Free EditionCitrix Gateway, formerly known as NetScaler Gateway, is a secure remote access gateway that is positioned in an organization's DMZ, or demilitarized zone, and encrypts the traffic. In simpler terms, it acts as a bridge between the internet and an organization's network. It offers features like server load balancing and single sign-on, and provides secure access to Software as a Service and web applications from any device through a single URL.
While Citrix Gateway is used to provide secure remote access, the login security could still remain vulnerable even with its built-in authentication. If compromised, it gives hackers enough leeway to break into an organization's critical resources. Citrix announced a critical vulnerability in December 2019, which allowed hackers to gain direct access to the organization's network. Strong and advanced MFA makes it harder for unauthorized users to gain access even if a vulnerability is present.
Securing Citrix Gateway logins using ADSelfService Plus is your solution to fortify the connection to your organization's network. With advanced authentication methods and adaptive MFA, employing FIDO passkeys and biometrics, you'll enjoy a seamless and secure login process. The solution also helps you comply with regulations and mandates like the NIST SP 800-63B, HIPAA, NYCRR, the FFIEC guidelines, the PCI DSS, and the GDPR.
ADSelfService Plus offers an intuitive portal where you can select your preferred method of MFA from a wide range of one-way and challenge-based authenticators. An MFA policy can also be configured for a specific group of Citrix Gateway users to restrict everyone from having the same login process.
Once Citrix Gateway is setup with ADSelfService Plus, the login process is as follows:
Try out our interactive VPN MFA demo.
You can choose from a wide range of authenticators supported by ADSelfService Plus to log in to Citrix Gateway.
By implementing a set of rules to evaluate risk factors such as IP address, access time, device, and location, you can reduce or enforce stringent measures based on the situation. MFA can be heightened while a user logs in using an unknown device compared to logging in at their workplace during regular office hours.
Get built-in reports on users' MFA attempts, including the attempted time, device type, and IP address, to keep you updated in real time. Also get reports on all MFA-enrolled users, MFA failures, and trusted devices. These reports can be scheduled to generate at regular intervals and delivered to email addresses of your choice.
Widen your authentication to other endpoints, including Windows, MacOS, and Linux machines, and top VPN providers. MFA can also be implemented for Outlook on the web logins and endpoints supporting RADIUS authentication.
Enable context-based MFA with 19 different authentication factors for endpoint and application logins.
Learn moreAllow users to access all enterprise applications with a single, secure authentication flow.
Learn moreEnhance remote work with cached credential updates, secure logins, and mobile password management.
Learn moreEstablish an efficient and secure IT environment through integration with SIEM, ITSM, and IAM tools.
Learn moreDelegate profile updates and group subscriptions to end users and monitor these self-service actions with approval workflows.
Learn moreCreate a Zero Trust environment with advanced identity verification techniques and render your networks impenetrable to threats.
Learn more
