How to enable Single Sign ON in Citrix Receiver

Single Sign ON is been one of the most significant feature in corporate IT environment. It allows users to launch provisioned apps and desktop without entering their credentials repetitively. Upon logging into Windows, the Citrix Receiver application starts in the background which also starts a process ssonsvr.exe. This Citrix Receiver Single Sign-On (SSO) process passes same credentials by which user is logged on the system to a Citrix Storefront. Based on the supplied credentials and its provisioned citrix apps and desktop resources, Citrix Storefront builds the icons of the published applications. Once application enumeration is completed, if user launches an application, the user will not be prompted to enter credentials again.

To achieve these result, few modification is required on the Storefront and locally installed Citrix Receiver.

  • Need to enable Domain pass-through and optionally User name and password authentication on StoreFront
  • Configuration of XML trust services on the Delivery Controller.
  • Install Citrix Receiver for Windows with Single Sign-on.

On Your StoreFront:

Launch StoreFront Studio and navigate to Store. Then click on Manage Authentication methods > enable Domain pass-through.

On your Citrix Delivery Controller

Run the following PowerShell command as an administrator on the Delivery Controller:

asnp Citrix*

Set-BrokerSite -TrustRequestsSentToTheXmlServicePort $True

On the Local Computer:

  1. First download Citrix Receiver for Windows (CitrixReceiver.exe) from Citrix Downloads.
  2. Then log onto the client device with administrator privilege.
  3. You can install Citrix Receiver for Windows in two ways (Using GUI or Using Command Line)

Using the Graphical User Interface
  1. Double-click CitrixReceiver.exe.
  2. In the Citrix Receiver Installation wizard, select Enable Single Sign-on.

  3. Click Next.
  4. After the installation is complete, log off from the client device and log on again.
Using the Command Line Interface
  1. Open a command prompt as an administrator and change to the directory to where CitrixReceiver.exe is located.
  2. Run the following command to install Citrix Receiver for Windows with the Single Sign-on feature enabled:
    CitrixReceiver.exe /includeSSON /silent

If you want to install the citrix receiver if preconfigured Storefront Store URL : Use the following command line

CitrixReceiver.exe /noreboot /Silent /includeSSON enable_SSON=yes STORE0=”Store;”

More Citrix Receiver command line switches can be found here

After the installation is complete, log off from the client machine and log on again. Launch the Task Manager to verify that the ssonsvr.exe process is running.

Users should now be able to log on to an existing Store (or configure a new Store) using Citrix Receiver for Windows without providing credentials.

Leave a Reply