Last month, the Citrix Access Gateway 5.0 was released. So we started immediately implementing this in our environment to gain experience. One of the nicest things is the use of logonpoints like we used to know from the Advanced Access Control server. It’s much easier to configure in the flash based console. You don’t need to install a management console anymore. There are two types of logon points, basic and smart.
Basic logonpoint is just a pass-through to a Web Interface, just like the old Access Gateway and Secure Gateway. A Basic logonpoint does not consume user licenses. So the question is, can this be used as a free replacement for the Secure Gateway? The answer is no. You still need a platform license. But in combination with a VPX this is rather cheap. And you get build-in high availability with it. The free VPX Express offers a 5 concurrent user session license for one year, but this is more meant as a try before your buy edition. And the VPX express is also counting the user licenses for the Basic logonpoint.
With the Smart logonpoint you can also offer VPN access and create endpoint scans. A Smart logonpoint requires user licenses. If you also want to publish a fileserver, with the multipane view we know from the AAC, you must use the new Access Controller server, which must be installed on a Windows server.
One of the things I found to be a problem, was that the url of a logonpoint shows the name of the internal Web Interface server. This looks like this: https://gateway.company.com/http/internalservername.local. I can imagine that some companies don’t like this or find this a security issue.
Enough now for a first look. Later, we will post additional experiences later.