Skip to content

Deyda.net

Deyda Consulting Blog

  • Start Page
  • Consulting
  • About me
    • Privacy Policy
    • Imprint
    • Contact me
    • GitHub
  • NeverRed – Update your Software, the lazy way
    • NeverRed – Changelog
  • LinkedIn
  • Xing
  • Instagram
  • Twitter
  • E-Mail
Deyda.net

Tag: IdPinitiatedSignOn.htm

Citrix ADC as AD FS Proxy

Citrix ADC as AD FS Proxy

This article is about creating an AD FS Proxy from Citrix ADC (version 12). The AD FS Proxy is used to authenticate e.g. external SaaS applications or websites via AD FS. The following should be achieved by the AD FS Proxy:

  • URL / DoS Protection
  • Suitable external authentication (MFA, Forms instead of Kerberos)
  • Account Lockout Protection
  • Availability (Load Balancing)

What is AD FS ?

Active Directory Federation Services (AD FS) is a feature in the Windows Server operating system that allows identity information to be shared outside of the corporate network. Users can access applications (e.g. Office365, Salesforce.com, etc.) without being prompted to provide credentials again. These applications can be hosted locally, in the cloud, or even by other companies. The user accounts can be managed by the administrator in a single location, the Active Directory.

A normal deployment of AD FS for external clients consists of AD FS Proxy and AD FS Server. The AD FS Server is a member of the domain and perform the authentication. The AD FS Proxy is usually located in a separate network zone (DMZ) so that it can be reached externally and forward the requests inwards.

Continue reading “Citrix ADC as AD FS Proxy”
Author Manuel WinkelPosted on February 26, 2019April 28, 2020Categories ADC, Azure, Citrix, Microsoft, Office365Tags AD FS, AD FS Proxy, Citrix, Citrix ADC, Citrix Gateway, Content Switching, Federated Domain, FederationMetadata.xml, IdPinitiatedSignOn.htm, Load Balancing, Microsoft, NetScaler, Office365, Principal, Rewrite, Single-Sign On3 Comments on Citrix ADC as AD FS Proxy

Sprachen

  • Deutsch
  • English

Manuel Winkel Follow

Citrix Technology Professional (CTP) - Presales Engineer at @ControlUp - Deyda Consulting - CCE-V - CCE-N - CCP-M - MCSA - MCSE - Father of 3

Deyda84
deyda84 Manuel Winkel @deyda84 ·
27 Jun

🚨 CVE-2025-6543 is actively exploited in the wild.
Found multiple vulnerable NetScaler instances exposed online.
Update your Citrix ADC now!🛡️



#Citrix #NetScaler #CVE2025 #CyberSecurity

Reply on Twitter 1938540485649309894 Retweet on Twitter 1938540485649309894 7 Like on Twitter 1938540485649309894 13 Twitter 1938540485649309894
deyda84 Manuel Winkel @deyda84 ·
26 Jun

CVE Alert
New Security Bulletin for NetScaler (CVE-2025-6543)

https://www.deyda.net/index.php/en/2025/06/17/checklist-for-netscaler-citrix-adc-cve-2025-5777

#Citrix #CitrixCTP #CVE #security #NetScaler

Reply on Twitter 1938128306764976360 Retweet on Twitter 1938128306764976360 1 Like on Twitter 1938128306764976360 3 Twitter 1938128306764976360
deyda84 Manuel Winkel @deyda84 ·
17 Jun

CVE Alert 🚨🚨🚨

New Security Bulletin for NetScaler ADC.

https://www.deyda.net/index.php/en/2025/06/17/checklist-for-netscaler-citrix-adc-cve-2025-5777/

#Citrix #CitrixCTP #CVE #security

Reply on Twitter 1935005756354388217 Retweet on Twitter 1935005756354388217 1 Like on Twitter 1935005756354388217 4 Twitter 1935005756354388217
Load More...

Categories

  • Basic (1)
  • Citrix (43)
    • ADC (14)
    • StoreFront (3)
    • Virtual Apps and Desktops (20)
    • WEM (13)
  • Microsoft (20)
    • Azure (8)
    • Exchange (1)
    • FSLogix (4)
    • Office365 (11)
    • PowerShell (3)
    • SQL (2)
  • NVIDIA (1)

Tag Cloud

AppLocker NetScaler Gateway SQL Express Windows Server Netscaler IP Configuration Set FSLogix UPM Office Microsoft Universal Profile Management WEM Single-Sign On SQL Server Teams User Environment Management Office365 SAML Intelligent I/O Optimization XenDesktop Citrix Gateway ADMX Upgrade Remote Desktop Citrix ADC Virtual Apps Workspace Environment Management PowerShell Administration Console Folder Redirection Citrix Azure AD Applet Name NetScaler LoadBalancer Norskale Broker Service Performance Management Virtual Desktop StoreFront NetScaler Intelligent CPU Optimization Unified Gateway Active Directory Intelligent Memory Optimization UEM XenApp

Recent Posts

  • Checklist for NetScaler (Citrix ADC) CVE-2025-5777 & CVE-2025-6543 June 26, 2025
  • Install new Microsoft Teams (version 2) in Citrix May 17, 2024
  • Checklist for NetScaler (Citrix ADC) CVE-2023-4966 December 12, 2023
  • SAML Authentication between Citrix & Microsoft with Azure MFA September 8, 2023
  • Checklist for NetScaler (Citrix ADC) CVE-2023-3519 July 19, 2023

Meta

  • Log in
  • Entries feed
  • Comments feed
  • WordPress.org
  • Start Page
  • Consulting
  • About me
    • Privacy Policy
    • Imprint
    • Contact me
    • GitHub
  • NeverRed – Update your Software, the lazy way
    • NeverRed – Changelog
  • LinkedIn
  • Xing
  • Instagram
  • Twitter
  • E-Mail
Deyda.net Privacy Policy Proudly powered by WordPress