12.2 Configuring Integration with Citrix NetScaler

Open the Advanced Authentication Admin Interface.

Go to the Events section.

Open properties of the Radius Server event.

Set the Radius Server event to the ON mode.

Select one or more chains from the list of Used chains (make sure that they are enabled and set to the users group in the Chains section).

Add a Client, enter an IP address of the Citrix NetScaler VPX, specify a secret, confirm it and set the Enabled option.

Click the Save button in the Client string. Click the Save button at the bottom of the Events view to save changes.

Sign-in to the Citrix NetScaler configuration portal as nsroot.

Browse menu Configuration -> Authentication -> Dashboard.

Click Add.

Select RADIUS from the Choose Server Type dropdown menu.

Specify the Name of the Advanced Authentication server, its IP Address, Secret Key and Confirm Secret Key, change Time-out (seconds) to 120-180 seconds in case of usage of the Smartphone, SMS, Email or Voice methods.

Click More and ensure that pap is selected in the Password Encoding dropdown menu.

Click Create. If connection to the RADIUS server is valid, the Up status will be displayed.

Browse menu Configuration -> System -> Authentication -> RADIUS -> Policy.

Click Add.

Specify the Name of the Authentication RADIUS Policy, select the created RADIUS server from the Server dropdown menu, select ns_true from the Saved Policy Expressions list.

Click Create.

Select the created policy and click Global Bindings.

Click the Select Policy field.

Select the created policy.

Click Bind.

Click Done. The check mark will be displayed in the Globally Bound column.

Enter user’s credentials and click Login.

Accept authentication on your smartphone.