Citrix, NetScaler
0

NetScaler Gateway – Two-Factor Authentication – How to hide 2nd password field

Some two-factor products (e.g. DUO, SMS Passcode) require you to hide the 2nd password field. Easiest way is to use Rewrite policies, which works both Web browser and Receiver self-service.

Tested with:

Citrix Receiver for Windows 4.6.0
Citrix Receiver for Mac 12.4.0
NetScaler 11.1 51.26.nc

If you have any file level customizations on NetScaler, it needs to be reset as per default settings before doing these Rewrite policy – modifications.

For Web browser:

1. Create a Rewrite Action

Type: INSERT_HTTP_HEADER
Header Name: Set-Cookie
Expression: (“pwcount=”+ 1″)

2. Create a Rewrite Policy

Action: Select the rewrite action which you created
Undefined Result Action: -Global undefined result action
Expression: HTTP.REQ.HEADER(“Set-Cookie”).CONTAINS(“pwcount”).NOT

Bind this policy to the Netscaler Gateway Virtual Server where 2FA is configured.

For Receiver Self-Service:

1. Create a Rewrite Action

Type: INSERT_AFTER_ALL
Expression to choose target location: http.res.body(1024)
Expression: “rn”+”<META http-equiv=”X-Citrix-AM-GatewayAuthType” content=”SMS”>”
Pattern: content=”text/html; charset=UTF-8″>

2. Create a Rewrite Policy

Action: Select the Rewrite action which you created
Undefined Result Action: -Global undefined result action
Expression: http.req.url.path.endswith(“vpn/index.html”)

Bind this policy to the Netscaler Gateway Virtual Server where 2FA is configured.

[facebook_like_button]

Views: 675

Jani Kohonen Visit Website

Jani Kohonen is an author of janikohonen.com and working as a Citrix Consultant and Architect with 17 years of experience in the IT industry. Jani’s been working in the IT industry since 1997 and with Citrix technologies since 2001. He holds several years experience with Microsoft, Citrix, Apple, HP and VMware vendors as well as Server, Application and Desktop virtualization and Mobile technologies. He has done dozens of virtualization design and implementation projects from Small Business to the large global enterprise customers and complex environments. Jani is a Citrix, Microsoft, Apple and ITIL certified specialist. Certifications: MCP, MCSA, MCSE, MCTS, MCITP, HP ASP, HP ASC, HP CSA, HP AIS, HP ASE, VCSP, CCSP, CCA, CCAA, CCEA, CCEE, CCIA, CCP-M, CCE-V, APP, ACA, ACSP, ACTC, ITIL.

Related Posts
How to configure NetScaler with Exchange 2013 Load Balancing via command line
XenMobile 10 – Configuration Series Part 4: Cluster Configuration
How to get Citrix XenDesktop VDI and HDX MediaStream Flash Redirection on the User Device work?

Leave Your Comment

Your Comment*

Your Name*
Your Webpage