Q&A: How do you manage and deliver Citrix XenApp applications when you have users on multiple domains?
Q: How do you manage and deliver Citrix XenApp applications when you have users on multiple domains?
A: There are a few ways to go about this.
1. If the domains are actually sub-domains in the same forest then you can make this work by setting up two-way trusts. This is commonly done with Citrix NetScaler. The NetScaler login page can be modified so that there is a domain dropdown for each user logging on. Alternatively, a user could also use the domain\username or firstname.lastname@example.org if they do not want to use the dropdown box for some reason.
2. If you have two different domains not in the same forest (i.e. different companies) then you can setup a VPN tunnel and use ADFS – federated services which basically says both domains can talk to each other to “share” accounts etc.
3. In the case where option one and option two are not possible then a Citrix NetScaler Virtual Appliance, or NetScaler VPX, can be used for access into each domain. If you are hosting “untrusted” domains then a Citrix NetScaler physical appliance, NetScaler SDX, works real well.