StoreFront

Configure authentication and delegation

Authentication methods

Normally users either authenticate directly to StoreFront, or to a Citrix Gateway in front of StoreFront. Depending on your requirement, there are several authentication and delegations methods available.

Method Detail
User name and password authentication Allow users to authenticate using their Active Directory username and password and configure options for changing passwords and password expiry notifications.
Domain pass-through authentication Allow Windows devices to single sign on using their Windows credentials.
Smart card authentication Use Smart card certificate based authentication.
SAML authentication Delegate authentication to third party identity providers using SAML.
HTTP Basic Allow third party integrations to authenticate users using their Active Directory username and password.
Gateway pass-through authentication Use a Citrix Gateway to authenticate users.

Some authentication methods include the ability to SSO to VDAs. Otherwise this can be achieved using Federated Authentication Service.

To configure which methods users can use to log into StoreFront through Citrix Workspace app, see Configure authentication.

Alternatively, you can disable authentication and instead allow anonymous access to the stores. See Create store.

Configure authentication and delegation