nFactor – adding custom links

Adding links to the login process is helpful to present the user with additional information, or linking to a portal page where they can create a service ticket.

Continue Reading →

Passwordreset portal with NetScaler as frontend

Introduction Users that forget their password usually adds unwanted queues to helpdesk. Wouldn’t it be nice, if the user’s themselves could reset their own password?

Continue Reading →

n-Factor: Clearing up the mystery

Introduction: n-Factor, released in 11.0, not yet really understood and used – let’s change that!

Continue Reading →

Alternative for “is_vpn_url”

When using AAA, I usualy setup a ContentSwitch that integrates a non addressable AAA vserver.

Continue Reading →

Basic web authentication setup

With the Netscaler 10.5 release came a new feature: Web Authentication.

Continue Reading →

Use SAML Attributes in Policy Expressions

SAML is a protocol that is taking off more and more allowing authentication of users without passwords over public Networks.

Continue Reading →

Citrix Netscaler and SSL 3 “Poodle” vulnerability

Citrix just released a security advisory article regarding the SSL “poodle” vulnerability and how we can disable SSL 3.0 protocol on the Netscaler -> http://support.citrix.com/article/ctx200238 The article shows how we can disable SSL on vServers and on NSIP, MIP and SNIPs.

Continue Reading →

ShellShock and NetScaler

1-oct-2014 – Updated with new Responder Policy to block ShellShock based on traffic pattern 28-oct-2014 – Updated with new NetScaler version with Bash Fix This week it happened again, after HeartBleed a couple of months ago another major security hole popped-up; ShellShock or CVE-2014-6271.

Continue Reading →

Kerberos SSO by impersonation

Kerberos is complicated, but you should not over-complicate it.

Continue Reading →

How To: NetScaler 10.5 as SAML Identity Provider

In this how-to we will explain how to setup the NetScaler as a SAML Identity Provider (IdP) for SAML 2.0 so we can generate tokens / assertions to be consumed by a SAML Service Providers (SP).

Continue Reading →