We have a web resource link to the Citrix web interface in user bookmarks, and can post SSO to that page fine, so that the user goes straight in to the page where they can click on the icon link for their Desktop in the Applications box. At this point the new window comes up loading Citrix MetaFrame, then they get the Windows username/password dialog box popup. How can we get SSO to complete this as well? Or should this kind of access be presented using another mechanism?
In fact, even creating a Terminal Services resource and setting up SSO in the bookmark for that doesn't seem to work, still get the Windows Server login dialog box... Any ideas anyone?
If you are authenticating through the Citrix WI and seeing your applications, the SSO portion of the authentication is done from the IVE's perspective. If you have enabled SSO on the Citrix WI and you are still being prompted by the Windows GINA, it is usually due the Citrix client being installed without SSO enabled (this will require a reinstall of the Citrix client to properly enable SSO).
We have this working using explicit authentication configured on the WI and using forms pass-through authentication from the IVE to WI 4.6. Since your clients are ostensibly coming in from the outside, would you really want to use pass-through in any case?