• Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 1477
  • Last Modified:

Citrix XenApp Web Interface how to force https and have authentication not break

I am running a Citrix server and run a web interface  from it.  Currently it is working fine with http, I am wanting to force https.  What I have tried so far breaks the authentication. The web interface is the default site and have tried to remove the port 80 binding and make a second site with a java script that redirects to the https site.  The redirector works however, when the user tries to log in, the authentication no longer works.  This feels like there is something in the authentication of the site that needs the binding to be set to the web interface. If I roll back the port 80 binding back to the default site, restart web svc, the authentication works again.  
0
BlakeISS
Asked:
BlakeISS
  • 3
  • 3
  • 2
1 Solution
 
Daniel BorgerSenior Citrix Engineer- CCEECommented:
http://support.microsoft.com/kb/298805
IIS settings:
-Set the default web site to require SSL session and 128-bit encryption
-Installed the server certificate
-Enable a Certificate Trust List
0
 
Daniel BorgerSenior Citrix Engineer- CCEECommented:
0
 
BlakeISSAuthor Commented:
dborger,
Sorry but these articles are from 2008 and are for Presentation server not XenApp.  Thank you for responding though.
0
SMB Security Just Got a Layer Stronger

WatchGuard acquires Percipient Networks to extend protection to the DNS layer, further increasing the value of Total Security Suite.  Learn more about what this means for you and how you can improve your security with WatchGuard today!

 
BlakeISSAuthor Commented:
Your first response is direction for how to set up SSL.  I have no problems with this portion of the task but do need assistance with the question posted above.  Thanks for trying to offer suggestions they are appreciated.
0
 
Daniel BorgerSenior Citrix Engineer- CCEECommented:
what version of Web interface are you using?
0
 
Carl WebsterCommented:
Just use the free Citrix Secure Gateway and direct all users to the CSG DNS name.  That will force all users to use SSL.

i.e. https://csg.domain.com

http://dabcc.com/Webster/CSG
0
 
BlakeISSAuthor Commented:
I am using Xenapp and when i try and  Set the default web site to require SSL session and 128-bit encryption, it breaks the authentication piece. Sorry for the delay, I have been out of the office.
0
 
Carl WebsterCommented:
Don't do that!
0

Featured Post

Evaluating UTMs? Here's what you need to know!

Evaluating a UTM appliance and vendor can prove to be an overwhelming exercise.  How can you make sure that you're getting the security that your organization needs without breaking the bank? Check out our UTM Buyer's Guide for more information on what you should be looking for!

  • 3
  • 3
  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now