Citrix FAS authentication fails when connecting to VDAs hosted on Microsoft Azure

book

Article ID: CTX696653

calendar_today

Updated On:

Description

Citrix FAS authentication is configured for Citrix DaaS

However, when users tries to launch the desktop, credentials are requested as FAS authentication fails. SSON to VDA does not work

FAS server correctly request certificate to Certification Authority server

VDA fails to get user's certificate from FAS server. The following error can be seen on Application events in VDA

[S104] Identity Assertion Logon failed. Failed to connect to Federated Authentication Service: UserCredentialService [Address: FAS-server(FQDN)][Index: 0] [Error: The remote server returned an unexpected response: (470) status code 470.

Cause

Azure firewall between VDA and FAS server is blocking communication

Resolution

Allow communication between VDA and FAS server on Azure Firewall

Issue/Introduction

FAS authentication fails when user tries to launch

Was this article helpful?

thumb_up Yes

thumb_down No

Welcome to "KB Articles"