Jump to content


Photo

authentication to a website

Started by Patrik Holmberg , 15 March 2017 - 06:03 AM
4 replies to this topic

Patrik Holmberg Members

Patrik Holmberg
  • 11 posts

Posted 15 March 2017 - 06:03 AM

I have a problem.

I have a Netscaler  VPX 11.1.49

And i have a simple SharePoint server and i will use a authentication to the SharePoint Before i connect to SharePoint servern.

i will use a 2 steps authentication. i already use one for a VPN so i use google authenticator.

 

But if i will use a site in Netscaler for authentication to the Sharepoint after authentication. can i use the konfiguration of a "load balansing" and if so can i set a authentication of this konfig or did i must use a "Netscaler gateway" funktion.

I dont understand this i Think.

 

Or can i do a authentication Before connect to a SharePoint server.

 

Thanks 



Carl Stalhood CTP Member

Carl Stalhood
  • 11,444 posts

Posted 15 March 2017 - 12:08 PM

I think you can do this in Unified Gateway. Did you create a Unified Gateway? 



Aparna Sharma Citrix Employees

Aparna Sharma
  • 22 posts

Posted 15 March 2017 - 01:03 PM

Hey Patrik,

Just to make sure I've understood your requirement correctly, you want to load balance Sharepoint Servers on NetScaler and want NetScaler to do the authentication. Correct me if wrong.

If my above understanding is correct, you can achieve by creating a AAA vServer and bind this to the LB VIP.

Please refer the below articles:

>> https://docs.citrix.com/en-us/netscaler/10-1/ns-gen-appsec-wrapper-10-con/ns-aaa-app-trafc-wrapper-con-10/ns-aaa-how-it-works-con.html
>> https://docs.citrix.com/en-us/netscaler/11-1/aaa-tm/authentication-virtual-server.html

Let me know if any questions. Thanks!



Patrik Holmberg Members

Patrik Holmberg
  • 11 posts

Posted 16 March 2017 - 02:10 PM

Hi.

 

Thanks for your answer.

I Think i get it to work.

I have an VPN SSL with 2 ways auth with Google Authenticator.

And i setup a LB server with a new externa ip. Not through a FireWall.

And i use the "Authenticator" meny in the LB VIP conifg.

And i use the Redirect funktion to use the existing Domain authenticator for the VPN.

 

THis i is funkction perfectly.

I connect to the SharePoint.xxx.xx and redirect to the AAA server for the VPN at adress access.xxx.xx.

And when i have authenticate then i redirect back to SharePoint.xxx.xx again.

And connent perfectly to SharePoint server.

 

But the Connection is only for a browser i Think.

If i start my OneNote and will sync the data i Sharepoint then Connection is stopped

 

So how can i did a Connection from my IP for ex so i can use my OneNote? Or can i do that?

 

Regards

Patrik



Aparna Sharma Citrix Employees

Aparna Sharma
  • 22 posts

Posted 20 March 2017 - 06:39 PM

Hi Ptatrik,

 

What is the error shown, when you try to sync with  Sharepoint?