n-factor – native OTP with multiple domains on the same portal

NetScaler introduced native OTP (One Time Password) some time ago, which you can incorporate in the login process as long as you have AD servers ready to use as a database.

Continue Reading →

nFactor – How do authenticated based on group membership

During the login flow, you might want to extract which group(s) a user is a member of, and based on that information change the login flow.

Continue Reading →

nFactor – adding custom links

Adding links to the login process is helpful to present the user with additional information, or linking to a portal page where they can create a service ticket.

Continue Reading →

Passwordreset portal with NetScaler as frontend

Introduction Users that forget their password usually adds unwanted queues to helpdesk. Wouldn’t it be nice, if the user’s themselves could reset their own password?

Continue Reading →

n-Factor: Clearing up the mystery

Introduction: n-Factor, released in 11.0, not yet really understood and used – let’s change that!

Continue Reading →

Alternative for “is_vpn_url”

When using AAA, I usualy setup a ContentSwitch that integrates a non addressable AAA vserver.

Continue Reading →

Basic web authentication setup

With the Netscaler 10.5 release came a new feature: Web Authentication.

Continue Reading →

Use SAML Attributes in Policy Expressions

SAML is a protocol that is taking off more and more allowing authentication of users without passwords over public Networks.

Continue Reading →

Citrix Netscaler and SSL 3 “Poodle” vulnerability

Citrix just released a security advisory article regarding the SSL “poodle” vulnerability and how we can disable SSL 3.0 protocol on the Netscaler -> http://support.citrix.com/article/ctx200238 The article shows how we can disable SSL on vServers and on NSIP, MIP and SNIPs.

Continue Reading →

ShellShock and NetScaler

1-oct-2014 – Updated with new Responder Policy to block ShellShock based on traffic pattern 28-oct-2014 – Updated with new NetScaler version with Bash Fix This week it happened again, after HeartBleed a couple of months ago another major security hole popped-up; ShellShock or CVE-2014-6271.

Continue Reading →