iGel THIN CLIENT – passthrough authentication

iGel THIN CLIENT – passthrough authentication

If you log on to the client with your AD account the password can be changed and thus the password is already changed when it comes to authentication at the Citrix server. The credentials can be passed automatically to the Citrix session without the need to provide them another time.

Security -> Logon -> Active Directory/Kerberos -> Login to Active Directory Domain (place checkmark)

Security -> Active Directory/Kerberos -> enable (place checkmark)
Security -> Active Directory/Kerberos -> Default Domain (Fully Qualified Domain Name) (fill in)
Security -> Active Directory/Kerberos -> Domain 1 -> Domain Name (fill in domain FQDN)
Security -> Active Directory/Kerberos -> Domain 1 -> Domain Controller list (add FQDN of the domain controller(s))

Sessions -> Citrix XenDesktop/XenApp -> Citrix StoreFront/WebInterface -> Logon -> Use passthrough authentication (place checkmark)

Please be aware that now the client needs to be locked locally instead of in the session to avoid that another person can use the passthrough to get into the session without providing the password.

User Interface -> Screen Lock /Saver -> Use Hotkey -> Modifiers: Win

User Interface -> Screen Lock /Saver -> Use Hotkey -> Hotkey: l

User Interface -> Screen Lock /Saver -> Options -> Screen Lock Password: User Password

Thus the win + L will lock the IGEL Client instead of the session desktop. The AD password needs to be netered to unlock the IGEL Clients.

Lascia un commento

Il tuo indirizzo email non sarĂ  pubblicato. I campi obbligatori sono contrassegnati *