NetScaler introduced native OTP (One Time Password) some time ago, which you can incorporate in the login process as long as you have AD servers ready to use as a database.
During the login flow, you might want to extract which group(s) a user is a member of, and based on that information change the login flow.
Adding links to the login process is helpful to present the user with additional information, or linking to a portal page where they can create a service ticket.
Introduction Users that forget their password usually adds unwanted queues to helpdesk. Wouldn’t it be nice, if the user’s themselves could reset their own password?
SAML is a protocol that is taking off more and more allowing authentication of users without passwords over public Networks.
Citrix just released a security advisory article regarding the SSL “poodle” vulnerability and how we can disable SSL 3.0 protocol on the Netscaler -> http://support.citrix.com/article/ctx200238 The article shows how we can disable SSL on vServers and on NSIP, MIP and SNIPs.
1-oct-2014 – Updated with new Responder Policy to block ShellShock based on traffic pattern 28-oct-2014 – Updated with new NetScaler version with Bash Fix This week it happened again, after HeartBleed a couple of months ago another major security hole popped-up; ShellShock or CVE-2014-6271.