Jump to content
Welcome to our new Citrix community!
  • 0

FIDO2 authentication with Netscaler access from external

Beat Buser1709156910




Customer needs to implement FIDO2 security usb sticks. As I know Netscaler gateway does not support FIDO2 at the moment.

As of security reasons the customer also do not want to use FAS but will have SSO like logon process for the users.


Now I had designed a solution but not sure if this is working.


We do SAML authentication from Netscaler to ADFS. So ADFS can do the FIDO2 logon for the Netscaler.

On the VDI we will allow FIDO2 redirection so users have to select the USB stick a second time but has not to enter any passwords.


Anyone outhere who can say if this could work? Or anybody with a better solution?


To say is that the solution will be uses absolutly offline. Internet connection is highly forbidden.

Link to comment

1 answer to this question

Recommended Posts

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
  • Create New...