Note: This integration does not support the use of Push. You will need to use OTP.
Setting up MFA for RADIUS is a requirement for this integration. Please see this article for more information.
- Go to the Start Menu and click on All Programs, then Citrix, then Management Consoles, then open Access Management Console.
- Expand Citrix Resources, then Configuration Tools, then Web Interface, then click on the site that you want to add two factor authentication to.
- Click Configure authentication methods
- Select Explicit then click Properties
- Click on Two-Factor Authentication, then set the Two-factor setting to RADIUS
- Type in the IP address and port of the AuthAnvil Radius agent, then click ‘OK’. (The AuthAnvil Radius agent runs on port 1812 by default)
- Click OK, then OK again, and close the Citrix Access Management Console.
- XenApp and XenApp fundamentals require that the RADIUS secret that has been configured between this client and the AuthAnvil RADIUS Server is placed in a text file in the Citrix\RADIUS\CONF directory.
- Go to C:\inetpub\wwwroot\Citrix\<site_name>\conf folder and create a file called radius_secret.txt.
- Open this text file and enter your RADIUS shared secret passcode.
- Save the file and close it.
- For Web Interface 5.2 or later: Go to folder and open the file Web.config with a text editor like Notepad. On Java application servers, the file is web.xml file.
- Search for line # 102 or the following parameter:
<add key="RADIUS_NAS_IDENTIFIER" value="" />12.
- For value, enter any alphanumeric value longer than 3 characters.
- Save the Web.config file and test your Web Interface site.
- To test the Site, log on to the website you protected with AuthAnvil. You will now see a Passcode field.
The credentials would should be formatted as follows:
Username: Xenapp Username (this should match authanvil username)
Password: Xenapp Password
Passcode: Authanvil Password,OTP (ex. Password123!,56241526)