?
Solved

Secure XML traffic in Xen App 6.5 environment

Posted on 2013-11-05
3
Medium Priority
?
1,000 Views
Last Modified: 2014-01-08
How do you use port 443 to secure xml traffic for a XenApp 6.5 environment.  The portal will be via Storefront 2.0.  I am not looking to secure the ICA client connect just XML.   Does this mean I need to get an SSL certificates for that one server?  Do I need to setup some Citrix Server policy to reflect XML port 443?  What does that do for the other Session Host servers?  What do I need here?  Looked at some articles, but not sure I understand.
0
Comment
Question by:WestCoastbound
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 2
3 Comments
 
LVL 26

Accepted Solution

by:
Tony J earned 1500 total points
ID: 39624517
Unfortunately this is something Citrix don't make easy or obvious.

You can't just change the XML service to port 443 and throw in a certificate.

You need to use SSL relay and then configure this to encrypt the XML traffic. And yes, you need certificates.

Info to get started is here: http://support.citrix.com/proddocs/topic/xenapp65-admin/ps-securing-using-ctx-ssl-relay.html
0
 

Author Comment

by:WestCoastbound
ID: 39624802
I thought you only need SSL relay for securing ICA connections?  I only want to secure xml from Storefront to XML brokers.
0
 
LVL 26

Expert Comment

by:Tony J
ID: 39624919
From the eDocs URL above:

In general, use SSL Relay for SSL/TLS support when you:

•Want to secure communications with servers that host the Citrix XML Service.

To the best of my knowledge this is/always has been the only way to secure XenApp's XML traffic via SSL. Oddly, you can natively secure XenDesktop's XML service and have been able to for some time.
0

Featured Post

NFR key for Veeam Agent for Linux

Veeam is happy to provide a free NFR license for one year.  It allows for the non‑production use and valid for five workstations and two servers. Veeam Agent for Linux is a simple backup tool for your Linux installations, both on‑premises and in the public cloud.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

#Citrix #Internet Explorer #Enterprise Mode #IE 11 #IE 8
ADCs have gained traction within the last decade, largely due to increased demand for legacy load balancing appliances to handle more advanced application delivery requirements and improve application performance.
How to install and configure Citrix XenApp 6.5 - Part 1. In this video tutorial we have explained step by step installation of Citrix XenApp 6.5 Server on Windows Server 2008 R2 is explained in this video. We have explained the difference between…
This demo shows you how to set up the containerized NetScaler CPX with NetScaler Management and Analytics System in a non-routable Mesos/Marathon environment for use with Micro-Services applications.

765 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question