Home » KBArticles » Create Authorization Policies for NetScaler Gateway

Create Authorization Policies for NetScaler Gateway

Step Description Screenshot
1 Expand >NetScaler Gateway > Global Settings > Change Global Settings
2 Click Security tab

Change Default Authorization Action to DENY

Note: This change will affect all Gateways configured on the NetScaler that do not specifically reverse.

3 Expand NetScaler Gateway > Policies > Authorization Policies

Click Add

4 Create a new policy

In this example we will call it AuthPol_VPN_192.168.1.1 as the only ‘destination’ this policy will allow is to

5 Click Switch to Classic Syntax

Click Expression Editor

6 Enter the IP address details into the Expression Editor of the destination IP you want to allow access to
7 Click Create

Note: the Reg Expression has been ‘built for you by the editor’ you can type these manually if you know the commands (or find them online!)

8 Bind this new policy to a NetScaler User

NetScaler Gateway > User Administration >AAA Users

Select the user + Edit

Click + Authorization Policies

Select the Authorization policy

Click Bind

Tip: to bind this to LDAP users you must have username locally that matches

If you want to learn more about Citrix NetScaler check out our online NetScaler course at www.mastersof.cloud

Sign-up to the Mastersof.cloud mailing list below to receive a free 200 page Citrix NetScaler Introduction guide!

[mc4wp_form id=”2763″]

Leave a Reply

Your email address will not be published. Required fields are marked *

This site uses Akismet to reduce spam. Learn how your comment data is processed.