SSO to ShareFile with Unified Gateway

Written by Ingmar Verheij on January 8th, 2016. Posted in Netscaler

ShareFileWith the release of NetScaler 11 the Unified Gateway feature became available. Besides that the Unified Gateway enables companies to create a single point of entry for different types of connection (from full blown VPN to ICA proxy and everything in between) it also comes with a landing page where users can access their (SaaS) applications. This is a great addition to the (already long) list of use-cases for a NetScaler in your network.

Now if there’s something users hate than that’s doing things more than once. So when companies make the (ow so logical) transition from “legacy” Windows applications to SaaS applications, so they no longer have to care about how that application works / runs / updates, the end-user is faced with a number of new challenges:

  • Where can I find that new SaaS application?
  • Why do I have to logon again?
  • Why do I have multiple passwords (that change on different moments)?

This is where the Unified Gateway comes into play, it offers a useful landing page where users can find their applications (hey that sounds familiar!). And since the industry made SAML the de-facto standard for authentication to SaaS applications, that might solve the other two challenges!

Long introduction to why I wanted to write this blog, but here’s how you can achieve a Singe Sign-On (SSO) experience from the NetScaler Unified Gateway to ShareFile using SAML.

One Content Switch to rule them all!

Written by Ingmar Verheij on August 17th, 2014. Posted in Netscaler

One content switch to rule them allThe Content Switch (CSW) is a beautiful feature that enables you to use a single point of entry – your NetScaler – to host multiple services (like XenDesktop, XenMobile and Sharefile). Based on the content (and context) requested the CSW will direct the traffic to the server offering the best service suitable for the task.

Since I visit sites that restrict outgoing traffic to known ports (sometimes only port 80 and 443), and only have a single IP in my home lab, I needed a solution that allows me to demo several Citrix products using the same entry point. In this article I’ll show you how you can use the CSW to host several Citrix products (XenDesktop, XenMobile and ShareFile) using a single IP and port.

Disclaimer: Parts in this setup are not supported and therefore shouldn’t be used in production environments!

Citrix XenApp or XenDesktop: A decision tree

Written by Ingmar Verheij on January 30th, 2014. Posted in Citrix, XenApp (Presentation Server), XenDesktop


Citrix XenApp or XenDesktop: A decision tree

Citrix offers two products to deliver hosted resources to users: XenApp and XenDesktop. Although the products share great similarities (and since v7.x the underlying architecture is now common, FMA rather than IMA),  have their unique characteristics.

What product do you need? When and why? In this article I’m trying  to help you make this decision based on a decision tree.

During the course of this article I’m assuming you’re designing a XenApp / XenDesktop 7.x environment, however the principal is equal for XenApp 6.x and XenDesktop 5.x.

Citrix released “XenBroker 7.5”

Written by Ingmar Verheij on January 26th, 2014. Posted in Citrix, XenApp (Presentation Server), XenDesktop

Rest In Peace - Citrix XenAppIn 2013 Citrix merged their application and desktop delivery solutions XenApp and XenDesktop into XenDesktop 7. XenDesktop 7 (XD7) combined the ability to provide remote access to single- and multi-user Windows platforms improving their FlexCast technology.

Besides that we got rid of the ancient IMA architecture, what I liked most was the fact that there’s  now one single product to offer access to single- and multi-users applications AND desktops: XenDesktop. Nonetheless we had to let our beloved XenApp go. After numerous evolutions and name changes (WinFrame >> MetaFrame  >> Presentation Server >> XenApp) this was the end of an era. But, Citrix did skip the cursed version 6 for the XenDesktop product range. Hooray!

Citrix Receiver: You have not chosen to trust “COMODO High-Assurance Secure Server CA”, the issuer of the server’s certificate

Written by Ingmar Verheij on January 24th, 2014. Posted in Citrix

Citrix ReceiverRecently I started using a MacBook to replace my Windows laptop. Since I work as a technical consultant with Citrix products I frequently connect to a Citrix XenApp / XenDesktop environment, amongst other to our lab.

While the installation was straightforward (just go to receiver.citrix.com and click on Download Reveiver for Mac) I quickly faced a dialog telling me I haven’t chosen to trust the CA certificate with no option to solve this…

You have not chosen to trust , the issuer of the server's certificate

Donate