Jump to content
Welcome to our new Citrix community!
  • 0

Smart card on Citrix Cloud DaaS environment


Mislav Novacic1709163391

Question

Hello,

We have implemented Citrix Cloud DaaS solution with MS Azure as hosting environment.

VDA agent version on session hosts: 2209.0.0.52

3x Cloud Connector servers with latest version

Rendezvous V1 is enabled (not V2)

Authentication: Azure AD

Pass-through (SSO) is enabled by utilizing Azure Pass-Through mechanism by following this blog post: https://citrixie.wordpress.com/2022/07/04/citrix-workspace-azure-ad-sso-access-to-vda-desktops-and-apps-without-fas/

SSO is working fine while using Workspace APP from client computer

 

I have request for use smart card authentication along with SSO.

My question is, how it can be achievable? Prerequisites are that SSO is enabled and GPO settings for Internet options be configured.

What needs to be done on Citrix Cloud backplane in order to achive smart card using?

 

Thank you in advance.

Link to comment

2 answers to this question

Recommended Posts

  • 0

Hello Mislav,

 

using smart card authentication with Azure AD = CBA Authentication. See https://www.julianjakob.com/citrix-fas-azure-ad-cba-with-primary-refresh-token-prt/ and https://learn.microsoft.com/en-us/azure/active-directory/authentication/concept-certificate-based-authentication-smartcard 

 

Currently supported only with Windows 11 22H2, MS is currently working to backport the functionality to Windows 10 and Server OS.

 

Regards

Julian

  • Like 1
Link to comment
  • 0
On 10/11/2022 at 10:39 PM, Julian Jakob said:

Hello Mislav,

 

using smart card authentication with Azure AD = CBA Authentication. See https://www.julianjakob.com/citrix-fas-azure-ad-cba-with-primary-refresh-token-prt/ and https://learn.microsoft.com/en-us/azure/active-directory/authentication/concept-certificate-based-authentication-smartcard 

 

Currently supported only with Windows 11 22H2, MS is currently working to backport the functionality to Windows 10 and Server OS.

 

Regards

Julian

Hello Julian, thanks for the answer... Will look into these articles...

Link to comment

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
×
×
  • Create New...