Solved

Citrix single sign on / pass-thru authentication prompts for credentials

Posted on 2008-10-15
3
7,448 Views
Last Modified: 2008-10-21
I have a Windows XP SP2 client trying to connect to a published app on a Windows 2003 server running Citrix Metaframe XPe using the local user name and password with pass-thru authentication.  PASS-THRU AUTHENTICATION WORKS ON EVERY SINGLE COMPUTER EXCEPT THIS ONE.  I've checked the following:

* Ensured that ICA Settings/General tab, "Pass-Through Authentication" and "Use local credentials to log on" are both checked.

* Ensured that Properties/Logon Information tab, "local user" radio button is selected and that "Pass-through Authentication" is checked.

* Confirmed that there are no local policies blocking this feature.  Changed local policy object Local Computer Policy / Computer Configuration / Administrative Templates / Citrix Components / Presentation Server Client / User Authentication / Local user name and password from "Not Configured" to "Enabled" to lock in pass-through authentication, denying the user the ability to change this to user-specified credentials.

* In separate tests, added the following lines to the C:\Documents and Settings\%username%\Application Data\ICAClient\appsvr.ini file.

EnableSSOnThruCAFile=On  to the WFClient portion of appsrv.ini.    
SSOnUserSetting=On was already in there.

0
Comment
Question by:zaphod_beeblerox
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
3 Comments
 
LVL 2

Assisted Solution

by:Ron9909
Ron9909 earned 100 total points
ID: 22733965
Could you check the properties of the ICA connection through the Citrix Connection Configuration utility and make sure that the 'prompt for password' check box is cleared?  Inherit user config should be checked there also.

I know you said you've checked the policy, but can you also check under:
Computer Config > Administrative Templates > Windows Components > Terminal Services > Encryption and Security as there is a further option here for prompt user on connection.
0
 

Accepted Solution

by:
zaphod_beeblerox earned 0 total points
ID: 22736653
Thank you Ron9909, but that setting is already set to Not Configured.
Upon further investigation, I found that ssonsvr.exe was not running and was not starting.  

I eventually found that the Intel wireless software was causing the problem. I fixed it by changing the order of the items in the following registry keys:

HKLM\System\CurrentControlSet\Control\NetworkProvider\Order\ProviderOrder
and
HKLM\System\CurrentControlSet\Control\NetworkProvider\HWOrder\ProviderOrder

The setting had been:

RDPNP,LanmanWorkstation,WebClient,IntelNetProvCredMan,PnSson

and I changed it to:

RDPNP,LanmanWorkstation,WebClient,PnSson,IntelNetProvCredMan

After logging off and logging back on, ssonsvr.exe started successfully, and pass-thru worked!

It appears that you can also change the Provider Order by going into Network Connections. Select Advanced...Advanced settings, then Provider Order tab and move Citrix single sign on higher up.
0
 
LVL 1

Expert Comment

by:jcneil4
ID: 25026598
Thank you zaphod_beeblerox!!!  This has been plaguing me for a long time and i couldnt figure it out!  This worked like a charm ;-)
0

Featured Post

Salesforce Made Easy to Use

On-screen guidance at the moment of need enables you & your employees to focus on the core, you can now boost your adoption rates swiftly and simply with one easy tool.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Many companies are making the switch from Microsoft to Google Apps (https://www.google.com/work/apps/business/). Use this article to learn more about what Google Apps has to offer and to help if you’re planning on migrating to Google Apps. It is …
More or less everybody in the IT market understands the basics of Networking, however when we start talking about Storage Networks, things get a bit dizzier, and this is where I would like to help.
The viewer will learn how to simulate a series of coin tosses with the rand() function and learn how to make these “tosses” depend on a predetermined probability. Flipping Coins in Excel: Enter =RAND() into cell A2: Recalculate the random variable…
The viewer will learn how to simulate a series of sales calls dependent on a single skill level and learn how to simulate a series of sales calls dependent on two skill levels. Simulating Independent Sales Calls: Enter .75 into cell C2 – “skill leve…

751 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question