SAML: Getting "Your account cannot be added with this server address" error when accessing Citrix Access Gateway Vserver FQDN on Citrix Workspace
Article ID: CTX310419
Updated On:
Description
Users will see "Your account cannot be added with this server address" error when accessing Citrix Access Gateway Vserver FQDN on Citrix Workspace
Resolution
Follow the below steps to resolve the issue:
1) Create Non-Addressable AAA Vserver.
2) Configure SAML SP Policy and bind it to AAA Vserver as Advanced Authentication policy.
3) Create Authentication Profile and bind the AAA Vserver in it.
4) Bind the Authentication Profile to Citrix Access Gateway Vserver.
Please refer the below Citrix Doc :
https://docs.citrix.com/en-us/citrix-gateway/current-release/authentication-authorization/configure-saml/using-saml-authentication-to-login-to-citrix-gateway.html -- Refer the below statement
"Citrix Workspace supports SAML authentication only through advanced SAML policies bound to the authentication virtual server, that is nFactor authentication"
1) Create Non-Addressable AAA Vserver.
2) Configure SAML SP Policy and bind it to AAA Vserver as Advanced Authentication policy.
3) Create Authentication Profile and bind the AAA Vserver in it.
4) Bind the Authentication Profile to Citrix Access Gateway Vserver.
Problem Cause
SAML Authentication on Citrix Workspace will not work if SAML policy is configured as Basic Authentication policy.Please refer the below Citrix Doc :
https://docs.citrix.com/en-us/citrix-gateway/current-release/authentication-authorization/configure-saml/using-saml-authentication-to-login-to-citrix-gateway.html -- Refer the below statement
"Citrix Workspace supports SAML authentication only through advanced SAML policies bound to the authentication virtual server, that is nFactor authentication"
Was this article helpful?
Yes
No
Powered by
