Citrix ADC

Note

Note that using TrustView for Citrix ADC requires installation of the TrustView Automation module.

TrustView has a native integration with Citrix ADC (Application Delivery Controller) formerly known as Citrix NetScaler. You can connect to any number of Citrix ADC instances from TrustView. This will allow you to:

  • List bound certificates (including expiry dates) for each virtual server

  • Upload of certificates from TrustView

  • Binding of certificates available in TrustView to virtual servers

  • Automated renewal of certificates on Citrix ADC

Adding a Citrix ADC instance

Step 1

Click Citrix ADC in the left menu under the Devices section.

Fill out the information for the Citric ADC instance.

Important

The user used to access the Citrix ADC instance must be Superuser and have enabled CLI and API permissions.

Click Add to add a new Citrix ADC instance.

Important

The certificate on the Citrix ADC web interface must be valid and trusted by TrustView in order to connect to the Citrix ADC instance from TrustView. If the certificate is internally issued by your CA, it must be added to the keystore, by adding it to the cacerts certificate located in the \conf folder. For more detailed instructions, see here.

Step 2

Input all the details of the Citrix ADC instance and click Add to create it.

Virtual servers

We support all the virtual server types from Citrix ADC and enable you to add new certificates to the virtual servers and remove the bindings directly from TrustView. The virtual servers must be added to your Citrix ADC first, and then they will be added to the list under the Virtual servers section in TrustView automatically.

The certificates (if any) listed in the subtables are retrieved from the virtual servers on the Citrix ADC instance. Each certificate on the list can have its binding removed by clicking the button on the right of the certificate:

Example of how to remove the bindings from the certificate

You can check the current bindings of a specific certificate in the Certificates section below Virtual servers.

Add a certificate to the virtual server

Important

To allow for uploading of certificates from TrustView, SSH must be enabled (port 22 must be open).

Select one or multiple virtual servers from the list and click Add certificate. A modal will prompt you to select a certificate from the list of available certificates. Enable SNI (Server Name Indication) for the certificate by checking the checkbox before adding the certificate. Read more about Server Name Indication.

Certificates

Update certificate

To update a certificate click Update certificate and a list of the available certificates stored in TrustView will be shown.

Note

The certificates must be issued, have a private key and be Active in TrustView to be valid and shown on the list.

Configure automation for certificates

To configure automation for the certificate click the Automation agent details button to the right of the certificate.

Example of the current state of automation for Citrix ADC certificates

When the automation agent has never been configured, the button on the Citrix ADC overview page will be shown in a white state, and when Ignored or just opened once, it will be shown in a gray state. The button will be shown in a green state when the automation agent is Active.

Requirements for automation

See the requirements for automation with Citrix ADC certificates here.