Citrix Gateway Radius Configuration Guide

The Citrix Gateway now integrates with Okta via RADIUS or SAML 2.0. Using the Okta RADIUS Agent allows for authentication, including support for MFA to happen directly at the Citrix Gateway login page. For authentication, the agent translates RADIUS authentication requests from Citrix Gateway into Okta API calls that provide for user authentication. This guide explains how to configure Citrix Gateway to use the Okta RADIUS Agent.

This guide details how to configure Citrix Gateway to use the Okta RADIUS Server Agent.

If you want to integrate with Okta via SAML 2.0, add the Citrix Gateway SAML app in Okta by navigating to the Applications tab, select Applications > Add Application, search for Citrix Gateway, then click Add.

This guide has been verified with the following Citrix Gateway versions:

  • Version 10.5.x
  • Version 11.x
  • Version 12.x
  • Version 13.0.x

The following Citrix clients have been validated:

  • Citrix Web Receiver
  • Citrix Windows \ Mac Receiver
  • Citrix iOS \ Android Receiver

Supported Okta Features

The following Okta features are supported:

  • Authentication with Okta Credentials via RADIUS
  • Authentication with Okta Credentials via SAML
  • Multi-factor authentication via RADIUS
  • Multi-factor authentication via SAML
  • Group memberships/Attributes via RADIUS – passes the username and password to storefront for AD group permissions