Getting Started with Citrix ADC
Deploy a Citrix ADC VPX instance
Optimize Citrix ADC VPX performance on VMware ESX, Linux KVM, and Citrix Hypervisors
Apply Citrix ADC VPX configurations at the first boot of the Citrix ADC appliance in cloud
Install a Citrix ADC VPX instance on VMware ESX
配置Citrix ADC与启示l Appliances to use VMXNET3 Network Interface
配置Citrix ADC与启示l Appliances to use Single Root I/O Virtualization (SR-IOV) Network Interface
Migrating the Citrix ADC VPX from E1000 to SR-IOV or VMXNET3 Network Interfaces
配置Citrix ADC与启示l Appliances to use PCI Passthrough Network Interface
Install a Citrix ADC VPX instance on Microsoft Hyper-V servers
Install a Citrix ADC VPX instance on Linux-KVM platform
Prerequisites for Installing Citrix ADC VPX Virtual Appliances on Linux-KVM Platform
Provisioning the Citrix ADC Virtual Appliance by using OpenStack
Provisioning the Citrix ADC Virtual Appliance by using the Virtual Machine Manager
配置Citrix ADC与启示l Appliances to use PCI Passthrough Network Interface
Provisioning the Citrix ADC Virtual Appliance by using the virsh Program
Provisioning the Citrix ADC Virtual Appliance with SR-IOV, on OpenStack
进行guring a Citrix ADC VPX Instance on KVM to Use OVS DPDK-Based Host Interfaces
Deploy a Citrix ADC VPX instance on AWS
Deploy a VPX high-availability pair with elastic IP addresses across different AWS zones
Deploy a VPX high-availability pair with private IP addresses across different AWS zones
进行gure a Citrix ADC VPX instance to use SR-IOV network interface
进行gure a Citrix ADC VPX instance to use Enhanced Networking with AWS ENA
Deploy a Citrix ADC VPX instance on Microsoft Azure
Network architecture for Citrix ADC VPX instances on Microsoft Azure
进行gure multiple IP addresses for a Citrix ADC VPX standalone instance
进行gure a high-availability setup with multiple IP addresses and NICs
进行gure a high-availability setup with multiple IP addresses and NICs by using PowerShell commands
进行gure a Citrix ADC VPX instance to use Azure accelerated networking
进行gure HA-INC nodes by using the Citrix high availability template with Azure ILB
进行gure HA-INC nodes by using the Citrix high availability template for internet-facing applications
进行gure a high-availability setup with Azure external and internal load balancers simultaneously
Upgrade and downgrade a Citrix ADC appliance
Authentication, authorization, and auditing application traffic
Basic components of authentication, authorization, and auditing configuration
On-premises Citrix Gateway as an identity provider to Citrix Cloud
Authentication, authorization, and auditing configuration for commonly used protocols
Troubleshoot authentication and authorization related issues
-
-
-
-
-
Persistence and persistent connections
Advanced load balancing settings
Gradually stepping up the load on a new service with virtual server–level slow start
Protect applications on protected servers against traffic surges
Retrieve location details from user IP address using geolocation database
Use source IP address of the client when connecting to the server
Use client source IP address for backend communication in a v4-v6 load balancing configuration
Set a limit on number of requests per connection to the server
进行gure automatic state transition based on percentage health of bound services
Use case 2: Configure rule based persistence based on a name-value pair in a TCP byte stream
Use case 3: Configure load balancing in direct server return mode
Use case 6: Configure load balancing in DSR mode for IPv6 networks by using the TOS field
Use case 7: Configure load balancing in DSR mode by using IP Over IP
Use case 10: Load balancing of intrusion detection system servers
Use case 11: Isolating network traffic using listen policies
Use case 14: ShareFile wizard for load balancing Citrix ShareFile
Use case 15: Configure layer 4 load balancing on the Citrix ADC appliance
-
-
Authentication and authorization for System Users
SSH Key-based Authentication for Citrix ADC Administrators
-
进行guring a CloudBridge Connector Tunnel between two Datacenters
进行guring CloudBridge Connector between Datacenter and AWS Cloud
进行guring a CloudBridge Connector Tunnel Between a Datacenter and Azure Cloud
进行guring CloudBridge Connector Tunnel between Datacenter and SoftLayer Enterprise Cloud
进行guring a CloudBridge Connector Tunnel Between a Citrix ADC Appliance and Cisco IOS Device
CloudBridge Connector Tunnel Diagnostics and Troubleshooting
-
Synchronizing Configuration Files in a High Availability Setup
Restricting High-Availability Synchronization Traffic to a VLAN
Understanding the High Availability Health Check Computation
Managing High Availability Heartbeat Messages on a Citrix ADC Appliance
Remove and Replace a Citrix ADC in a High Availability Setup
This content has been machine translated dynamically.
Dieser Inhalt ist eine maschinelle Übersetzung, die dynamisch erstellt wurde.(Haftungsausschluss)
Cet article a été traduit automatiquement de manière dynamique.(Clause de non responsabilité)
Este artículo lo ha traducido una máquina de forma dinámica.(Aviso legal)
此内容已动态机器翻译。放弃
このコンテンツは動的に機械翻訳されています。免責事項
This content has been machine translated dynamically.
This content has been machine translated dynamically.
This content has been machine translated dynamically.
This article has been machine translated.
Dieser Artikel wurde maschinell übersetzt.(Haftungsausschluss)
Ce article a été traduit automatiquement.(Clause de non responsabilité)
Este artículo ha sido traducido automáticamente.(Aviso legal)
この記事は機械翻訳されています.免責事項
이 기사는 기계 번역되었습니다.
Este artigo foi traduzido automaticamente.
这篇文章已经过机器翻译.放弃
Translation failed!
SSH key-based authentication for local system users
To have a secured user access for the Citrix ADC appliance you can have the public key authentication of the SSH server. The SSH key-based authentication is preferred over traditional user name or password based authentication for the following reasons:
- Provides better cryptographic strength than user passwords.
- Eliminates the need of remembering complicated passwords and prevents shoulder-surfing attacks which are possible if passwords are used.
- Provides a password-less login for making automation scenarios more secured.
Citrix ADC supports SSH key-based authentication by applying the public and private key concept. The SSH key-based authentication in Citrix ADC can be enabled either for a specific user or for all local users.
Note
The feature is supported only for Citrix ADC local users and not supported for external users.
SSH key-based authentication for local system users
In a Citrix ADC appliance, an administrator can set up SSH key-based authentication for a secured system access. When a user logs into the Citrix ADC using a private key, the system authenticates the user using the public key configured on the appliance.
进行gure SSH key-based authentication for the Citrix ADC local system users by using CLI
Following configuration helps you to configure key-based authentication for Citrix ADC local system users.
- Log on to a Citrix ADC appliance using administrator credentials.
- By default your
sshd_config
file accesses this path:AuthorizedKeysFile /nsconfig/ssh/authorized_keys. - Append the public key to the authorized_keys file:/nsconfig/ssh/authorized_keys. The file path for
sshd_config
is/etc/sshd_config
. - Copy the
sshd_config
file into/nsconfig
to ensure that the changes persist even after restarting the appliance. - You can use the following command to restart your
sshd
process.
kill -HUP `cat /var/run/sshd.pid`
Note
If the authorized_keys file is not available, you must first create one and then append the public key.Make sure the file has the following permission for the authorized_keys.
root@Citrix ADC# chmod 0644 authorized_keys
> shell Copyright (c) 1992-2013 The FreeBSD Project. Copyright (c) 1979, 1980, 1983, 1986, 1988, 1989, 1991, 1992, 1993, 1994 The Regents of the University of California. All rights reserved. root@ns# cd /nsconfig/ssh root@ns# vi authorized_keys ### Add public keys in authorized_keys file
User-specific SSH key-based authentication for local system users
In a Citrix ADC appliance, an administrator can now set up a user specific SSH key-based authentication for a secured system access. The administrator must first configure theAuthorizedkeysfile
option in thesshd_config
file and then add the public key in theauthorized_keys
file for a system user.
Note
If the authorized_keys file is not available for a user, the administrator must first create one and then add the public key to it.
进行gure user-specific SSH key-based authentication by using the CLI
Following procedure helps you to configure user-specific SSH key-based authentication for Citrix ADC local system users.
- Log on to a Citrix ADC appliance using administrator credentials.
At the shell prompt, access the
sshd_config
file and add the following configuration line:AuthorizedKeysFile ~/.ssh/authorized_keys
Note
The ~ is the home directory and differs for different users. It expands to the different home directory.
Change the directory to the system user folder and add the public keys in the
authorized_keys
file./var/pubkey/
/.ssh/authorized_keys
Once you have completed the earlier steps, restart thesshd
process on your appliance by the following command:
kill -HUP `cat /var/run/sshd.pid`
Note
If the authorized_keys file is not available, you must first create one and then add the public key.
> shell Copyright (c) 1992-2013 The FreeBSD Project. Copyright (c) 1979, 1980, 1983, 1986, 1988, 1989, 1991, 1992, 1993, 1994 The Regents of the University of California. All rights reserved. root@ns# cd /var/pubkey// root@ns# ls .ssh root@ns# cd .ssh root@ns# vi authorized_keys ### Add public keys in authorized_keys file
Also, read Citrix article,CTX109011to know how secure SSH access to Citrix ADC appliance works.
Share
Share
This Preview product documentation is Citrix Confidential.
You agree to hold this documentation confidential pursuant to the terms of your Citrix Beta/Tech Preview Agreement.
The development, release and timing of any features or functionality described in the Preview documentation remains at our sole discretion and are subject to change without notice or consultation.
The documentation is for informational purposes only and is not a commitment, promise or legal obligation to deliver any material, code or functionality and should not be relied upon in making Citrix product purchase decisions.
If you do not agree, select Do Not Agree to exit.