Hello Experts our current environment is as follows:
Web Server Hosting IIS & Citrix Secure Gateway
Currently users must have CAC or PKI to get to login screen. So where I'm a little fuzzy, authentication starts on users machine their cert must be validated up to CA, once validated, user enters username / password which then goes to AD for verification? Or does Citrix do the verification?