Jump to content
  • 0

Authenticating to apps with a different account than the logging in user


Bill Gruber

Question

Posted

I have a few admin applications like ADUC that require using and admin account version the day-to-day account the users sign in with.  Currently the users sign into Citrix with their Entra ID credentials with MFA, then log onto the server hosting the application with their on prem day to day accounts and their app launches.  If they use their admin accounts, there's an error and the users cannot connect in.  

Is there any way to allow the users to authentic with their admin accounts to the app server when signed in with their day-to-day accounts in workspace?

1 answer to this question

Recommended Posts

  • 0
Posted

Not if the first point of authentication is with their day to day account by Citrix. Citrix will never allow authentication with Account A and then a logon to a resource with Account B - that is a hard security no. The brokered user is the only one allowed to logon to resources published to them

Typically people just auth with normal account for session launch, and then from within the resource (desktops are easier) they go and elevate onwards to the next step

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
×
×
  • Create New...