Summary
We have taken a closer look at how we can use AAA to enable authentication for our services, which are services of NetScaler. Also, we have taken a closer look at how we can use authorization rules to specify which content our users are able to access and which content they are not able to access. This chapter only gives a brief introduction to the AAA module. However, this module is capable of doing so much more. For instance, it can serve as an SAML SP, which can be used in conjunction with Active Directory Federation Services. Also, it can do SSO on behalf of the user to backend web resources.
Note
NetScaler AAA can act as an SAML identity provider as well, which in essence allows us to use it as a replacement for Active Directory Federation Services. This can be used, for instance, when we need to merge with Azure Active Directory or Office365. Citrix has created a guide for how you can set up NetScaler as an SAML iDP at http://support.citrix.com/article/CTX200818.
Throughout this...