Wyse Hardware General

Last reply by 03-16-2022 Solved
Start a Discussion
2 Bronze
2 Bronze
603

Enable Citrix MFA on Dx0D thin clients

Hi, we recently enabled multi factor authenticator on our Citrix and was wondering if someone knows what I need to add to the wnos.ini file to enable it on the Dell Dx0D thin client?

Thin client is version 8.6

Thanks for helping.

 

here's our wnos.ini

SecurityPolicy=Low
PnliteServer=https://******
Connect=ICA
SessionConfig=ICA ondesktop=all


PRIVILEGE=high EnableCancel=yes HideSysInfo=yes HideConnectionManager=yes

Autoload=101
AutoPower=yes
DisableButton=yes

TimeZone="GMT - 05:00" Daylight=yes Start=030207 End=110107 TimeZoneName=Eastern DaylightName=Eastern
TimeServer=time.nist.gov TimeFormat="12-hour format" DateFormat=mm/dd/yyyy

#DHCPExpire=reboot

DomainList=****

#INACTIVE=60
#AutoSignoff=yes Reboot=yes
#ShutdownCounter=30

Desktop=wallpaper.jpg Layout=stretch

Device=audio volume=high mute=0 mic_vol=middle mic_mute=no jack_popup=no
Device=mouse Speed=5

#SignOn=NTLM ConnectionManager=hide DisableGuest=yes DefaultINI=wnos.ini

Solution (1)

Accepted Solutions
3 Zinc
553

1) I would definitely encourage you to move to WMS and get off of INI files. 

2) You will want to adjust the pnliteserrver= line

PnliteServer=your.server.com CAGAuthMethod=LDAP+RSA

or


PnliteServer=your.server.com CAGAuthMethod=RSA+LDAP

INI Guide, Page 82

https://dl.dell.com/topicspdf/thinos_8_6_ig_en-us.pdf 

View solution in original post

Replies (3)
3 Zinc
563

For Citrix, there is nothing further to add to the thin client to enable MFA.  The receiver client will pickup the MFA settings from the broker URL, in  this case the pnliteserver=....

You did not mention which MFA you enabled.  be aware that the MFA supported on ThinOS 8.6 is fairly limited.

554

So we enabled LDAP+RSA. On regular workstation, it has a 3rd field that asks for a token which a user provides along with their username and password. I need to know how to enable this token field on the thin clients. 

3 Zinc
554

1) I would definitely encourage you to move to WMS and get off of INI files. 

2) You will want to adjust the pnliteserrver= line

PnliteServer=your.server.com CAGAuthMethod=LDAP+RSA

or


PnliteServer=your.server.com CAGAuthMethod=RSA+LDAP

INI Guide, Page 82

https://dl.dell.com/topicspdf/thinos_8_6_ig_en-us.pdf 

Latest Solutions
Top Contributor