iGel THIN CLIENT – passthrough authentication
If you log on to the client with your AD account the password can be changed and thus the password is already changed when it comes to authentication at the Citrix server. The credentials can be passed automatically to the Citrix session without the need to provide them another time.
Security -> Logon -> Active Directory/Kerberos -> Login to Active Directory Domain (place checkmark)
Security -> Active Directory/Kerberos -> enable (place checkmark)
Security -> Active Directory/Kerberos -> Default Domain (Fully Qualified Domain Name) (fill in)
Security -> Active Directory/Kerberos -> Domain 1 -> Domain Name (fill in domain FQDN)
Security -> Active Directory/Kerberos -> Domain 1 -> Domain Controller list (add FQDN of the domain controller(s))
Sessions -> Citrix XenDesktop/XenApp -> Citrix StoreFront/WebInterface -> Logon -> Use passthrough authentication (place checkmark)
Please be aware that now the client needs to be locked locally instead of in the session to avoid that another person can use the passthrough to get into the session without providing the password.
User Interface -> Screen Lock /Saver -> Use Hotkey -> Modifiers: Win
User Interface -> Screen Lock /Saver -> Use Hotkey -> Hotkey: l
User Interface -> Screen Lock /Saver -> Options -> Screen Lock Password: User Password
Thus the win + L will lock the IGEL Client instead of the session desktop. The AD password needs to be netered to unlock the IGEL Clients.