Jump to content
Welcome to our new Citrix community!
  • 0

Federated Authentication Service on tenant split

Marcel Zunnebeld1709163163


Hello, for the configuration for a shared service center I have a question about SAML authentication between Citrix and Microsoft with Azure MFA for SSO to be able to log in to the VDA (Server 2019 VDA). This is an on-premises CVAD environment.
This is a shared service organization in which the participating (9) customers are in one Active Directory domain.


Does anyone know if you can still log in per tenant SSO with Citrix FAS/Azure MFA/NetScaler in the event of a tenant split?


Normally you enable the Seamless Single Sign-On option on your (single) tenant via AD Connect. How does this work with multiple tenants under the 'central' tenant? Activating Seamless Single Sign-On is not possible per sub-tenant, right? Or are there other options for this? Unfortunately, the shared service center cannot enable the Seamless Single Sign-On option on the main tenant because it affects the subtenants.

Thanks in advance!

Link to comment

2 answers to this question

Recommended Posts

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
  • Create New...