Register Login 
 
 

Please use the links on the top right of the page to register and log onto SmartAccessCentral in order to post in the forums.

epa factory complete banner.gif
You are not authorized to post a reply.
Author
  Messages Sort:
current

Intermediate Member
Intermediate Member
User Online: User is Offline
Posted:22/10/2005 5:39 PM
HI.
 
I am building a PS4 server farm and want to install the AG 4.2 when availiable (I will wait for 4.2).
 
What I am trying to do is have all users internal and external (through AG4.2) access the web interfase
4.x as the fornt end as a means common access common frontend.
 
External users will require Two Factor Auth (RSA or SafeWord) and internal will just use Domain Auth.
 
I would like further access control for external users like access to only some of the Published Apps
they have full internal access to.
 
Questions are.
 
1. Do I need the AAC software to achieve the above.
2. If I do is that now part of AG 4.2 or still a Software Option to be installed on a server.
3. Where should the WI  Server be  placed with above in the DMZ (Like with SG 3) or Internal Lan.
 
I have read the forum but now that Citrix are Advertising AG 4.2 on there web site what do I need
everything sceems to change with every version of AG.
 
Thanks
Alan
Joslyn

SmartAccessCentral Moderator
SmartAccessCentral Moderator
User Online: User is Offline
Posted:22/10/2005 5:57 PM

Hi,

To get this functionality out of the box you will need the AAC option.  AAC is still a software option that resides on a seperate Windows server.

So in your scenario you would have an AG linux device in the DMZ and a AAC server on the internal LAN, your WI would also reside on the internal LAN.

Hope this helps, let me know if you need any more information.

Tim

Tim Joslyn

Tim@smartaccesscentral.com

www.SmartAccessCentral.com
current

Intermediate Member
Intermediate Member
User Online: User is Offline
Posted:22/10/2005 7:48 PM
Thanks for the info.
 
Is it the intention of Citrix to eventually integrate AAC into the AG without the need for another
server if so any idea of time scales.
 
Thanks
Alan
current

Intermediate Member
Intermediate Member
User Online: User is Offline
Posted:22/10/2005 7:54 PM
HI
 
Forgot to ask could ACC amd WI share the same server or are two seperate servers required
only talking about 20 External Users and about 50 internal never all on at the same time.
 
Thanks
Alan
Joslyn

SmartAccessCentral Moderator
SmartAccessCentral Moderator
User Online: User is Offline
Posted:23/10/2005 12:51 PM

Hi,

As far as I am aware Citrix never intend to integrate the AAC into the appliance for a couple of reasons:

  • Longer term Citrix may wish to allow people to utilise SmartAccess and AAC behind other vendor's SSL VPNs so it is better to keep the AAC as a sperate component.
  • Citrix like the security model provided by keeping AAC in the internal network as all of the policy making decisions etc are not made by a component in the DMZ.

However this doesn't mean that Citrix could not make the AAC component into an appliance, in theory though it would still be a seperate appliance from the AG.

As for WI and AAC on the same box I believe they can co-exist on the same box as two seperate .NET web applications however I have never tried this configuration myself.

Cheers,

Tim 

Tim Joslyn

Tim@smartaccesscentral.com

www.SmartAccessCentral.com
You are not authorized to post a reply.


ActiveForums 3.0
  Home|Forums|Editorials|EPA Packages|Snippets
Copyright (c) 2009 SmartAccessCentral Terms Of Use Privacy Statement