Thursday, 29 March 2012

Web Interface With RSA SecureID - Addtional Config

There are a couple of things to do to a web interface on version 5.4 to get it to work with the RSA SecureID Agent version 7 on a Windows 2008 R2 server.

After installing the relevant components and successfully performing a Test using the RSA Security Center on the web interface server you need to

  • Add "C:\Program Files\Common Files\RSA Shared" to the PATH environment variable (or wherever you can find aceclnt.dll
  • Copy the sdconf.rec and securid file from "C:\Program Files\Common Files\RSA Shared\Auth Data" to "C:\windows\system32"
  • Alter the CitrixWebInterface5.4.0AppPool in IIS Manager to not allow 32 bit apps.
Posted by at No comments:
Labels: ,

Wednesday, 28 March 2012

Web Interface Configuration

If there is a delay when the web interface first loads this is the fix.

This issue is caused by a CRL check sent to Verisign. If the Web Interface server cannot access the internet, the CRL check fails and times out.
  1. Check in IIS for the ASP.net version that is in use with the Web Interface site.
    Modify Aspnet.config  in the following directory
    C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727 (If Web Interface uses .Net framework v2.0.50727)
  2. Add the following lines to your ASPNET.CONFIG or APP.CONFIG file:
    <?xml version="1.0" encoding="utf-8"?>
    <configuration>
        <runtime>
            <generatePublisherEvidence enabled="false"/>
        </runtime>
    </configuration>
Taken from  http://support.citrix.com/article/CTX117273
Posted by at No comments:
Subscribe to: Posts (Atom)