Is Azure Market Place "Citrix NetScaler" can authenticate with "On Prem AD" using  "Site 2 Site VPN" connection?
How many seconds Azure "Citrix NetScaler" token will be valid for Authentication?
At On Prem side, ADFS required?
Please suggest

How to create SHA256 CSR file for SSL certificate in Windows 2016?
Environment:
Windows 2016 IIS
Citrix XenApp 7.15 CU2
NetScaler VPX 12.0
VMWARE ESXi 6.5

We have 2 Citrix NetScalers (Virtual Servers) configured in an HA-Pair.  We have updated the 'secondary' NetScaler and everything looks to be working just fine on that NetScaler when we have planned maintenance windows and failed over the Primary (with the older version) and then our pilot test group of users and devices logged on to the updated NetScaler.

Hence we have 1 x Primary 'NetScaler1' (version 11.0) and 1 x Secondary 'NetScaler2' (version 12.0).

I am planning on failing over the 11.0 NetScaler1 to become the secondary and then to have NEtScaler2 become the new Primary in the HA-Pair.  Eventually I will update NetScaler1 to version 12.0.  I think it would be a less disruptive to our employees if I just leave the Netcaler1 to be the secondary after I update it; however I need to test it after the update.

Is there a way to have specific user accounts only login to a Specific NetScaler Server IP address?  Or doe s HA simply not work that way?  Then I simply must fail over the NetScalers again for testing and plan another maintenance window?

How can I view logging regarding state changes of NetScaler Gateway Virtual Servers? After upgrading to the latest version
sometimes user are getting to the proper login page and desktop and other times they redirected to a default site.

NetScaler (11515)
 NS11.1: Build 57.13.

Citrix Licensing Models: Apart below licenses, do we need any other software licenses for Citrix XenApp XenDesktop 7.x deployments?
Especially, VMWare licensing details required for XenDesktop SBC/VDI deployments.

Model 1: Rich Model

Citrix XenAppXenDesktop Platinum Edition
NetScaler MPX
Microsoft CIS Datacenter (Included RDS and Hyper-V VMs OS)  OR  VMWare ESXi with VCenter
MS SQL Server (Enterprise) AllwaysON

Model 2: Economic Model
Citrix XenAppXenDesktop Enterprise – Limited Director reports (31 days of historical analytic data), No Comtrade SCOM pack.
NetScaler VPX Model
MS SQL Server (Standard) without AllwayON
Microsoft CIS Datacenter (Included RDS and Hyper-V VMs OS)  OR Citrix XenServer

Microsoft License :
Hyper-V, Server OS, Desktop OS : Data Center Edition will cover Hyper-V, Server OS and Desktop OS on the Host server.
Extra Windows Desktop OS license for XenDesktop
http://www.purchasing.ufl.edu/contracts/microsoft-select-plus/Microsoft-VDI-Suites-and-Windows-VDA-FAQ-v31.pdf
I’m buying VDI software from VMware/Citrix/another vendor. Do I still need Windows VDA?
Yes. If you are accessing a Windows client OS as your guest operating system in the datacenter from a thin client, Windows VDA is the appropriate licensing vehicle regardless of the VDI software vendor you choose. The only scenario where you would not need Windows VDA is if you were using PCs covered under Software Assurance as the access devices, since …

Citrix NetScaler VPX 12.0 Configuration for StoreFront Loadbalance in Intranet 7.15 CU2 environment.
http://www.carlstalhood.com/storefront-load-balancing-netscaler-12/ 

How to create SSL certificates using MS CA :
https://mizitechinfo.wordpress.com/2013/08/29/step-by-step-deploying-a-standalone-root-ca-in-server-2012-r2-part-1/
https://mizitechinfo.wordpress.com/2013/08/31/step-by-step-deploying-an-enterprise-subordinate-ca-in-server-2012-r2-part-2/
https://support.citrix.com/article/CTX206492
http://www.citrixguru.com/2015/11/15/lab-part-15-configure-ssl-in-storefront/


1. SSL certificates requirement - PFX/CRT/PEM, How to generate required SSL certificate?  -- PFX
2. SSL Certificates required for StoreFront, DDC, and NetScaler? How to generate?
Windows 2016 Certificate Authority role required to generate these certificates? If yes, How to generate?
https://www.experts-exchange.com/questions/26672335/'Web-Server'-Certificate-Template-not-an-option-on-http-server-certsrv.html
3.  Service Accounts requirement for LDAP authentication. -- One Service Account Required
4.  How many IPs required for SF LB?
NS IP, SNIP, SF LB VIP, DDC LB VIP, Director LB VIP, DNS LB VIP.

Please close the thread.

Citrix Netscaler 12.0 ReWrite Policy

Hi

I am currently implementing a rewrite policy on my Netscaler testing environment to be able to insert a footer on the login page to inform users of anything they need to be aware of. The policy is working as expected, however when making a change to the policy, it is not reflecting the change on the logon page. It seems to be cached, but I am unsure where. I have tried 2 different browsers and also re-creating the Virtual Server and re binding the policy. I am following this guide:

https://support.citrix.com/article/CTX215817

Any help would be appreacited.

Thanks

Hello,

How can I create URL redirection on Netscaler

I need to redirect https://cportal/sites/NCSC/rfpanswers/*    to    https://sp.compugen.com/sites/rfp/RFP Document Database

please advise.

Hi EE,

If I wish to forego Citrix Netscaler , can I then simply create a virtual server load balancing port 443 with SSL offload on my F5 Big IP device using the traffic manager ? I tried searching the F5 and Citrix  knowledge base with no luck. Looking for any persons experienced in this area.

Hello,

I am a Citrix novice, so I will certainly fill in any gaps that I can when trying to frame the situation and additional information needed.

I have a few users who are getting the error message "Unable to connect to the server. Contact your system administrator with the following error SSL Error 4 The operation completed successfully" when attempting to log into their environment.

Some information I have retrieved:

We are running: NetScaler VPX (50) - NS10.1: Build 121.10.nc, Date: Oct 18 2013

These are a couple of errors from the logs:

Mon Jan 22 07:09:32 'server_svc_internal_NSSVC_SSL_TCP_192.168.100.6:3008(nsrpcs-127.0.0.1-3008)' DOWN
Mon Jan 22 07:09:32 'server_svc_internal_NSSVC_SSL_192.168.100.6:443(nshttps-127.0.0.1-443)' DOWN
Mon Jan 22 07:11:01 MonServiceBinding_192.168.100.204:80_(tcp-default)(internal): DOWN; Last response: Failure - TCP syn sent, reset received
Mon Jan 22 07:11:02 MonServiceBinding_192.168.100.204:443_(tcp-default)(internal): DOWN; Last response: Failure - TCP syn sent, reset received

This occurs with varying versions of the Citrix Receiver. I was able to replicate the issue with the latest and greatest version.

This is something that just started happening about 18 hours ago.

I am in a position to reboot the Netscaler appliance, but didn't want to do so during a time which we still have a few people working and having someone provide some initial feedback.

Any assistance is greatly appreciated.

We are on Xenapp 7.8.  I just found out that our Netscaler license did not belong to us, but to the company that set up Citrix.  Who is now gone.
I got a temporary Netscaler license.  When The Citrix rep called me to give me pricing, it is $7000.  

I spoke to the guy who set up Netscaler and he told me that the SSL certificate could be pointed to the Store Front, which would eliminate the need for Netscaler.

All we use Xenapp for is "Desktop".  We don't deploy any apps.   Is it OK to not use Netscaler?

I am new to this and I cannot figure out the life for me why this virtual is coming up as unregistered. I followed our KB - reinstalled VDA 7.6 rebooted and still nothing. Any experts in this area?