which is typically in the users Local Intranet or Trusted Sites zones; this script might then exploit other unrelated vulnerabilities in other client-side software. You are able to download version 2.1 from the download section of MyCitrix.com. 
|