Jump to content
Welcome to our new Citrix community!

NetScaler OnPremise Gateway with Citrix MFA


Recommended Posts

We are looking into setting up a short-term emergency solution for external remote access to a Remote PC Machine Catalog via Citrix Gateway in our DMZ and our StoreFront/DDC’s.

 

We would like to know if you can setup our on-prem Citrix Gateway to use the Citrix Cloud MFA service as opposed to having to purchase additional 3rd party tokens.

 

We are currently licensed for Remote PC and Citrix MFA as we are in the process of a 1200 seat VDI implementation using Workspace Premium Plus, but the project is not yet ready for production use and will not be by the time the business requires staff to work from home due to Coronavirus delay/containment measures.

 

Some of our staff currently access remotely by connecting via the CAG and a published RDP application from a Citrix Apps Farm, but we have a limited number of 3rd party tokens and RDS CAL’s. We don’t need any extra RDS CAL’s for access to Remote PC machine catalog, but the extra soft tokens are still a cost issue.

Link to comment
Share on other sites

Hi Manoj,

 

Thanks for your reply. Do you have any links to NetScaler Native OTP? And can you clarify what type of CAL I would still require, we already have Workspace Premium Plus licensing for all our users and Citrix have confirmed that this includes access to use Remote PC. My understand is that because this would no longer require an RDP session to our Citrix server to launch RDP client to piggy back to our Physical Base Units, that no RDS CAL Licensing would be required.

 

Thanks

 

Kev

Link to comment
Share on other sites

Hi Kev,

 

There are so many articles available online.Please see below few.

 

https://docs.citrix.com/en-us/netscaler-gateway/12/native-otp-support.html

https://www.jgspiers.com/netscaler-native-otp/

https://www.carlstalhood.com/netscaler-gateway-12-native-one-time-passwords-otp/

 

If you need to publish RDP as an application you need a server CAL. Published apps / published desktops, then you need RDS/TS CAL Please see below more about CAL

 

https://www.whitehatvirtual.com/blog/bid/344188/microsoft-licensing-for-citrix-environments

https://docs.microsoft.com/en-us/windows-server/remote/remote-desktop-services/rds-client-access-license

 

Thanks 

Manoj

 

Link to comment
Share on other sites

Hi Manoj,

 

Thanks for the NetScaler Native OTP Articles. This sounds ideal for us as we would like to investigate moving away from existing on-prem MFA appliances and make use of OTP as part of the Workspace Premium Plus licensing.

 

As we would like to move away from publishing the RDP App and connecting directly using Remote PC to the end users physical machine, this means that no additional RDS CAL licensing would be required as far as I'm aware.

Link to comment
Share on other sites

  • 2 years later...

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
×
×
  • Create New...