Help
Technical Forum
Ask questions. Discover Answers.
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
Technical Forum Quicklinks: No Replies | Active-Not Solved | Recent Solutions

Duo Push not working on Citrix Receiver

Jj_Monteiro
Nimbostratus
Nimbostratus

‎24-Oct-2022 19:51

Hi,

I'm running F5 v 16.1.2. I have managed to get Duo working normally using the document supplied by duo by configuring radius/duo via APM.

The problem I have is that when I try connecting via Citrix Workspace I do not get the duo push. I just get a duo prompt for a password which does not seem to work with any duo passcodes I have. The Duo push does not appear either.

Does anyone have a workaround for this.

0 Kudos
1 REPLY 1

enzo
Altostratus
Altostratus

‎05-Dec-2022 07:59

On the F5 create a new Radius access profile in Access  ››  Authentication : RADIUS with a custom port. I am assuming you are already using Radius port 1812 for the traditional iFrame with your Citrix Access Policy. After you create this open the branch in your Citrix Access Policy for Workspace click the plus sign in front of your resource box that has your DDCs, choose the authentication tab and add the Radius auth policy. For the AAA Server drop-down menu choose the profile you created

 

enzo_0-1670255551523.png

enzo_1-1670255630143.png

 

You need to set up the DUO authproxy.cfg file with the stanza [radius_server_auto] 

For example:

[radius_server_auto2]
ikey=xxxxxxx
skey=xxxxxxxxx
api_host=xxxxxx.duosecurity.com
radius_ip_8=<F5 Self IPs>
radius_secret_8=xxxxxxx
radius_ip_9=<F5 Self IPs>
radius_secret_9=xxxxxx
port=<Port Number> Change this so it doesnt conflict with your iFrame setup
client=<LDAP AUth>
failmode=safe

This should send an automatic push. 

 

 

 

 

0 Kudos
Copyright © 2023 Khoros, LLC