DUO configuration errors - Citrix ADC Netscaler version 12.1.65

Hi everyone,

I have netscaler 12.1.65 standard edition and I want to configure 2fa with DUO
I already have a citrix configuration in production that works perfectly(without DUO) and now I want to incorporate Duo (and 200 users)

I configured Duo proxy with this options:

[main]
debug=true

[ad_client]
host=10.1.0.15
service_account_username=myldapuser
service_account_password_protected=xxxxxxxxxxxxxxxxxxxxxxx
search_dn=dc=daas,dc=priv

[radius_server_iframe]
type=citrix_netscaler_rfwebui
ikey=xxxxxxxxxxxxxxxxxxxxx
skey=xxxxxxxxxxxxxxxx
api_host=xxxxxxxxxxxxxxxxxxx
radius_ip_1=172.16.13.249
radius_secret_1=xxxxxxxxxxxxx
failmode=safe
client=ad_client
port=1812

[radius_server_auto]
ikey=xxxxxxxxxxx
skey=xxxxxxxxxxx
api_host=xxxxxxxx
radius_ip_1=172.16.13.249
radius_secret_1=xxxxxxxxxxx
failmode=safe
client=ad_client
port=18120

And citrix netscaler with this guide:
Two-Factor Authentication for Citrix Gateway | Duo Security or
or Duo for Citrix Gateway: nFactor Instructions | Duo Security

I tested some ldap, radius, 2radius configuration but not works…

So :
• I launch my connection and can login

• DUO prompt works fine

• But after confirm connection in my smartphone I obtain de next error :

errorlogin

I don’t know why that happen if there are a mismath configuration on duo proxy or in netscaler (I have followed the steps of DUO guide)

I insist. When I don’t use DUO proxy everything works perfectly

Plese help me to trohubleshot this connection issue. I can’t see anything in duo proxy logs

Take a look at the response to your question in the other thread where you posted: DUO configuration errors - Citrix ADC Netscaler version 13.1 Build 24.38 - #5 by DuoKristina

If those tips don’t help you figure your issue out your next step would be to contact Duo Support.