Citrix Gateway licensing

• Install a license on Citrix Gateway

• Citrix Gateway licensing FAQs

Install and configure the Citrix Gateway appliance

• Configure the Citrix Gateway appliance by using wizards

• Configure Citrix Gateway settings

  • Create virtual servers

  • Configure IP addresses on Citrix Gateway

  • Resolve DNS servers located in the secure network

  • Configure DNS virtual servers

  • Configure name service providers

  • Configure server-initiated connections

  • Configure routing on Citrix Gateway

  • Configure auto negotiation

• Configure the host name and FQDN on Citrix Gateway

• Policies and profiles on Citrix Gateway

• System expressions on Citrix Gateway

• Certificates management on Citrix Gateway

  • Create a certificate signing request

  • Configure intermediate certificates

  • Use device certificates for authentication

  • Import and install an existing certificate

  • Certificate revocation lists

• Manage Citrix Gateway configuration settings

• Certificates management on Citrix Gateway

  • Create a certificate signing request

  • Configure intermediate certificates

  • Use device certificates for authentication

  • Import and install an existing certificate

  • Certificate revocation lists

• Test your Citrix Gateway configuration

Deploy Citrix Gateway in a double-hop DMZ

• Communication flow in a double-hop DMZ deployment

• Install and configuring Citrix Gateway in a double-hop DMZ

  • Configure settings on the virtual servers on the Citrix Gateway Proxy

  • Configure the appliance to communicate with the appliance proxy

  • Configure Citrix Gateway to handle the STA and ICA traffic

  • Open the appropriate ports on the firewalls

Maintain and monitor Citrix Gateway systems

• Configuring Delegated Administrators

  • Configuring Command Policies for Delegated Administrators

  • Configuring Custom Command Policies for Delegated Administrators

• Configuring Auditing on Citrix Gateway

  • Configuring Logs on Citrix Gateway

  • Configuring ACL Logging

• Enabling Citrix Secure Access agent Logging

• To monitor ICA connections

Authentication and Authorization

• Configuring Default Global Authentication Types

• Configuring Authentication Without Authorization

• Configuring Authorization

  • Configuring Authorization Policies

  • Setting Default Global Authorization

• Disabling Authentication

• Configuring Authentication for Specific Times

• How Authentication Policies Work

  • Configuring Authentication Profiles

  • Binding Authentication Policies

  • Setting Priorities for Authentication Policies

• Configuring Local Users

• Configuring Groups

  • Adding Users to Groups

  • Configuring Policies with Groups

• Configuring LDAP Authentication

  • To configure LDAP authentication by using the configuration utility

  • Determining Attributes in Your LDAP Directory

  • Configuring LDAP Group Extraction

  • Configuring LDAP Group Extraction for Multiple Domains

  • 14-day password expiry notification for LDAP authentication

• Configuring Client Certificate Authentication

  • Configuring and Binding a Client Certificate Authentication Policy

  • Configuring two-factor Client Certificate Authentication

  • Configuring Smart Card Authentication

• Configuring RADIUS Authentication

  • To configure RADIUS authentication

  • Choosing RADIUS Authentication Protocols

  • Configuring IP Address Extraction

  • Configuring RADIUS Group Extraction

  • Configuring RADIUS user accounting

• Configuring SAML Authentication

  • Configure SAML authentication

  • Using SAML authentication to log in to Citrix Gateway

  • Improvements in SAML Authentication

• Configuring TACACS+ Authentication

  • Clear Config Basic Must Not Clear TACACS Config

• Configuring Multifactor Authentication

  • Configuring Cascading Authentication

  • Configuring Two-Factor Authentication

• Native OTP Support for Authentication

• Push notification for OTP

• Configuring single sign-on

  • Configuring single sign-on with Windows

  • Configuring single sign-on to Web Applications

  • Configuring single sign-on to a Domain

  • Configuring single sign-on for Microsoft Exchange 2010

• Configuring One-Time Password Use

  • Configuring RSA SecurID Authentication

  • Configuring Password Return with RADIUS

  • Configuring SafeWord Authentication

  • Configuring Gemalto Protiva Authentication

• nFactor for Citrix Gateway Authentication

• Citrix Gateway Visualizer

• Configure Citrix Gateway to use RADIUS and LDAP Authentication with Mobile Devices

• Restrict access to Citrix Gateway for members of one Active Directory group

High Availability deployment

• How High Availability Works

• Configuring Settings for High Availability

  • Creating or Changing an RPC Node Password

  • Configuring the Primary and Secondary Appliances for High Availability

• Configuring Communication Intervals

• Synchronizing Citrix Gateway Appliances

• Synchronizing Configuration Files in a High Availability Setup

• Configuring Command Propagation

  • Troubleshooting Command Propagation

• Configuring Fail-Safe Mode

• Configuring the Virtual MAC Address

  • Configuring IPv4 Virtual MAC Addresses

  • Configuring IPv6 virtual MAC addresses

• Configuring High Availability Pairs in Different Subnets

  • Adding a Remote Node

• Configuring Route Monitors

  • Adding or Removing Route Monitors

• Configuring Link Redundancy

• Understanding the Causes of Failover

• Forcing Failover from a Node

  • Forcing Failover on the Primary or Secondary Node

  • Forcing the Primary Node to Stay Primary

  • Forcing the Secondary Node to Stay Secondary

Citrix Gateway deployment in cluster configurations

• Configuring Clustering

Unified Gateway

• Citrix Gateway FAQ

VPN configuration on a Citrix Gateway appliance

• How users connect with the Citrix Secure Access agent

• Full VPN setup on a Citrix Gateway appliance

• Select the user access method

• Deploy Citrix Secure Access agents for user access

• Select the Citrix Secure Access agent for users

  • Deploy the Citrix Secure Access agent from Active Directory

  • Manage Citrix Secure Access agent by using Active Directory

• Integrate the Citrix Secure Access agent with Citrix Workspace app

  • How users connect with Citrix Workspace app

  • Decouple the Citrix Workspace app icon

  • Configure IPv6 for ICA connections

  • Configure the Citrix Workspace app home page on Citrix Gateway

  • Apply the Citrix Workspace app theme to the Citrix Gateway logon page

  • Create a custom theme for the Citrix Gateway logon page

• Citrix Gateway VPN client registry keys

• Enforce the HttpOnly flag on authentication cookies

• Customize the user portal for VPN users

  • Prompt users to upgrade older or unsupported browsers by creating a custom page

• Clientless VPN access with Citrix Gateway

  • Advanced clientless VPN access with Citrix Gateway

  • Configure domain access for users

  • Clientless VPN access for SharePoint 2003, SharePoint 2007, and SharePoint 2013

  • Enable clientless access persistent cookies

• Citrix SSO VPN client for mobile devices

• Configure the Client Choices page

• Configure access scenario fallback

• Configure connections for the Citrix Secure Access agent

  • Configure the number of user sessions

  • Configure time-out settings

  • Connect to internal network resources

  • Configure split tunneling

  • Configure client interception

  • Configure name service resolution

  • Enable proxy support for user connections

  • Configure address pools

  • Support for VoIP phones

  • Configure Access Interface

  • Create and apply web and file share links

• Traffic policies

• Session policies

  • Configure Citrix Gateway session policies for StoreFront

• Advanced policy support for Enterprise bookmarks

• Endpoint polices

  • Preauthentication policies and profiles

  • Post-authentication policies

  • Preauthentication device check expressions for user devices

  • Configure Device Certificate in nFactor as an EPA component

  • EPA as a factor in nFactor authentication

  • EPA scan classification types on Windows client

• Advanced Endpoint Analysis scans

  • Advanced Endpoint Analysis Policy Expression Reference

  • EPA scan for MAC addresses

• Manage user sessions

• Always On

• Always On VPN before Windows Logon

  • Configure Always On VPN before Windows Logon

Integrate Citrix Gateway with Citrix products

• How users connect to applications, desktops, and ShareFile

• Integrate Citrix Gateway with StoreFront

• Integrate Citrix Gateway with Citrix Virtual Apps and Desktops

• Deploy Citrix Gateway with Citrix Endpoint Management, Citrix Virtual Apps, and Citrix Virtual Desktops

• Configure settings for your Citrix Endpoint Management Environment

  • Configure load balancing servers for Citrix Endpoint Management

  • Configure load balancing servers for Microsoft Exchange with Email Security Filtering

  • Configure Citrix Endpoint Management NetScaler Connector (XNC) ActiveSync Filtering

  • Allow Access from mobile devices with Citrix Mobile Productivity Apps

  • Configure domain and security token authentication for Citrix Endpoint Management

  • Configure client certificate or client certificate and domain authentication

Configuring Settings for Your Citrix Endpoint Management Environment

• Configuring Load Balancing Servers for Citrix Endpoint Management

• Configuring Load Balancing Servers for Microsoft Exchange with Email Security Filtering

• Configuring Citrix Endpoint Management NetScaler Connector (XNC) ActiveSync Filtering

• Allowing Access from Mobile Devices with Citrix Mobile Productivity Apps

• Configuring Domain and Security Token Authentication for Citrix Endpoint Management

• Configuring Client Certificate or Client Certificate and Domain Authentication

Microsoft Intune Integration

• When to Use the Integrated Intune MDM Solution

• Understanding the Citrix Gateway Intune MDM Integration

• Configuring Network Access Control device check for Citrix Gateway virtual server for single factor authentication deployment

• Configuring a Citrix Gateway application on the Azure portal

• Understanding Azure ADAL Token Authentication

• Configuring Citrix Gateway Virtual Server for Microsoft ADAL Token Authentication

• Set up Citrix Gateway for using micro VPN with Microsoft Endpoint Manager

• Extended support for Azure AD Graph

HDX Enlightened Data Transport Support

• When to Use Enlightened Data Transport Support

• Configuring Citrix Gateway to Support Enlightened Data Transport and HDX Insight

• Path MTU discovery and DF bit propagation for UDP traffic

• L7 Latency Thresholding

RDP Proxy

• Stateless RDP Proxy

• RDP connection redirection

• Populate RDP URLs based on LDAP attribute

• Randomize RDP file name with RDP proxy

• Configure names for RDP files

Outbound ICA Proxy support

• Configuring Outbound ICA Proxy

Citrix Gateway Enabled PCoIP Proxy Support for VMware Horizon View

• Configuring Citrix Gateway Enabled PCoIP proxy for VMware Horizon View

• Configuring VMware Horizon View Connection Server

RfWebUI Persona on Citrix Gateway UX Configuration

• RfWebUI configuration parameters

Citrix Gateway portal customizations

• Citrix Gateway portal customization using custom plug-ins

• Create and customize login schema

• Portal customizations from the Admin UI