glenmos
asked on
Restrict access to file shares in Citrix for remote users
Hi,
We have installed Netscaler Access Gateway 10.5 to provide remote access to our Citrix XenApp 6.5 infrastructure with Web Interface 5.4. Users authenticate via LDAP in AD 2008R2 and RSA second factor.
All works as needed but remote users have same access to all file shares same way as they would work in the office. This create potential security risk as they do not need access to all files when working from home.
Is there a way to restrict access to certain file shares or folders when users logged in remotely via Netscaler? Are there any policies in Citrix or AD which would help us?
We have installed Netscaler Access Gateway 10.5 to provide remote access to our Citrix XenApp 6.5 infrastructure with Web Interface 5.4. Users authenticate via LDAP in AD 2008R2 and RSA second factor.
All works as needed but remote users have same access to all file shares same way as they would work in the office. This create potential security risk as they do not need access to all files when working from home.
Is there a way to restrict access to certain file shares or folders when users logged in remotely via Netscaler? Are there any policies in Citrix or AD which would help us?
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
at one customer we build a separate DMZ, place some xenApp servers there and disable fileserver access at the firewall.
ASKER
According to Citrix support the only way to have different access rights to folders for remote users, is to create separate AD accounts for remote access.
http://support.citrix.com/article/CTX122538