The auth URL is /Citrix/Authentication.Īre your load balancing services set to include the Client IP Header: X-Forwarded-For If not then auth goes to NetScaler Gateway.Īre the Storefront URL (load balancing) and the NetScaler Gateway URL different? They must be different.įor Trusted Sites you only need the FQDN added and probably not /Citrix/Store. Is the internal beacon actually accessible internally? If so then auth should go directly to StoreFront. In StoreFront, is the Base URL set to the load balanced DNS name? On the client device, in Task Manager, do you see ssonsvr.exe as a running process? On the StoreFront server, in the Authentication node, for Trusted Domains, do you have the NetBIOS and UPN suffixes added to the list? Is your load balancer set to Source IP persistence (not cookie insert)? Cookie Insert doesn't work on some Receivers.Īre your load balancing services set to include the Client IP Header: *X-Forwarded-For*?ĭo you have Remote Access enabled on the Store? If so, in the NetScaler Gateway object created on the StoreFront server, is the Subnet IP field blank? For newer versions of NetScaler Gateway there is no need to enter anything in this field. The odd this is there is no entries in eventlog on the local workstation or CGW host. Receiver 3.4 Enterprise pointing to the legacy pnagent service on the CGW host runs fine and is not prompted for auth.
Citrix Pass-through Authentication (SSON) is present and running as client was installed wit /sson switch Issue occurs whether or not it's pointing to the Netscaler 10.1 frontend or directly to one of the CGW hosts. sends a discovery.cr file containing all the Access Gateway details, beacon sites.etc etc. Can access, logon and launch apps via an Access Gateway site pointing to said Cloud Gateway servers fine. Can access, logon and launch apps via the StoreWeb url just fine. Group policy "allow pass through" and "allow pass through for ICA" enabled. User auth security setting for trusted zone set to both automatic logon for Intranet zone and ".with current username/password" Store url ( ) is added to trusted sites Load-balanced Cloud Gateway 2.0 with all three forms of auth enabled running on Server 2012Ī few notes on things I've tried/confirmed:
Please try again in a few minutes or contact your helpdesk with this information: Cannot contact STORENAME". The store account adds fine but upon clicking "Logon", it reports "your apps are not available at this time. I've had a search through the forums and haven't really seen a clear answer.
0 kommentar(er)
