To configure VMware Identity Manager for Netscaler, you need to specify a Secure Ticket Authority (STA) server for each XenApp farm in your Citrix deployment. The STA server is used to generate and validate STA tickets during the application or desktop launch process.

About this task

When a user launches an application or desktop, VMware Identity Manager obtains a ticket from the STA server. The ticket is presented to Netscaler, along with other information, and Netscaler validates the ticket with the STA server before establishing a secure connection to the XenApp farm.

Prerequisites

You have integrated Citrix published resources with VMware Identity Manager and completed the configuration in the Catalog > Manage Desktop Applications > Citrix Published Applications page.

Procedure

  1. In the VMware Identity Manager administration console, click the arrow on the Catalog tab and select Settings.
  2. Select Citrix Published Applications from the left pane.
  3. Select the Netscaler Configuration tab.


    Netscaler Configuration tab


  4. The Farm UUID, Farm Name, Farm Version and XML Servers fields are populated with values from your Citrix deployment and you cannot modify these fields.
  5. Specify one or more STA servers.
    1. In the STA Server field, enter the STA server URL in the following format.

      transporttype://server:port

      For example: http://staserver.example.com:80

      Only alphanumeric characters, period (.), and hyphen (-), are allowed in the URL.

    2. Click Add To List.

      The server appears in the XenApp STA Servers list.

    3. (Optional) Enter additional STA servers, if required. For example, you may want to specify a second STA server for failover purposes.
    4. If you added multiple STA servers, select the order in the XenApp STA Servers fields by clicking Move Up or Move Down.
  6. Click Update.
  7. If there are multiple XenApp farms in your deployment, specify an STA server for each farm.

What to do next

Configure policies for specific network IP ranges that specify that launch traffic should be routed through Netscaler to the XenApp server.