This document describes the configurations required for SAML 2.0 integration between the Octopus Authenticator and Citrix NetScaler. 

The documentation is based on the following software versions:

  • Octopus Authentication Server version 4.4.1
  • Citrix NetScaler Gateway version 12.0

Communication between the 3rd party Identity Provider and the Service Provider in the SAML protocol is signed with a certificate. Since the certificate should be unique to the organization, it needs to be downloaded from the service that you will create in the Octopus Management Console. Step-by-step instructions for doing so are provided in this document.

Important: When authentication for Citrix NetScaler is forwarded to Citrix XenApp/XenDesktop, the Citrix StoreFront must be set to Pass-through from NetScaler Gateway and the Citrix Federated Authentication Service (FAS) needs to be installed.