[THIN] Re: IPAD Citrix receiver config issue
- From: Angela Smith <angela_smith9@xxxxxxxxxxx>
- To: <thin@xxxxxxxxxxxxx>
- Date: Fri, 8 Oct 2010 08:22:56 +1000
Hi
Damn.... I was really hoping Citrix
would support third party VPN products... We use Cisco ASA Appliances
here.. I will check to see if the Cisco AnyConnect Secure Mobility
Client works on IPAD.. How would it work??? Would I still need
to use Citrix receiver once the VPN is established? The ipad browser
doesn't recognise any Citrix clients installed when I use Web SSL to connect
to the WI so not entirely sure how this VPN client would work..
Has anyone used Cisco AnyConnect Secure
Mobility Client on an IPAD??
Thanks
From: Jeremy.Saunders@xxxxxxxxxxxxxx
To: thin@xxxxxxxxxxxxx
Subject: [THIN] Re: IPAD Citrix receiver config issue
Date: Thu, 7 Oct 2010 17:44:54 +0000
Sorry, I may be straying off topic, but wanted to clarify something before
others respond. When I talk about two factor authentication not being supported
via the Web Interface/CSG solution, I am referring to the PNAgent (XenApp
Services) sites only, which is what the iPAD/iPhone/Android devices uses. It is
of course supported for the XenApp Web Services sites, which are accessed via a
browser. Cheers,Jeremy. From: thin-bounce@xxxxxxxxxxxxx
[mailto:thin-bounce@xxxxxxxxxxxxx] On Behalf Of Jeremy Saunders
Sent: Thursday, 7 October 2010 11:36 PM
To: thin@xxxxxxxxxxxxx
Subject: [THIN] Re: IPAD Citrix receiver config issue Yes, the Citrix Receiver
will only communicate with the Citrix ICA Proxy (CSG/CAG/AGEE/AGEE/NetScaler).
The iPhone has support for the Cisco SSL VPN client, so I assume the iPAD can
too using the Cisco AnyConnect Secure Mobility Client. However, I am always
curious as to why organisations force staff to VPN in before being allowed to
access applications and Desktops delivered by XenApp and/or XenDesktop. It’s
secure to present the apps via a CSG/CAG/AGEE/NetScaler over SSL (HTTPS), and
provides the users with one simple step. The Citrix Receiver simply talks to a
PNAgent (XenApp Services) Site as you are already doing internally. There is
one thing to be wary of. If you are using two factor authentication for remote
access, such as RSA or Safeword, it’s not supported via the free CSG
implementation. This is because CSG is simply a reverse proxy for Web
Interface, so you are actually authentication against Web Interface. You will
need to use a CAG/AGEE/NetScaler here. The users will authenticate against the
CAG/AGEE/NetScaler, and the credentials will automatically be passed to Web
Interface so that there is a single sign on process. You should download the
free NetScaler VPX appliance. You can also get a free 30 day trial cert, and
test it all out. There are heaps of Citrix whitepapers on how to do this. The
base NetScaler Standard license now allows you to implement an ICA Proxy at no
additional licensing costs, which makes it a no brainer. Cheers,Jeremy. From:
thin-bounce@xxxxxxxxxxxxx [mailto:thin-bounce@xxxxxxxxxxxxx] On Behalf Of
Saravanan Srinivasan
Sent: Thursday, 7 October 2010 9:09 PM
To: thin@xxxxxxxxxxxxx
Subject: [THIN] Re: IPAD Citrix receiver config issue no idea about that
appliance. From: Angela Smith <angela_smith9@xxxxxxxxxxx>
To: thin@xxxxxxxxxxxxx
Sent: Thu, October 7, 2010 7:54:38 AM
Subject: [THIN] Re: IPAD Citrix receiver config issue
Hi
We use PNAgent internally already and that works fine internally. My issue is
getting the ipad to talk to the PNAgent site from external. We have a Cisco
ASA VPN and I dont know if I can connect using an IPAD as it appears all IPAD
Gateway options are for Citrix Access Gateway/CSG..
Does the IPAD work if an ASA VPN is in use??
ThxDate: Thu, 7 Oct 2010 04:10:39 -0700
From: sarav2k@xxxxxxxxx
Subject: [THIN] Re: IPAD Citrix receiver config issue
To: thin@xxxxxxxxxxxxxxxx need to create PNA site on your WI and make sure
appliance is configured to go to that site for mobile devices.
http://support.citrix.com/proddocs/index.jsp?topic=/receiver-ipad-1/receivers-ipad-1.html
From: Angela Smith <angela_smith9@xxxxxxxxxxx>
To: thin@xxxxxxxxxxxxx
Sent: Thu, October 7, 2010 2:28:25 AM
Subject: [THIN] IPAD Citrix receiver config issue
Hi
Im trying to setup my IPAD so I can access the company network when remote..
Im having issues getting it to connect. Our setup is as follows:
Cisco ASA VPN Appliance
RSA two factor Authentication
Citrix XenApp 5 running on Windows 2003 (all on Internal Network)
I have downloaded the Citrix Receiver client and am presented with the
following options when configuring the Citrix Receiver Workspace
Address
Username
Password
Domain
Gateway
Is the Address field the link to the Web Interface XML file or is it the
external http for the VPN Appliance?
Username/Password/Domain Im assuming are internal AD credentials
Gateway - The receiver appears to be hardcoded for Citrix Access gateway
appliance. How do I tell the Receiver client to use Cisco ASA VPN Appliance
with RSA Authentication? Im confused about what settings go where.
As a test I could use the IPAD web browser and could connect to the VPN ASA
Address. I can authenticate thru the RSA 2 factor login and can authenticate
to the Web Interface server. The Citrix apps dont load through as there is no
recognisable client installed.. Im assuming I need to use receiver to connect
but cannot make the VPN work.. Any help muchly appreciated..
Angela Confidentiality and Privilege Notice
This document is intended solely for the named addressee. The information
contained in the pages is confidential and contains legally privileged
information. If you are not the addressee indicated in this message (or
responsible for delivery of the message to such person), you may not copy or
deliver this message to anyone, and you should destroy this message and kindly
notify the sender by reply email. Confidentiality and legal privilege are not
waived or lost by reason of mistaken delivery to you.Confidentiality and
Privilege Notice
This document is intended solely for the named addressee. The information
contained in the pages is confidential and contains legally privileged
information. If you are not the addressee indicated in this message (or
responsible for delivery of the message to such person), you may not copy or
deliver this message to anyone, and you should destroy this message and kindly
notify the sender by reply email. Confidentiality and legal privilege are not
waived or lost by reason of mistaken delivery to you.
Confidentiality and Privilege Notice
This document is intended solely for the named addressee. The
information contained in the pages is confidential and contains legally
privileged information. If you are not the addressee indicated in this message
(or responsible for delivery of the message to such person), you may not copy
or
deliver this message to anyone, and you should destroy this message and kindly
notify the sender by reply email. Confidentiality and legal privilege are not
waived or lost by reason of mistaken delivery to you.
Other related posts:
