NSD1026 How to manage access to applications using One Time Password Server

Fact

Nordic Edge One Time Password Server, Nordic Edge One Time Password Integration Modules

Situation

You want to restrict which users that shall have access to e.g. Citrix Web Interface

Solution

One way to do this is to create a group and decide that all users that shall have access to Citrix Web Interface must be members of this group.

In the OTP Server configurator you need to change the "Search Filter End" to request a membership of this group. In this example we have created a group called cn=citrixusers,cn=users,DC=NE,DC=local for user that shall have access. We are also using Active Directory as LDAP User Database.

• In OTP Configurator / Radius & Clients / edit the / Client User Database
• Go to the "Search Filter END:" and make sure the line states:
• )(objectclass=user)(memberof=cn=citrixusers,cn=users,DC=NE,DC=local))

Note

If this had been e.g. eDirectory you would have done the same except you would have been using the the Search Filter Start for eDirectory found in samples ( (&(cn= ) and the group attribute would have been groupmembership instead of memberof.

Disclaimer

The origin of this information may be internal or external to Nordic Edge™. Nordic Edge™ makes all reasonable efforts to verify this information. However, the information provided in this document is for your information only. Nordic Edge™ makes no explicit or implied claims to the validity of this information. Any trademarks referenced in this document are the property of their respective owners.
Nordic Edge Support – www.nordicedge.se