Professional Documents
Culture Documents
Setup Citrix Access Gateway Enterprise Edition (Netscaler) For Use of Multiple Authentication Methods
Setup Citrix Access Gateway Enterprise Edition (Netscaler) For Use of Multiple Authentication Methods
Nordic Edge One Time Password (OTP Server) has a comprehensive RADIUS support, including support
for multiple authentication methods. This means that the end user can choose authentication method:
SMS, the software token Pledge or OATH-compliant tokens.
This step by step guide explains how you set up the Citrix Access Gateway Enterprise Edition (NetScaler)
and the Nordic Edge OTP Server with multiple authentication methods. In this example, we are going to
set up two methods, SMS and Pledge.
1 Prerequisites
2 Multiple authentication methods
3 Configuring Citrix NetScaler
3.1 Add multiple authentication function to the Citrix NetScaler login page
Backup files in Citrix NetScaler
3.2 Update Citrix NetScaler startup script
3.3 Add multiple authentication methods to NetScaler configuration
Restart Citrix NetScaler
4 Configure the One Time Password Server for use of multiple authentication methods.
4.1 Create databases for Citrix Authentication Methods
4.2 Configure OTP Server Clients for your authentication methods
Create OTP Server client for SMS authentication
Create OTP Server Client for Pledge authentication
Restart OTP Server
Test authentication with multiple authentication methods
5 Technical questions
Setup Citrix Access Gateway Enterprise Edition (NetScaler) for use of multiple authentication methods.
1 Prerequisites
The guide begins with instructions for setting up the Citrix NetScaler and OTP Server with Pledge:
- http://support.nordicedge.se/step-by-step-guide-to-implement-pledge-enrollment-to-otpserver-3
- http://support.nordicedge.se/step-by-step-guide-to-implement-sms-authentication-to-citrix-accessgateway-enterprise-edition
OTP Server
Setup Citrix Access Gateway Enterprise Edition (NetScaler) for use of multiple authentication methods.
Setup Citrix Access Gateway Enterprise Edition (NetScaler) for use of multiple authentication methods.
Setup Citrix Access Gateway Enterprise Edition (NetScaler) for use of multiple authentication methods.
Setup Citrix Access Gateway Enterprise Edition (NetScaler) for use of multiple authentication methods.
Setup Citrix Access Gateway Enterprise Edition (NetScaler) for use of multiple authentication methods.
Create one more Authentication Server for Pledge (Reuse the window or click the add-button again).
- Type "Pledge" as the name of the Authentication Server.
- Choose RADIUS as Authentication Type
- Type the IP adress to the OTP Server.
- Change the Time-out to 25.
- Type a Secret Key.Enter the same key in OTP Server (it's called shared secret in OTP Server).
- Type "SMS" as the NAS ID.
Setup Citrix Access Gateway Enterprise Edition (NetScaler) for use of multiple authentication methods.
Setup Citrix Access Gateway Enterprise Edition (NetScaler) for use of multiple authentication methods.
- Verify that the settings are according to the example below and click Create.
Setup Citrix Access Gateway Enterprise Edition (NetScaler) for use of multiple authentication methods.
Create another Authentication Policy for Pledge. (Reuse the window or click the add-button again).
Enter Pledge Server as name.
Select RADIUS Authentication Type.
Select Server Pledge.
Click on Modify-button.
Setup Citrix Access Gateway Enterprise Edition (NetScaler) for use of multiple authentication methods.
- Verify that the settings are according to the example below and click Create.
Setup Citrix Access Gateway Enterprise Edition (NetScaler) for use of multiple authentication methods.
Setup Citrix Access Gateway Enterprise Edition (NetScaler) for use of multiple authentication methods.
Setup Citrix Access Gateway Enterprise Edition (NetScaler) for use of multiple authentication methods.
Setup Citrix Access Gateway Enterprise Edition (NetScaler) for use of multiple authentication methods.
Setup Citrix Access Gateway Enterprise Edition (NetScaler) for use of multiple authentication methods.
Setup Citrix Access Gateway Enterprise Edition (NetScaler) for use of multiple authentication methods.
Setup Citrix Access Gateway Enterprise Edition (NetScaler) for use of multiple authentication methods.
Setup Citrix Access Gateway Enterprise Edition (NetScaler) for use of multiple authentication methods.
In this example we will rename the OTP Database to clarify its use for authentication with one-time
passwords via SMS.
- Type "SMS AD" as Database Display Name and click on Save Config.
Setup Citrix Access Gateway Enterprise Edition (NetScaler) for use of multiple authentication methods.
- Create a new OTP Database for Pledge authentication by right clicking on the database called SMS AD
in the left pane. Choose Duplicate Database.
Setup Citrix Access Gateway Enterprise Edition (NetScaler) for use of multiple authentication methods.
Setup Citrix Access Gateway Enterprise Edition (NetScaler) for use of multiple authentication methods.
Setup Citrix Access Gateway Enterprise Edition (NetScaler) for use of multiple authentication methods.
This client will be used by Citrix NetScaler for authentication with SMS.
- Expand Clients and click on the "My SSL-VPN Server" client. This was created with theStep by step
guide to implement SMS authentication to Citrix Access Gateway Enterprise Edition
- Change the Client Display name to NetScaler SMS.
- Click on the Advanced-button.
Setup Citrix Access Gateway Enterprise Edition (NetScaler) for use of multiple authentication methods.
- Verify that the settings are according to the example below and click Save config.
Setup Citrix Access Gateway Enterprise Edition (NetScaler) for use of multiple authentication methods.
Setup Citrix Access Gateway Enterprise Edition (NetScaler) for use of multiple authentication methods.
Setup Citrix Access Gateway Enterprise Edition (NetScaler) for use of multiple authentication methods.
Setup Citrix Access Gateway Enterprise Edition (NetScaler) for use of multiple authentication methods.
Setup Citrix Access Gateway Enterprise Edition (NetScaler) for use of multiple authentication methods.
Setup Citrix Access Gateway Enterprise Edition (NetScaler) for use of multiple authentication methods.
You have now configured Citrix NetScaler and the Nordic Edge OTP Server for use with multiple
authentication methods.
Setup Citrix Access Gateway Enterprise Edition (NetScaler) for use of multiple authentication methods.
Note: NetScaler will remember logon method last used by the end user.
Setup Citrix Access Gateway Enterprise Edition (NetScaler) for use of multiple authentication methods.