I have deployed F5 APM with two-factor authentication. APM is currently replacing the Web Interface / Storefront servers. Two-factor authentication is confirmed working for the Webtop, Citrix Receiver for Mac, Citrix Receiver for iOS and Citrix Receiver for Android. My issue is that Citrix Receiver for Windows doesn't appear to have the necessary options to select the Logon type of "Security token only" or "Domain and security token" like the Receiver for other OS's do. I suspect that Citrix Receiver for Windows requires some kind of configuration push from the server (which in my case is APM). Has anyone else experienced this issue or have any ideas?

I have not seen standalone Windows Citrix Receiver to be able to leverage two-factor authentication. I just searched again and could not find any Citrix documentation regarding such support or enabling standalone Windows Receiver to work with two-factor. If you have any tidbits indicating otherwise, please share - else, if you desire two-factor authentication, your best bet is to start all sessions from the WebTop.

Michael, It is mentioned in the support documentation here: Receiver for Windows Requirements It is also confirmed in the comments of this blog post (at the bottom), by the author of the original post: Receiver for Windows 4.0 Released It is mentioned both places that NetScaler Gateway and StoreFront are required. I am looking for a way to emulate this with F5 APM/LTM and/or iRules.

I certainly do fully trust and respect the information provided by Citrix in those articles, but they do not explain how to configure Citrix environment to take advantage of that. If Citrix says it's supported, then they need to provide documentation to their customers on how to enable/configure this option. If you come across such documentation/information, please post it here and we will gladly investigate.

Hi Michael Ill try and dig something up. We currently have two factory authentication working from the Windows 8 Citrix Receiver client, back to a Netscaler Gateway, with Storefront. We have currently working through and evaluation of F5, with APM, etc - for the purpose of replacing the Citrix solution... So I can confirm it is possible; I know from the engineer that completed it; it wasnt pretty making it work; but it was possible - Ill see what I can find.

I would also be interested in this

Two-factor authentication for Citrix Receiver for Windows

Michael_Koyfma1
Cirrus
Jan 23, 2014
If you come across config details that were done on StoreFront/Netscaler to make this work, please post them here. I am not able to find any details on how to configure this anywhere. :(
travis99_94012
Cirrus
Jan 23, 2014
I would also be interested in this
David_Glasgow_1
Nimbostratus
Jan 23, 2014
Hi Michael

Ill try and dig something up. We currently have two factory authentication working from the Windows 8 Citrix Receiver client, back to a Netscaler Gateway, with Storefront.

We have currently working through and evaluation of F5, with APM, etc - for the purpose of replacing the Citrix solution...

So I can confirm it is possible; I know from the engineer that completed it; it wasnt pretty making it work; but it was possible - Ill see what I can find.
Michael_Koyfma1
Cirrus
Nov 25, 2013
I certainly do fully trust and respect the information provided by Citrix in those articles, but they do not explain how to configure Citrix environment to take advantage of that. If Citrix says it's supported, then they need to provide documentation to their customers on how to enable/configure this option. If you come across such documentation/information, please post it here and we will gladly investigate.
SamuelB
Nimbostratus
Nov 24, 2013
Michael,

It is mentioned in the support documentation here: Receiver for Windows Requirements

It is also confirmed in the comments of this blog post (at the bottom), by the author of the original post: Receiver for Windows 4.0 Released

It is mentioned both places that NetScaler Gateway and StoreFront are required. I am looking for a way to emulate this with F5 APM/LTM and/or iRules.
Michael_Koyfma1
Cirrus
Nov 22, 2013
I have not seen standalone Windows Citrix Receiver to be able to leverage two-factor authentication. I just searched again and could not find any Citrix documentation regarding such support or enabling standalone Windows Receiver to work with two-factor. If you have any tidbits indicating otherwise, please share - else, if you desire two-factor authentication, your best bet is to start all sessions from the WebTop.

Forum Discussion

Two-factor authentication for Citrix Receiver for Windows

Recent Discussions

Is a Dedicated Interface, VLAN, and Self IP Required for a VIP in an F5 Configuration?

REST API to download License JSON report?

question about getting hsl data to be formatted properly in splunk

Is F5 r-series device instance is automatically turned on after power failure

Problem with lets encrypt and redirect after update

Related Content

Two-Factor Authentication With Google Authenticator And APM

Two-Factor Authentication – Captive Portal

Two-Factor Authentication With Google Authenticator And LDAP

Two-Factor Authentication – Remote Desktop Gateway

APM Cookbook: Two-Factor Authentication using YubiKey OTP with iRulesLX.

ABOUT DEVCENTRAL

RESOURCES

SUPPORT

PARTNERS