Citrix NetScaler AAA Integration
Hijacking user credentials poses a risk of unauthorized access to accounts. Nowadays, providing additional security steps to solve such problems is possible with the SecTrail verification server.
In this document, you can find information about two-factor authentication with one-time passwords (SMS, E-mail, SoftOTP) for Citrix NetScaler AAA using SecTrail.
Integration of SecTrail with Citrix NetScaler AAA;
- Credentials are entered on the login screen of Citrix NetScaler.
- Information (username and password) is sent to SecTrail server as a RADIUS request through Citrix NetScaler
- SecTrail performs user authentication (using Active Directory, Database, etc.) and sends the RADIUS response to Citrix NetScaler. If the authentication is successful, SecTrail sends a one-time password to the address obtained from the user information in the database (AD, LDAP, Local) via SMS or email. An external SMS Proxy or Email server is used for the delivery stage. In the case of using Software Token (SoftOTP), the password is generated through the SecTrail Authenticator mobile application.
- If the response is successful, Citrix NetScaler presents the user with a second screen.
- The user enters the one-time password generated by SMS, E-Mail or SecTrail Authenticator mobile application transmitted by SecTrail,
- Citrix NetScaler sends the one-time password to SecTrail as a RADIUS request.
- SecTrail verifies the one-time password and sends the response to Citrix NetScaler.
- If the response is successful, Citrix NetScaler allows user access and starts the session.
Mobile Application Support
If you want to use SoftOTP, you can ensure your security through the SecTrail Authenticator mobile application.
You can download the SecTrail Authenticator application to your mobile device from the Apple App Store or Google Play Store.