Note: This integration does not support the use of Push. You will need to use OTP.
- Go to the Start Menu and click on All Programs, then Citrix, then Management Consoles, then open Citrix Web Interface Management.
- Select XenApp Web Sites, then right-click on the site that you want to add MFA to.
- Click Authentication methods
- Select Explicit then click Properties
- Click on Two-Factor Authentication, then set the Two-factor setting to RADIUS
- Click Add, then type in the IP address and port of the AuthAnvil Radius agent, then click OK (The AuthAnvil Radius agent runs on port 1812 by default)
- Click OK, then OK again, and close the Citrix Access Management Console.
- The XenDesktop web interface requires that the RADIUS secret that has been configured between this client and the AuthAnvil RADIUS Server is placed in a text file in the Citrix\RADIUS\CONF directory.
- Go to C:\inetpub\wwwroot\Citrix\<site_name>\conf folder and create a file called radius_secret.txt.
- Open this text file and enter your RADIUS shared secret passcode.
- Save the file and close it.
- For Web Interface 5.2 or later: Go to folder and open the file Web.config with a text editor like Notepad. On Java application servers, the file is web.xml file.
C:\inetpub\wwwroot\Citrix\<site_name>\
- Search for line # 102 or the following parameter:
<add key="RADIUS_NAS_IDENTIFIER" value="" />12.
- For value, enter any alphanumeric value longer than 3 characters.
- Save the Web.config file and test your Web Interface site.
- To test the Site, log on to the website you protected with AuthAnvil. You will now see a Passcode field.
The credentials would should be formatted as follows:
Username: XenDesktop Username (this should match authanvil username)
Password: XenDesktop Password
Passcode: Authanvil Password,OTP (ex. Password123!,56241526)