Citrix PS3 secure gateway, web interface and STa install

Hi,

I have created my Citrix farm and it is working on a 2003 domain. I have placed a 2003 server workgroup in the DMZ ready for SG and Web interface.  I am just about to install STa on a server in the domain, is there any order for the installs or any other advice
jrinnsAsked:
Who is Participating?
I wear a lot of hats...

"The solutions and answers provided on Experts Exchange have been extremely helpful to me over the last few years. I wear a lot of hats - Developer, Database Administrator, Help Desk, etc., so I know a lot of things but not a lot about one thing. Experts Exchange gives me answers from people who do know a lot about one thing, in a easy to use platform." -Todd S.

brownmattcCommented:
1. Secure Ticket Authority
2. Secure Gateway
3. Web Interface

Make sure you download the new version of WI.  It is 3.0.  It is much easier to use and configure than the old version.

Matt
0
brownmattcCommented:
Oh and make sure you have a Server Certificate installed BEFORE you install the rest.  It will save you alot of time in the long run.

Matt
0
jrinnsAuthor Commented:
hi,

never got your reply in time and went with sta then web interface, citrix uk told me this ?havnt begun with SG yet as had some NAT issues. its now working via our firewalls ip address which forwards this onto the WI server, I thought this was all that was needed but also had to open 1494 and forward this onto the citrix server or no apps would launch. now working fine although. i had published some content but when i hovered the mouse on them they had an external path to them where as outlook and desktop started with the external ip address.

any ideas and is this very secure?, this way the PN can also access the external ip but I was advised this isnt very secure but might add safeword for the WI access. It will take alot of installs until im used to the web access side of things, i suppose one youve done it a few times you ge the hang like anything else

thanks

jason
0
Cloud Class® Course: Python 3 Fundamentals

This course will teach participants about installing and configuring Python, syntax, importing, statements, types, strings, booleans, files, lists, tuples, comprehensions, functions, and classes.

jrinnsAuthor Commented:
sorry typo - when i hovered over the pulished content ie files / media it showed an internal path on the domain which as you know aint gonna work
0
brownmattcCommented:
If you would like to secure it then you should implement HTTPS.  It isn't to hard to do.  Basicly in IIS (I assume you published it using IIS settings) you need to do a couple of things. Check this citrix doc for the steps:
http://support.citrix.com/kb/entry!default.jspa?categoryID=242&entryID=4683&fromSearchPage=true

Use the second method that starts on Page 8.  That way when someone tries to connect to your site they will be automatically redirected to a secure website.

You can also add Safeword to the logon process if you want to make sure that it is doubley secure but Safeword only secures the logon not the data sent back and forth. For that you need SSL (HTTPS)

Matt
0
jrinnsAuthor Commented:
So is it too late to go with Secure Gateway?
0
brownmattcCommented:
Nope. Go ahead and install it.
0

Experts Exchange Solution brought to you by

Your issues matter to us.

Facing a tech roadblock? Get the help and guidance you need from experienced professionals who care. Ask your question anytime, anywhere, with no hassle.

Start your 7-day free trial
jrinnsAuthor Commented:
Thanks for your help. Did the redirection to https which worked a treat. everyone is pleased with it so thats a job well done. Might go ahead with secure gateway, its just allocating time to look at it
jason
0
It's more than this solution.Get answers and train to solve all your tech problems - anytime, anywhere.Try it for free Edge Out The Competitionfor your dream job with proven skills and certifications.Get started today Stand Outas the employee with proven skills.Start learning today for free Move Your Career Forwardwith certification training in the latest technologies.Start your trial today
Windows Server 2003

From novice to tech pro — start learning today.