IT Support1709152897
-
Posts
10 -
Joined
-
Last visited
Content Type
Forums
Articles
Labs
Videos
TechZone
Citrix Community Articles
Events
Profiles
Posts posted by IT Support1709152897
-
-
1 minute ago, Carl Stalhood1709151912 said:
To detect corporate vs non-corporate, you'd need EPA scan with EPA agent. You can do it in a post-auth policy (Session Policy expression).
Ok, thanks Carl, appreciated.
-
15 minutes ago, Carl Stalhood1709151912 said:
You can configure SmartAccess - https://www.carlstalhood.com/smartaccess-smartcontrol-netscaler-gateway-12/
Thanks Carl. Do you need to push out the EPA client still for this, or is it now handled by the receiver? I imagine it wouldn't be pre-auth as i do my client checks at my saml IDP so not use EPA for a long time.
Thanks
-
Hi,
We have a requirement to restrict copy/paste out of a session/remote app on non corporate machines. Is there a way to apply a policy based on a machine not being a on our domain?
We are on 1909.
Thanks
-
Netscaler does the SAML authentication for me.
Interesting, as i didn't want to put in FAS anyway. It's going to be something stupid. Thanks for your help.
-
Just to make sure, your loginname for Office365 matches the UPN you see when you execute this command in a command-prompt? whoami -upn
Your local UPN and Office365 login doesn't necessarily have to match when syncing. Your local UPN could me john@contoso.local and your Office365 login could be john@contoso.com
I think FAS might be causing the problem. I assume you implemented that for the SAML authentication to the storefront? It seems to be where it's all failing.
My UPN matches all the way through.
-
Does your local userPrincipalName match your external (Azure AD?) userPrincipalName?
Yes, it's all synced as we also use Office 365.
Did you make any changes to your Storefront other than enable smartcard login for delegated validation?
-
-
I've found the solution here: http://stealthpuppy.com/netscaler-azure-ad-conditional-access/
Hi,
Thanks, yes i found that afterwards. Did you get a problem where the session opens but doesn't log you in? Mine sits on the login screen.
-
I don't think your article applies. I'm trying to implement Azure AD authentication.
Did you get anywhere with this? I am having exactly the same problem.
Policy assignment to non corporate machines
in XenApp 7.x
Posted
Thanks for your input. I was thinking about this way as well, as least for the short term until Corona is over. I'd be a bit concerned about implemented EPA when all our staff are WFH!
Will need to think about how i can do this when staff are on VPN, but using remote app.