ADS username and password not passing to Citrix server

  • 7940112
  • 19-Aug-2009
  • 26-Apr-2012

Environment

SecureLogin
SecureLogin SSO
3.5.1.x, 3.5.2, 3.6
Active Directory, Citrix


Situation

Issue

Customer is using SecureLogin in a Microsoft Windows 2003 ADS environment.

The customer wants credential pass-through so the username and password entered when they logon to Microsoft client to access the ADS network is automatically passed to the Microsoft client on the Citrix server (meaning they don’t have to manually type the ADS username and password again).

They followed the documentation on installing SecureLogin in a Citrix Metaframe environment but can’t seem to get the credential pass-through working.

Resolution

Create the following key and string values manually.

HKEY_LOCAL_MACHINE/SOFTWARE/Protocom/SecureLogin/Virtual

Channel Auto Detect=0

Protocol=ICA

Additional Information

Root Cause

There are a number of possible causes;

  • Ensure the ICA client is installed on the client workstation BEFORE installing SecureLogin. SecureLogin detects that the Citrix Virtual Channel support is required and installs it automatically.
  • You can use Add/Remove Programs and modify your installation, ensuring you select the option for Citrix Virtual Channel support
  • At one site, after installation, the following key was not created on the Citrix server:

HKEY_LOCAL_MACHINE/SOFTWARE/Protocom/SecureLogin/Virtual Channel

Auto Detect=0

Protocol=ICA

Note: There is a known issue with Windows 95. The GINA to GINA integration does not work when attaching to a Citrix server from a Windows 95 workstation without the Novell client installed.