Last Modified: Sep 13, 2023
Affected Product(s):
BIG-IP APM
Known Affected Versions:
11.5.1 HF1, 11.5.1 HF2, 11.5.1 HF3, 11.5.1 HF4, 11.5.1 HF5, 11.5.1 HF6, 11.5.1 HF7, 11.5.1 HF8, 11.5.1 HF9, 11.5.1 HF10, 11.5.1 HF11, 11.5.2 HF1, 11.5.3 HF1, 11.5.3 HF2, 11.5.4 HF1, 11.5.4 HF2, 11.5.4 HF3, 11.5.4 HF4
Fixed In:
11.6.0 HF5
Opened: May 18, 2015 Severity: 3-Major
Citrix Receivers do not detect 2-factor authentication when connecting to APM.
Citrix Receivers do not detect 2-factor authentication.
APM is configured as StoreFront proxy and 2-factor authentication is used.
To enable 2-factor authentication, put a Variable Assign agent in front of the Logon Page in VPE with the following expression: session.citrix.client_auth_type = expr {"1"}.
Added support for two-factor authentication for Citrix Receivers in StoreFront proxy mode.
Two-factor RSA+AD auth for Citrix Receiver clients now requires a new VPE configuration when APM is configured in StoreFront Integration mode. Note: To avoid a potential issue, if Citrix Receiver was already configured against APM, the Receiver accounts must be recreated.