Create and apply web links

You can configure the Access Interface to display a set of links to internal resources that are available to users. Creating these links requires that you first define the links as resources. Then, you bind them to a user, group, virtual server, or globally to make them active in the Access Interface. The links you create appear on theWeb Sitespanes underEnterprise Web Sites.

Important:

From NetScaler release 13.0 build 64.xx onwards, file shares through NetScaler Gateway are not supported.

Creating Enterprise bookmarks

To create an Access Interface link in a session policy

1. In the configuration utility, on theConfigurationtab, in the navigation pane, expandNetScaler Gateway > Resources一个nd then clickPortal Bookmarks.

2. In the details pane, clickAdd.

   

3. InName, type a name for the bookmark.
4. InText to display, type the description of the link. The description appears in theAccess Interface.
5. InBookmark, type the web address of the application.
6. InVirtual Server, type the name of the associated load balancing/content switching virtual server. This field is optional.
7. InIcon URL, the icons uploaded are supported for all themes except the default theme. Maximum recommended size is 70x70 pixels. We recommend that you use transparent images. This field is optional.
8. In应用程序类型, select the type of application (VPN, clientless VPN, or SaaS) that the URL represents. This field is optional.
9. InSSO Type, select the SSO type that you want to configure for the bookmark. When SSO is configured, users can access the applications without having to enter their credentials in the subsequent logons. The following SSO types are supported:
   • Unified Gateway: This SSO configuration allows secure remote access to multiple resources of an application through a single URL.
   • Self-authentication: In this SSO configuration, NetScaler Gateway users are prompted to provide the login credentials to access the application.
   • SAML-based authentication: In this SSO configuration, NetScaler Gateway uses an IdP to validate the user details, generates a SAML assertion, and sends it to the SP. If the validation passes, the SSO is successful.

   Note:

   If you enable clientless access, you can make sure that requests to websites go through NetScaler Gateway. For example, you added a bookmark forGoogle. Select theUse NetScaler Gateway as a reverse proxycheck box. When you select this check box, website requests go from the user device to NetScaler Gateway and then to the website. When you clear the check box, requests go from the user device to the website. This check box is only available if you enable clientless access.

10. ClickCreate一个nd then clickClose.

To bind an Access Interface link

You can bind Access Interface links to the following locations:

• Users
• Groups
• Virtual servers

After you save the configuration, the links are available to users in the Access Interface on theHometab, which is the first page that users see after they successfully log on.

1. In the configuration utility, in the navigation pane, do one of the following:
   • ExpandNetScaler Gateway User Administration一个nd then clickAAA Users.
   • ExpandNetScaler Gateway User Administration一个nd then clickAAA Grpups.
   • ExpandNetScaler Gateway一个nd then click虚拟服务器。
2. In the details pane, do one of the following:
   • Select a user and then click Open.
   • Select a group and then click Open.
   • Select a virtual server and then click Open.
3. In the dialog box, click theBookmarkstab.
4. UnderAvailable Bookmarks, select one or more bookmarks, click the right arrow to move the bookmarks under Configured Bookmarks and thenOK.

To bind bookmarks globally by using the GUI

1. On theConfigurationtab, in the navigation pane, expandNetScaler Gateway一个nd then clickGlobal Settings.

2. In the details pane, underBookmarks, clickCreate links to the HTTP and Windows File Share applications that you want to make accessible on the NetScaler Gateway portal page.

   

3. In theConfigure VPN Global Binding* dialog box, clickAdd.
4. UnderAvailable, select one or more bookmarks, click the right arrow to move the bookmarks under Configured and thenOK.

To add an Enterprise bookmark by using the CLI

At the command prompt, type:

一个dd vpn url    [-ssotype ] 

Example:

Web bookmark

一个dd vpn url google google "https://www.google.com" 

To bind an Enterprise bookmark by using the CLI

You can bind Enterprise bookmarks to user, group, virtual server, and global level.

bind aaa user  -urlName  bind aaa group  -urlName  bind vpn vserver  -urlName  bind vpn global –urlName  

Example:

bind vpn global -urlName google 

Creating Personal Bookmarks

You can create personal websites from the VPN virtual server only. There is no NetScaler Gateway admin GUI for adding personal bookmarks.

1. Log on to a VPN virtual server.
2. ClickNetwork AccessorClientless Accessto add a bookmark.

3. ClickAdd.

   

4. Enter the bookmark details such as website name, address, and description.

   

5. ClickAdd.

The websites that you added appear under the respective tabs.

Configure user name tokens in bookmarks

You can configure bookmark and file share URLs using a special token, %username%. When users log on, the token is replaced with each users’ logon name. For example, you create a bookmark for an employee named Jack for a folder as \\EmployeeServer\%username%\. When Jack logs on, the file share URL is mapped to \\EmployeeServer\Jack\. When you configure user name tokens in bookmarks, keep the following situations in mind:

• If you are using one authentication type, the user name replaces the token %username%.
• If you are using two-factor authentication, the user name from the primary authentication type is used to replace the %username% token.
• If you are using client certificate authentication, the user name field in the client certificate authentication profile is used to replace the %username% token.